Lucene search
K

37013 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.12 views

The vulnerability of the HPIMSGX__init() function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HPIMSGXinit function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS6.8AI score0.0025EPSS
Exploits0References36Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.3 views

The vulnerability of the ntfs_file_release() function in the fs/ntfs3/file.c file of the Linux kernel’s file system ntfs3 allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ntfsfilerelease function in the fs/ntfs3/file.c file of the Linux kernel’s file system ntfs3 is related to the elevation of privileges. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS7.2AI score0.00228EPSS
Exploits0References17Affected Software3
Cvelist
Cvelist
added 2025/06/18 11:30 p.m.8 views

CVE-2024-45208

The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service. Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability HA information using a shared password. Affected versions of Versa Director bound to these ports o...

9.8CVSS0.00737EPSS
Exploits0References7
CVE
CVE
added 2025/06/18 11:30 p.m.23 views

CVE-2024-45208

The CVE-2024-45208 entry concerns Versa Director SD-WAN. Affected systems: Versa Director bound to TCP ports 4566 and 4570 for HA information exchange using a shared password. The underlying issue enables an attacker who can reach the Versa Director to access the NCS service on port 4566 and perf...

9.8CVSS9.8AI score0.00737EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/06/18 11:30 p.m.5 views

CVE-2024-45208

The Versa Director SD-WAN orchestration platform which makes use of Cisco NCS application service. Active and Standby Directors communicate over TCP ports 4566 and 4570 to exchange High Availability HA information using a shared password. Affected versions of Versa Director bound to these ports o...

9.8CVSS8AI score0.00737EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/06/18 12:0 a.m.2 views

Siemens Discontinued Devices Detection

The current plugin identifies Siemens devices that are currently discontinued. Siemens Lifecycle Statuses: - 'PM300:Active Product': Most current offering within a product category. - 'PM400:Announcement of product phase-out': Product in phase-out, support and orders still possible. -...

5.5AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.4 views

PT-2025-26189 · Versa +1 · Versa Director +1

Name of the Vulnerable Software and Affected Versions: Versa Director SD-WAN orchestration platform affected versions not specified Description: The issue affects the Versa Director SD-WAN orchestration platform, which utilizes the Cisco NCS application service. Active and Standby Directors...

10CVSS7.4AI score0.00737EPSS
Exploits0References15
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.2 views

Versa Director 安全漏洞

Versa Director is a virtualization and service creation platform from Versa USA. that simplifies the creation, automation and delivery of services using Versa FlexVNF. A security vulnerability exists in Versa Director that stems from HA communication using a shared password, which could lead to...

9.8CVSS7.6AI score0.00737EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.5 views

The vulnerability of the Booco business automation platform, related to insufficient protection of operational data, allows a perpetrator to gain unauthorized access to the system and compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Booco business automation platform is related to insufficient protection of operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to the system and compromise the confidentiality, integrity, and...

10CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/18 12:0 a.m.4 views

The vulnerability of the setWizardCfg() function (/cgi-bin/cstecgi.cgi) in the TOTOLINK T10 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setWizardCfg function /cgi-bin/cstecgi.cgi of the TOTOLINK T10 router software is related to the issue of data being written outside the buffer in memory when processing the parameter ssid5g. Exploiting this vulnerability allows a malicious actor to compromise the...

9CVSS7.8AI score0.00761EPSS
Exploits1References4Affected Software1
CNVD
CNVD
added 2025/06/17 12:0 a.m.3 views

Laundry System Authentication Missing Vulnerability

Laundry System is a laundry system. The Laundry System suffers from a missing authentication vulnerability that could be exploited by an attacker to compromise confidentiality, integrity, and availability...

9.8CVSS7AI score0.00514EPSS
Exploits1References1
CNVD
CNVD
added 2025/06/17 12:0 a.m.2 views

School Fees Payment System Improper Authentication Vulnerability

School Fees Payment System is a tuition payment system. The School Fees Payment System has an improper authentication vulnerability that can be exploited by an attacker to compromise confidentiality, integrity, and availability...

7.5CVSS7.1AI score0.00468EPSS
Exploits1References1
CBLMariner
CBLMariner
added 2025/06/17 12:0 a.m.2 views

CVE-2025-30721 affecting package mysql for versions less than 8.0.42-1

CVE-2025-30721 affecting package mysql for versions less than 8.0.42-1. An upgraded version of the package is available that resolves this issue...

4CVSS7.3AI score0.00186EPSS
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in edk2

EDK2 contains a vulnerability when the S3 sleep mechanism is activated. In this case, an attacker may cause a Division-by-Zero error due to a UNIT32 overflow through local access. Successful exploitation of this vulnerability could result in a loss of availability...

6CVSS6.8AI score0.00217EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in edk2

EDK2 contains a vulnerability in the BIOS, where an attacker may cause “Improper Input Validation” through local access. Successful exploitation of this vulnerability could alter the control flow in unexpected ways, potentially allowing arbitrary command execution and affecting Confidentiality,...

8.4CVSS6.1AI score0.00704EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.9 views

Astra Linux – Vulnerability in binutils

A vulnerability, classified as problematic, was discovered in GNU Binutils up to version 2.43. This vulnerability affects the disassemblebytes function in the file binutils/objdump.c. Manipulation of the buf argument leads to a stack-based buffer overflow. The attack can be initiated remotely. Th...

7.5CVSS5.6AI score0.00732EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in edk2

EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage function. An attacker may cause memory corruption due to an overflow through an adjacent network. Successful exploitation of this vulnerability could result in a loss of confidentiality, integrity, and/or availability...

5.9CVSS6.4AI score0.00373EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability in fig2dev

A flaw was discovered in fig2dev. This vulnerability allows for availability through local input manipulation using the gengeitpspline function...

5.5CVSS5.4AI score0.00199EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.3 views

Astra Linux – Vulnerability in binutils

A potential heap-based buffer overflow was detected in the bfdelfslurpversiontables function in bfd/elf.c. This could lead to a loss of functionality...

6.5CVSS6.5AI score0.00895EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: edk2 (TSSA-2024:0090)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0090 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS7.9AI score0.01213EPSS
Exploits1References3
Rows per page
Query Builder