Lucene search
K

11 matches found

Cvelist
Cvelist
added last week32 views

CVE-2026-58191 Appium: Reflected XSS / arbitrary JS in @appium/base-driver /test/guinea-pig* routes

Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver protocol. Prior to 10.7.0, Appium's base-driver unconditionally mounts the /test/guinea-pig, /test/guinea-pig-scrollable, and /test/guinea-pig-app-banner routes, and compileLodashTemplate...

6.5CVSS0.00285EPSS
Exploits0References1
CVE
CVE
added last week10 views

CVE-2026-58191

Appium base-driver before 10.7.0 unconditionally mounts /test/guinea-pig, /test/guinea-pig-scrollable, and /test/guinea-pig-app-banner routes, and compileLodashTemplate reflects throwError, comments field, and User-Agent header into HTML without escaping. This enables reflected XSS and arbitrary ...

6.5CVSS6.1AI score0.00285EPSS
Exploits0References1
OSV
OSV
added last week3 views

CVE-2026-58191 Appium: Reflected XSS / arbitrary JS in @appium/base-driver /test/guinea-pig* routes

Appium is a cross-platform automation framework for all kinds of apps, built on top of the W3C WebDriver protocol. Prior to 10.7.0, Appium's base-driver unconditionally mounts the /test/guinea-pig, /test/guinea-pig-scrollable, and /test/guinea-pig-app-banner routes, and compileLodashTemplate...

6.5CVSS6.2AI score0.00285EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7091r: Allow users to configure device events AD7091R-5 devices are supported by the ad7091r-5 driver, along with the ad7091r-base driver. These drivers declare iio events to notify user space when ADC readings fall...

5.5CVSS6AI score0.00227EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/11/25 2:20 p.m.7 views

@appium/base-driver (>=10.0.0 <=10.1.1), @breautek/storm (>=9.0.0 <=9.2.4) +74 more potentially affected by CVE-2025-13466 via body-parser (=2.2.0)

body-parser NPM version =2.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on body-parser and may be impacted: - @appium/base-driver =10.0.0, =9.0.0, =3.8.8, =1.114.0, =11.8.0, =3.4.0, =11.0.19, =0.1.0, =4.0.1, =1.0.0-beta.2, =0.0.1-beta.0,...

6.9CVSS5.7AI score0.0035EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/09/18 1:33 p.m.3 views

CVE-2023-53390

In the Linux kernel, the following vulnerability has been resolved: drivers: base: dd: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove...

5.5CVSS5.4AI score0.00135EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/03/28 4:15 a.m.3 views

SUSE CVE-2023-52627

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7091r: Allow users to configure device events AD7091R-5 devices are supported by the ad7091r-5 driver together with the ad7091r-base driver. Those drivers declared iio events for notifying user space when ADC readings...

5.5CVSS6.2AI score0.00227EPSS
Exploits0References6
OSV
OSV
added 2024/03/26 6:15 p.m.2 views

DEBIAN-CVE-2023-52627

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7091r: Allow users to configure device events AD7091R-5 devices are supported by the ad7091r-5 driver together with the ad7091r-base driver. Those drivers declared iio events for notifying user space when ADC readings...

5.5CVSS5.2AI score0.00227EPSS
Exploits0References1
OSV
OSV
added 2024/03/26 6:15 p.m.3 views

UBUNTU-CVE-2023-52627

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7091r: Allow users to configure device events AD7091R-5 devices are supported by the ad7091r-5 driver together with the ad7091r-base driver. Those drivers declared iio events for notifying user space when ADC readings...

5.5CVSS6AI score0.00227EPSS
Exploits0References22
Vulnrichment
Vulnrichment
added 2024/03/26 5:49 p.m.19 views

CVE-2023-52627 iio: adc: ad7091r: Allow users to configure device events

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7091r: Allow users to configure device events AD7091R-5 devices are supported by the ad7091r-5 driver together with the ad7091r-base driver. Those drivers declared iio events for notifying user space when ADC readings...

6.8AI score0.00227EPSS
Exploits0References6
Prion
Prion
added 2022/06/15 2:15 p.m.29 views

Heap overflow

In various methods of kernel base drivers, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro...

4.6CVSS6.6AI score0.00149EPSS
Exploits0References1
Rows per page
Query Builder