Lucene search
K

37008 matches found

CVE
CVE
added 2025/04/08 7:15 a.m.63 views

CVE-2025-31332

CVE-2025-31332 concerns insecure file permissions in SAP BusinessObjects Business Intelligence Platform. A local attacker could modify files, potentially disrupting operations or causing service downtime, leading to high impact on integrity and availability . The vulnerability does not disclose s...

7.1CVSS6.8AI score0.00134EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/08 7:15 a.m.7 views

CVE-2025-31332 Insecure File permissions vulnerability in SAP BusinessObjects Business Intelligence Platform

Due to insecure file permissions in SAP BusinessObjects Business Intelligence Platform, an attacker who has local access to the system could modify files potentially disrupting operations or cause service downtime hence leading to a high impact on integrity and availability. However, this...

6.6CVSS6.8AI score0.00134EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/04/08 7:10 a.m.4 views

CVE-2025-23186 Mixed Dynamic RFC Destination vulnerability through Remote Function Call (RFC) in SAP NetWeaver Application Server ABAP

In certain conditions, SAP NetWeaver Application Server ABAP allows an authenticated attacker to craft a Remote Function Call RFC request to restricted destinations, which can be used to expose credentials for a remote service. These credentials can then be further exploited to completely...

8.5CVSS7.2AI score0.00463EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/08 6:36 a.m.14 views

CVE-2025-3406

A vulnerability was found in Nothings stb up to f056911. It has been classified as problematic. Affected is the function stbhwbuildtilesetfromimage of the component Header Array Handler. The manipulation of the argument w leads to out-of-bounds read. It is possible to launch the attack remotely...

4.3CVSS4.5AI score0.00508EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/04/08 6:5 a.m.9 views

CVE-2024-38797

A flaw was found in EDK2. This vulnerability allows an attacker to cause an out-of-bounds read, potentially leading to a loss of integrity and/or availability via a crafted data pointer and length sent over an adjacent network. Mitigation Mitigation for this issue is either not available or the...

4.6CVSS6.8AI score0.00214EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.6 views

PT-2025-15363 · Sap · Sap Netweaver Application Server Abap

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP affected versions not specified Description: The issue allows an authenticated attacker to craft a Remote Function Call RFC request to restricted destinations, exposing credentials for a remote service...

8.5CVSS6.1AI score0.00463EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/04/08 12:0 a.m.4 views

PT-2025-15342

Name of the Vulnerable Software and Affected Versions: InputManager version SMR Apr-2025 Release 1 Description: The issue is related to improper access control in InputManager, allowing local attackers to access the scancode of a specific input device. Recommendations: For InputManager version SM...

6.2CVSS5.4AI score0.0013EPSS
Exploits0References5
Packet Storm
Packet Storm
added 2025/04/08 12:0 a.m.278 views

📄 InfluxDB OSS 2.7.11 Privilege Escalation

InfluxDB OSS versions 2.7.11 and below suffer from a privilege escalation vulnerability. Exploit Title: InfluxDB OSS Operator Privilege Escalation via BusinessLogic Flaw Date: 22/03/2024 Exploit Author: Andrea Pasin Xenom0rph97 Researcher Homepage: https://xenom0rph97.github.io/xeno/ GitHub Explo...

9.1CVSS9.1AI score0.05165EPSS
Exploits3
Kaspersky
Kaspersky
added 2025/04/08 12:0 a.m.26 views

KLA82886 DoS vulnerability in Apache Tomcat

Out of bounds memory read vulnerability was found in Apache Tomcat. Malicious users can exploit this vulnerability to cause denial of service. Original advisories Denial of Service via invalid HTTP priority header Related products Apache-Tomcat CVE list CVE-2025-31650 critical Solution Update to...

7.5CVSS7.9AI score0.66933EPSS
Exploits5References3
OSV
OSV
added 2025/04/07 6:15 p.m.1 views

DEBIAN-CVE-2024-38797

EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...

4.6CVSS5.8AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2025/04/07 6:15 p.m.5 views

CVE-2024-38797

EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...

4.6CVSS0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/04/07 6:15 p.m.5 views

CVE-2024-38797

EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...

4.6CVSS7AI score
Exploits0References1
CVE
CVE
added 2025/04/07 5:18 p.m.63 views

CVE-2024-38797

CVE-2024-38797 is a HashPeImageByType() read-bounds vulnerability in EDK2. Multiple advisories (EulerOS, Oracle Linux, Ubuntu, TencentOS) report that a corrupted data pointer/length sent over adjacent network can cause read out of bounds, with potential impact to integrity and availability. Explo...

4.6CVSS7AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/07 5:18 p.m.8 views

CVE-2024-38797 Out-of-bounds Read in HashPeImageByType()

EDK2 contains a vulnerability in the HashPeImageByType. A user may cause a read out of bounds when a corrupted data pointer and length are sent via an adjecent network. A successful exploit of this vulnerability may lead to a loss of Integrity and/or Availability...

4.6CVSS7AI score0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/04/07 4:15 a.m.2 views

CVE-2024-58115

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2025/04/07 4:15 a.m.1 views

CVE-2024-58116

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score0.00192EPSS
Exploits0References1
NVD
NVD
added 2025/04/07 4:15 a.m.11 views

CVE-2024-58115

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS0.00192EPSS
Exploits0References1
NVD
NVD
added 2025/04/07 4:15 a.m.10 views

CVE-2024-58116

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS0.00192EPSS
Exploits0References1
OSV
OSV
added 2025/04/07 4:15 a.m.3 views

CVE-2024-58112

Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score
Exploits0References1
OSV
OSV
added 2025/04/07 4:15 a.m.5 views

CVE-2024-58113

Vulnerability of improper resource management in the memory management module Impact: Successful exploitation of this vulnerability may affect availability...

7.5CVSS5.8AI score0.00322EPSS
Exploits0References1
Rows per page
Query Builder