Lucene search
K

762 matches found

CVE
CVE
added 2026/05/04 4:37 p.m.18 views

CVE-2026-42811

CVE-2026-42811 : Apache Polaris builds Google Cloud Storage downscoped credentials via a Credential Access Boundary (CAB) with CEL conditions intended to constrain to a table path. The CEL string uses the bucket and table path; if a namespace/table identifier contains special content (e.g., a sin...

9.9CVSS5.7AI score0.00431EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2026/04/30 1:55 p.m.27 views

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some developers are accidentally downloading tools that peek into their private files during a simple install. It is definitely a busy time to be online. Security is...

10CVSS8AI score0.99999EPSS
Exploits125
Packet Storm News
Packet Storm News
added 2026/04/27 12:0 a.m.7 views

From Spoofing to Trust: Emergency Alerts Spoofing Testbed and Cross-Cell Verification

Public warning systems PWS in cellular networks enable authorities to broadcast emergency alerts to all mobile phones in a geographic region in the event of threats such as earthquakes or severe weather. If an attacker can imitate these alerts and transmit a forged warning containing fake news or...

5.5AI score
Exploits0
OSV
OSV
added 2026/04/21 5:18 p.m.6 views

GHSA-4C99-QJ7H-P3VG nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames

Arbitrary File Write via Path Traversal in Cell Attachment Filenames Summary nbconvert allows arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The ExtractAttachmentsPreprocessor passes attachment...

6.5CVSS5.9AI score0.00266EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2026/04/21 5:18 p.m.10 views

nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames

Arbitrary File Write via Path Traversal in Cell Attachment Filenames Summary nbconvert allows arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The ExtractAttachmentsPreprocessor passes attachment...

6.5CVSS5.9AI score0.00266EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/21 2:1 p.m.6 views

CVE-2026-39377

A flaw was found in nbconvert, a tool used to convert Jupyter notebooks. When processing notebooks containing specially crafted cell attachment filenames, a remote attacker can exploit a path traversal vulnerability. This allows the attacker to write arbitrary files to locations outside the...

6.5CVSS5.9AI score0.00266EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/21 12:14 a.m.30 views

CVE-2026-39377 nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...

6.5CVSS0.00266EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/21 12:14 a.m.6 views

CVE-2026-39377 nbconvert has an Arbitrary File Write via Path Traversal in Cell Attachment Filenames

The nbconvert tool, jupyter nbconvert, converts Jupyter notebooks to various other formats via Jinja templates. Versions 6.5 through 7.17.0 allow arbitrary file writes to locations outside the intended output directory when processing notebooks containing crafted cell attachment filenames. The...

6.5CVSS5.9AI score0.00266EPSS
Exploits0References2
OSV
OSV
added 2026/04/15 6:31 p.m.6 views

GHSA-HV5G-26JG-PC45 Velociraptor vulnerability in the query() plugin which allows access to all orgs with the user's current ACL token

Velociraptor versions prior to 0.76.3 contain a vulnerability in the query plugin which allows access to all orgs with the user's current ACL token. This allows an authenticated GUI user with access in one org, to use the query plugin, in a notebook cell, to run VQL queries on other orgs which th...

9.1CVSS5.8AI score0.00224EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2026/04/15 6:31 p.m.12 views

Velociraptor vulnerability in the query() plugin which allows access to all orgs with the user's current ACL token

Velociraptor versions prior to 0.76.3 contain a vulnerability in the query plugin which allows access to all orgs with the user's current ACL token. This allows an authenticated GUI user with access in one org, to use the query plugin, in a notebook cell, to run VQL queries on other orgs which th...

9.1CVSS5.8AI score0.00224EPSS
Exploits0References3Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/15 5:29 p.m.4 views

CVE-2026-6290 Velociraptor Query() Plugin Misapplies Permissions To Orgs

Velociraptor versions prior to 0.76.3 contain a vulnerability in the query plugin which allows access to all orgs with the user's current ACL token. This allows an authenticated GUI user with access in one org, to use the query plugin, in a notebook cell, to run VQL queries on other orgs which th...

8CVSS5.8AI score0.00224EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/19 6:31 p.m.4 views

EUVD-2025-208881

Use of a hard-coded AES-256-CBC key in the configuration backup/restore implementation of Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote authenticated users to decrypt, modify, and re-encrypt device configurations, enabling credential manipulatio...

5.8AI score0.00401EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/19 6:31 p.m.6 views

EUVD-2025-208885

Use of a deterministic credential generation algorithm in /ftl/bin/calcf2 in Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote attackers to derive valid administrative/root credentials from the device's MAC address, enabling authentication bypass an...

5.9AI score0.00517EPSS
Exploits0References4
NVD
NVD
added 2026/03/19 6:16 p.m.9 views

CVE-2025-67115

A path traversal vulnerability in /ftl/web/setup.cgi in Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote authenticated users to read arbitrary files from the filesystem via crafted values in the logtype parameter to /logsave.htm...

6.5CVSS0.00405EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/03/19 12:0 a.m.4 views

Quantifying Memory Cells Vulnerability for DRAM Security

Dynamic Random Access Memory DRAM is pervasive in computer systems. Cell vulnerabilities caused by unintended phenomena forced retention failure, latency alteration, rowhammer and rowpress lead to unintended bit flips in memory. These phenomena have been explored as attacks to violate data...

5.8AI score
Exploits0
Cvelist
Cvelist
added 2026/03/19 12:0 a.m.21 views

CVE-2025-67115

A path traversal vulnerability in /ftl/web/setup.cgi in Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote authenticated users to read arbitrary files from the filesystem via crafted values in the logtype parameter to /logsave.htm...

0.00405EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/19 12:0 a.m.5 views

CVE-2025-67113

OS command injection in the CWMP client /ftl/bin/cwmp of Small Cell Sercomm SCE4255W FreedomFi Englewood firmware before DG3934v3@2308041842 allows remote attackers controlling the ACS endpoint to execute arbitrary commands as root via a crafted TR-069 Download URL that is passed unescaped into t...

6.2AI score0.01222EPSS
Exploits0References4
CVE
CVE
added 2026/03/19 12:0 a.m.9 views

CVE-2025-67113

CVE-2025-67113 describes an OS command injection in the CWMP client (/ftl/bin/cwmp) of the Small Cell Sercomm SCE4255W (FreedomFi Englewood) firmware prior to DG3934v3@2308041842. The root cause is unescaped TR-069 Download URL input being passed into the firmware upgrade pipeline, allowing remot...

9.8CVSS6.2AI score0.01222EPSS
Exploits0References3
HackRead
HackRead
added 2026/03/18 12:23 p.m.6 views

New .NET AOT Malware Hides Code as a Black Box to Evade Detection

Researchers at Howler Cell have discovered a new .NET AOT malware campaign that uses a clever scoring system…...

5.8AI score
Exploits0
Veracode
Veracode
added 2026/03/14 5:20 a.m.7 views

Arbitrary File Write

Black is vulnerable to Arbitrary File Write. The vulnerability is due to improper sanitization of the --python-cell-magics option when constructing cache file names, allowing attackers to manipulate the file path and write cache files to arbitrary locations on the filesystem...

8.7CVSS5.9AI score0.00572EPSS
Exploits0References11Affected Software1
Rows per page
Query Builder