Lucene search
K

557 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 12:15 p.m.14 views

CVE-2018-1000118

Github Electron version Electron 1.8.2-beta.4 and earlier contains a Command Injection vulnerability in Protocol Handler that can result in command execute. This attack appear to be exploitable via the victim opening an electron protocol handler in their browser. This vulnerability appears to hav...

9.3CVSS7.4AI score0.84434EPSS
Exploits31References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-7016

Observable Timing Discrepancy vulnerability in Apache Shiro. This issue affects Apache Shiro: from 1., 2. before 2.0.7. Users are recommended to upgrade to version 2.0.7 or later, which fixes the issue. Prior to Shiro 2.0.7, code paths for non-existent vs. existing users are different enough, tha...

1CVSS5.5AI score0.00219EPSS
Exploits0References4
Mageia
Mageia
added 2025/11/13 6:3 p.m.19 views

Updated python-flask-cors packages fix security vulnerabilities

Log Injection Vulnerability in corydolphin/flask-cors. CVE-2024-1681 Improper Access Control in corydolphin/flask-cors. CVE-2024-6221 Improper Regex Path Matching in corydolphin/flask-cors. CVE-2024-6839 Inconsistent CORS Matching Due to Handling of '+' in URL Path in corydolphin/flask-cors...

7.5CVSS5.8AI score0.00677EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2019-9169)

In the GNU C Library aka glibc or libc6 through 2.29, proceednextnode in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

9.8CVSS6.9AI score0.04731EPSS
Exploits1References4
OSV
OSV
added 2025/10/10 3:4 p.m.9 views

JLSEC-2025-28 libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if ...

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths case insensitively,which could lead ...

4.3CVSS6.8AI score0.0627EPSS
Exploits1References30
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-1513

Malware in sbrugna...

8.2CVSS7.4AI score0.00576EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0357

Malware in sbrugna...

3.5CVSS3.7AI score0.00922EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-3093

Malware in sbrugna...

5.5CVSS6.1AI score0.0159EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-0766

Malware in sbrugna...

2.6CVSS6.4AI score0.02236EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2014-5189

Malware in sbrugna...

5CVSS6.1AI score0.03002EPSS
Exploits2References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-2157

Malware in sbrugna...

5.1CVSS6.4AI score0.02427EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-9461

Malware in sbrugna...

5.9CVSS7AI score0.03472EPSS
Exploits0References18
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: nodejs (UTSA-2025-680628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680628 advisory. @npmcli/arborist, the library that calculates dependency trees and manages the nodemodules folder hierarchy for the npm command line interface, aims to guarantee tha...

8.2CVSS7.7AI score0.00576EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/03 8:15 p.m.2 views

CVE-2025-59944 Cursor IDE: Sensitive File Overwrite Bypass is Possible

Cursor is a code editor built for programming with AI. Versions 1.6.23 and below contain case-sensitive checks in the way Cursor IDE protects its sensitive files e.g., /.cursor/mcp.json, which allows attackers to modify the content of these files through prompt injection and achieve remote code...

8CVSS7.8AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2025/10/03 8:15 p.m.37 views

CVE-2025-59944

Cursor IDE versions 1.6.23 and earlier are affected by a vulnerability in how sensitive files are protected (notably /.cursor/mcp.json). The issue arises from case-sensitive checks that can be bypassed, allowing an attacker to modify sensitive files via prompt injection and achieve remote code ex...

9.8CVSS7.8AI score0.00337EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-2602

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.00367EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-17466

Malicious code in bioql PyPI...

9.1CVSS7.6AI score0.00561EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-5728

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.0197EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.27 views

EUVD-2024-0322

Malicious code in bioql PyPI...

7.5CVSS7.4AI score0.03152EPSS
Exploits2References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-24263

Malicious code in bioql PyPI...

5.1CVSS6.3AI score0.00423EPSS
Exploits0References6
Rows per page
Query Builder