Lucene search
K

36 matches found

CNNVD
CNNVD
added 2026/05/21 12:0 a.m.10 views

Trend Micro Apex One 安全漏洞

Trend Micro Apex One is a terminal protection software developed by Trend Micro, a US-based company. Trend Micro Apex One has a security vulnerability, which stems from a race condition between the check time and the usage time in its caching mechanism. This vulnerability could allow local...

7.8CVSS7.1AI score0.00323EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Authlib 跨站请求伪造漏洞

Authlib is an open-source library developed by Authlib, designed as a ultimate Python library for building OAuth and OpenID Connect servers. Versions of Authlib prior to 1.6.11 contained a cross-site request forgeing vulnerability, which stemmed from the lack of CSRF protection in the caching...

5.4CVSS5.7AI score0.00106EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/17 9:50 p.m.2 views

CVE-2025-14806 IBM Planning Analytics Information Disclosure

IBM Planning Analytics Local 2.1.0 through 2.1.17 could allow an attacker to trick the caching mechanism into storing and serving sensitive, user-specific responses as publicly cacheable resources...

5.7CVSS5.8AI score0.00292EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/12 5:19 a.m.4 views

CVE-2026-3904

A flaw was found in glibc. When calling NSS-backed functions that support caching via nscd, the nscd client under high load on x8664 systems may call the memcmp function on inputs that are concurrently modified by other processes or threads, causing a crash and resulting in a denial of service...

6.2CVSS5.7AI score0.00146EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-24831

Malware in sbrugna...

4.3CVSS4.7AI score0.0121EPSS
Exploits3References5
Debian CVE
Debian CVE
added 2025/09/03 12:32 p.m.7 views

CVE-2025-9901

A flaw was found in libsoup’s caching mechanism, SoupCache, where the HTTP Vary header is ignored when evaluating cached responses. This header ensures that responses vary appropriately based on request headers such as language or authentication. Without this check, cached content can be...

5.9CVSS5.3AI score0.0043EPSS
Exploits0
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.3 views

Intel Processors 安全漏洞

Intel Processors is a family of processors from Intel Corporation USA. A security vulnerability exists in Intel Processors that stems from an improperly isolated stream caching mechanism that could lead to elevated privileges...

7.8CVSS6.3AI score0.0013EPSS
Exploits0References1
OSV
OSV
added 2025/05/28 6:2 p.m.7 views

GHSA-4QJH-9FV9-R85R Potential Timing Side-Channel Vulnerability in vLLM’s Chunk-Based Prefix Caching

This issue arises from the prefix caching mechanism, which may expose the system to a timing side-channel attack. Description When a new prompt is processed, if the PageAttention mechanism finds a matching prefix chunk, the prefill process speeds up, which is reflected in the TTFT Time to First...

2.6CVSS6.9AI score0.00249EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 8:9 p.m.7 views

CVE-2021-38378

OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified By response to show a person's name...

4.3CVSS6.7AI score0.0121EPSS
Exploits3References1
Veracode
Veracode
added 2024/09/23 5:5 a.m.7 views

DNS Cache Poisoning

github.com/coredns/coredns is vulnerable to DNS Cache Poisoning. The vulnerability is due to manipulation of the DNS caching mechanism through a birthday attack, which allows attackers to achieve DNS cache poisoning by injecting fake responses...

7.5CVSS6.6AI score0.00405EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2023/11/05 12:0 a.m.45 views

Fedora: Security Advisory for cachelib (FEDORA-2023-7934802344)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.99999EPSS
Exploits19References4
OpenVAS
OpenVAS
added 2023/10/25 12:0 a.m.33 views

Fedora: Security Advisory for cachelib (FEDORA-2023-2a9214af5f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.99999EPSS
Exploits19References4
CNVD
CNVD
added 2021/11/23 12:0 a.m.23 views

Open-xchange OX App Suite Information Disclosure Vulnerability (CNVD-2021-90765)

Open-xchange OX App Suite is a web-based cloud desktop environment from Open-Xchange Open-xchange, a US-based company that allows users to more intuitively manage email, tasks, files, etc. An information disclosure vulnerability exists in Open-xchange OX App Suite. An information disclosure...

4.3CVSS1.5AI score0.0121EPSS
Exploits3References1
NVD
NVD
added 2021/11/22 9:15 a.m.18 views

CVE-2021-38378

OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified By response to show a person's name...

4.3CVSS0.0121EPSS
Exploits3References3
OSV
OSV
added 2021/11/22 9:15 a.m.19 views

CVE-2021-38378

OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified By response to show a person's name...

4.3CVSS6.7AI score
Exploits0References3
Prion
Prion
added 2021/11/22 9:15 a.m.13 views

Information disclosure

OX App Suite 7.10.5 allows Information Exposure because a caching mechanism can caused a Modified By response to show a person's name...

4CVSS4.6AI score0.0121EPSS
Exploits3References3Affected Software1
CNNVD
CNNVD
added 2021/04/28 12:0 a.m.4 views

Etherpad SQL注入漏洞

Etherpad-Lite is a web-based open source document editor from the Etherpad Foundation. A security vulnerability exists in Etherpad versions prior to 1.8.3, which stems from a specially designed URI that raises an unhandled exception in the caching mechanism and results in a denial of service...

7.5CVSS7.3AI score0.01111EPSS
Exploits1References2
Gitee
Gitee
added 2021/03/19 6:5 p.m.5 views

maltrail

This is a Python script repository for a malicious traffic detection system called Maltrail. The repository contains various files and directories, including configuration files, data storage files, and scripts for data processing and analysis. The script uses a variety of techniques to detect...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2020/04/04 11:14 a.m.31 views

CVE-2019-12400

In version 2.0.3 Apache Santuario XML Security for Java, a caching mechanism was introduced to speed up creating new XML documents using a static pool of DocumentBuilders. However, if some untrusted code can register a malicious implementation with the thread context class loader first, then this...

5.9CVSS1.4AI score0.00776EPSS
Exploits0References3
Veracode
Veracode
added 2019/08/26 3:23 a.m.28 views

Arbitrary Code Injection

xmlsec is vulnerable to arbitrary code injection. An attacker is able to inject arbitrary code via the caching mechanism that was introduced to speed up the creation of new XML documents...

5.5CVSS4.1AI score0.00776EPSS
Exploits0References23Affected Software2
Rows per page
Query Builder