Lucene search
K

37002 matches found

Amazon
Amazon
added 2025/05/13 12:0 a.m.12 views

Medium: edk2

Issue Overview: EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability. CVE-2024-38797...

4.6CVSS6.8AI score0.00214EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.14 views

Photon OS 4.0: Apache PHSA-2025-4.0-0777

An update of the apache package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0777. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

10CVSS9.4AI score0.99945EPSS
Exploits46References2
ICS
ICS
added 2025/05/13 12:0 a.m.10 views

Siemens SIMATIC IPC RS-828A

SUMMARY SIMATIC IPC RS-828A is affected by an authentication bypass vulnerability in the Redfish interface of its Baseboard Management Controller BMC that could allow an attacker to gain unauthorized access and compromise confidentiality, integrity and availability of the BMC and thus the entire...

10CVSS7.6AI score0.61202EPSS
Exploits0References10
OSV
OSV
added 2025/05/12 12:0 a.m.1 views

OPENSUSE-SU-2025:15080-1 java-21-openj9-21.0.7.0-1.1 on GA media

These are all security issues fixed in the java-21-openj9-21.0.7.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.4CVSS7.1AI score0.00688EPSS
Exploits0References3
OSV
OSV
added 2025/05/12 12:0 a.m.2 views

OPENSUSE-SU-2025:15077-1 java-11-openj9-11.0.27.0-1.1 on GA media

These are all security issues fixed in the java-11-openj9-11.0.27.0-1.1 package on the GA media of openSUSE Tumbleweed...

7.4CVSS7.1AI score0.00688EPSS
Exploits0References3
OSV
OSV
added 2025/05/12 12:0 a.m.3 views

OPENSUSE-SU-2025:15081-1 libxmp-devel-4.6.3-1.1 on GA media

These are all security issues fixed in the libxmp-devel-4.6.3-1.1 package on the GA media of openSUSE Tumbleweed...

5.6CVSS5.8AI score0.00247EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2025/05/12 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2025-0152)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6CVSS7.1AI score0.00197EPSS
Exploits3References4
Positive Technologies
Positive Technologies
added 2025/05/09 12:0 a.m.1 views

PT-2025-22221

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.12 Description A vulnerability in the Linux kernel has been resolved. The issue occurs in the memblock double array function when increasing the array size and the slab is not yet available. A call to memblock...

5.5CVSS6.7AI score0.00148EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.6 views

The vulnerability of the Linux operating system’s kernel, related to the use of memory after it is freed, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the Linux operating system’s kernel is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

4.6CVSS6.5AI score0.00157EPSS
Exploits0References8Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.7 views

The vulnerability of the ieee802154hdr_peek_addrs() function in the Linux operating system allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ieee802154hdrpeekaddrs function in the Linux operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of t...

8CVSS6.3AI score0.00178EPSS
Exploits0References11Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.5 views

The vulnerability of the org.xwiki.platform:xwiki-platform-security-requiredrights-default component of the XWiki Platform, a platform for creating collaborative web applications. This vulnerability allows an attacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the org.xwiki.platform:xwiki-platform-security-requiredrights-default component of the XWiki Platform relates to a lack of mechanisms for encoding or shielding output data. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and...

9CVSS5.4AI score0.00298EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/05/09 12:0 a.m.3 views

OPENSUSE-SU-2025:15073-1 chromedriver-136.0.7103.92-1.1 on GA media

These are all security issues fixed in the chromedriver-136.0.7103.92-1.1 package on the GA media of openSUSE Tumbleweed...

8.8CVSS5.8AI score0.00493EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.6 views

Vulnerability of the mtk_iommu_hw_init() function in the drivers/iommu/mtk_iommu.c module – This driver for Linux’s IOMMU kernel allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the mtkiommuhwinit function in the drivers/iommu/mtkiommu.c module – Linux’s IOMMU kernel support driver is vulnerable due to the use of the NULL pointer assignment. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS5.4AI score0.0023EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.4 views

The vulnerability of TOTOLINK N150RT router microprogramming software, related to the execution of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of TOTOLINK N150RT router microprogramming software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information through a specially...

9CVSS8.1AI score0.00852EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.5 views

The vulnerability of TOTOLINK N150RT router microprogramming software, related to the execution of operations outside the buffer in memory, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of TOTOLINK N150RT router microprogramming software lies in the fact that the operation values are stored outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected...

9CVSS7.8AI score0.00852EPSS
Exploits1References6Affected Software1
Exploit DB
Exploit DB
added 2025/05/09 12:0 a.m.301 views

Apache ActiveMQ 6.1.6 - Denial of Service (DOS)

Exploit Title: Apache ActiveMQ 6.1.6 - Denial of Service DOS Date: 2025-05-9 Exploit Author: Abdualhadi khalifa https://x.com/absholi7ly/ Github: https://github.com/absholi7ly/CVE-2025-27533-Exploit-for-Apache-ActiveMQ CVE: CVE-2025-27533 import socket import struct import time import datetime...

7.5CVSS7AI score0.08594EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/05/08 10:12 a.m.23 views

CVE-2025-46592

Null pointer dereference vulnerability in the USB HDI driver module Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS6.9AI score0.00092EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/08 10:11 a.m.23 views

CVE-2025-46593

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS6.9AI score0.00093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/08 7:11 a.m.5 views

CVE-2025-46586

Permission control vulnerability in the contacts module Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS5.2AI score0.00087EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/08 7:11 a.m.10 views

CVE-2025-46585

Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS7.4AI score0.00089EPSS
Exploits0References1
Rows per page
Query Builder