Lucene search
K

9 matches found

Vulnrichment
Vulnrichment
added 2026/05/13 12:5 a.m.7 views

CVE-2026-8199 Post-auth memory exhaustion via bitwise match expressions

An authenticated user can cause excess memory usage via bitwise match expression AST processing of $bitsAllSet, $bitsAnySet, $bitsAllClear, and $bitsAnyClear. This contributes to memory pressure and may lead to availability loss by OOM. This issue impacts MongoDB Server v7.0 versions prior to...

7.1CVSS5.8AI score0.00258EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/06 12:0 a.m.7 views

FFmpeg 安全漏洞

ffmpeg is a rust library by meh.individual developer. A security vulnerability exists in versions of FFmpeg prior to 8.0, which stems from an integer underflow when parsing a DHAV file header, which may result in a duration before reading the allocation buffer...

5.7CVSS6.4AI score0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/05 5:35 p.m.5 views

CVE-2025-46257 WordPress Element Pack Pro Plugin < 8.0.0 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in BdThemes Element Pack Pro allows Cross Site Request Forgery.This issue affects Element Pack Pro: from n/a before 8.0.0...

4.3CVSS4.7AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:11 a.m.12 views

CVE-2019-15650

The stops-core-theme-and-plugin-updates plugin before 8.0.5 for WordPress has insufficient restrictions on option changes such as disabling unattended theme updates because of a nonce check error...

4.3CVSS7AI score0.00885EPSS
Exploits0References1
OSV
OSV
added 2024/10/15 8:15 p.m.5 views

AZL-50391 CVE-2024-21198 affecting package mysql for versions less than 8.0.40-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromi...

4.9CVSS7.3AI score0.00856EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/03 12:0 a.m.5 views

PT-2024-31598 · Unknown · Authenticator

Name of the Vulnerable Software and Affected Versions: Authenticator versions prior to 8.0.0 Description: The Authenticator browser extension generates two-step verification codes. In versions prior to 8.0.0, encryption keys for user data were stored encrypted at-rest using only AES-256 and the E...

8.8CVSS7.1AI score0.00088EPSS
Exploits0References11
OSV
OSV
added 2023/07/18 9:15 p.m.9 views

AZL-27467 CVE-2023-22046 affecting package mysql for versions less than 8.0.34-1

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.33 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS6.4AI score0.01079EPSS
Exploits0References1
CNVD
CNVD
added 2019/10/09 12:0 a.m.4 views

NVIDIA Shield TV Experience Buffer Overflow Vulnerability

The NVIDIA SHIELD TV entertainment console is a living room entertainment device released by NVIDIA. A buffer overflow vulnerability exists in the NVIDIA Tegra bootloader in NVIDIA Shield TV Experience versions prior to 8.0.1, which originates from an incorrect boundary check performed by the...

7.8CVSS7.3AI score0.00484EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2014/11/21 2:59 a.m.4 views

CVE-2014-8388

Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, before 8.0 allows remote attackers to execute arbitrary code via a crafted ipaddress parameter in an HTML document...

7.2CVSS6.4AI score0.01051EPSS
Exploits1References2
Rows per page
Query Builder