Lucene search
K

518 matches found

GithubExploit
GithubExploit
added 2025/12/07 9:42 a.m.154 views

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell CVE-2025-55182 PoC Usage bash Interacti...

10CVSS7.2AI score0.99562EPSS
Exploits374
OSV
OSV
added 2025/11/21 3:59 p.m.5 views

JLSEC-2025-202 A Lucky 13 timing side channel in mbedtls_ssl_decrypt_buf in library/ssl_msg.c in Trusted Firmware M...

A Lucky 13 timing side channel in mbedtlsssldecryptbuf in library/sslmsg.c in Trusted Firmware Mbed TLS through 2.23.0 allows an attacker to recover secret key information. This affects CBC mode because of a computed time difference based on a padding length...

5.5CVSS7.3AI score0.00368EPSS
Exploits0References12
OSV
OSV
added 2025/11/21 3:59 p.m.6 views

JLSEC-2025-233 Padding oracle through timing of cipher error reporting

Vulnerability In symmetric encryption modes that involve padding, if an attacker can submit ciphertexts for decryption and learn whether the padding is valid, this provides partial information about the plaintext. If the attacker can also submit input that the victim encrypts together with a...

5.3CVSS5.9AI score0.0024EPSS
Exploits0References2
OSV
OSV
added 2025/11/17 10:29 p.m.6 views

CLSA-2025-1763418591 Fix CVE(s): CVE-2019-3843, CVE-2019-3844

SECURITY UPDATE: Privilege chaining vulnerability - debian/patches/CVE-2019-3843.patch: introduce functionality for blocking chmod for suid/sgid files with new unit setting RestrictSUIDSGID= - CVE-2019-3843 SECURITY UPDATE: Privilege chaining vulnerability - debian/patches/CVE-2019-3844.patch:...

7.8CVSS5.8AI score0.00912EPSS
Exploits2References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/28 11:20 a.m.7 views

Security Bulletin: IBM Maximo Application Suite Predict Component uses could allow a remote attacker to bypass security restrictions caused by a failure to honor JMS messaging configuration.

Summary Security Bulletin: IBM Maximo Application Suite Predict Component uses could allow a remote attacker to bypass security restrictions caused by a failure to honor JMS messaging configuration.This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Detai...

7.5CVSS6.5AI score0.00369EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.6 views

Siemens RUGGEDCOM ROS Devices Use of a Broken or Risky Cryptographic Algorithm (CVE-2025-41223)

The affected devices support the TLSECDHEECDSAWITHAES128CBCSHA256 cipher suite, which uses CBC Cipher Block Chaining mode that is known to be vulnerable to timing attacks. This could allow an attacker to compromise the integrity and confidentiality of encrypted communications. This plugin only...

8.8CVSS5.4AI score0.00285EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2025/10/14 12:0 a.m.5 views

Hash Chaining Degrades Security at Facebook

Modern web and digital application password storage relies on password hashing for storage and security. Ad-hoc upgrade of password storage to keep up with hash algorithm norms may be used to save costs but can introduce unforeseen vulnerabilities. This is the case in the password storage scheme...

6.9AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/13 12:21 p.m.8 views

Security Bulletin: Security vulnerabilities may affect IBM WebSphere Liberty that is shipped with IBM CICS TX Standard.

Summary Security vulnerabilities may affect IBM WebSphere Liberty that is shipped with IBM CICS TX Standard. An update to IBM CICS TX Standard has been released to address these. Vulnerability Details CVEID:CVE-2025-48976 DESCRIPTION: Allocation of resources for multipart headers with insufficien...

7.5CVSS6.7AI score0.64718EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/10/13 12:7 p.m.8 views

Security Bulletin: Security vulnerabilities may affect IBM WebSphere Liberty that is shipped with TXSeries for Multiplatforms.

Summary Security vulnerabilities may affect IBM WebSphere Liberty that is shipped with TXSeries for Multiplatforms. An update to TXSeries for Multiplatforms has been released to address these. Vulnerability Details CVEID:CVE-2025-36000 DESCRIPTION: IBM WebSphere Application Server Liberty 17.0.0....

7.5CVSS6.7AI score0.64718EPSS
Exploits1Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-0026

Malware in sbrugna...

7.8CVSS6.1AI score0.03155EPSS
Exploits1References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-1999-1066

Malware in sbrugna...

5CVSS5.8AI score0.03211EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-8438

Malware in sbrugna...

5CVSS6.3AI score0.73532EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-16233

Malware in sbrugna...

7.5CVSS7.5AI score0.01044EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-7227

Malware in sbrugna...

7.5CVSS7.4AI score0.01089EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2012-0015

Malware in sbrugna...

4.9CVSS6AI score0.02266EPSS
Exploits1References23
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4889

Malware in sbrugna...

10CVSS6.2AI score0.04105EPSS
Exploits4References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-5139

Malware in sbrugna...

2.6CVSS6.6AI score0.15395EPSS
Exploits1References44
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-18307

Malware in sbrugna...

7.5CVSS7.6AI score0.01444EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-0014

Malware in sbrugna...

4CVSS6.1AI score0.0284EPSS
Exploits0References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2017-8846

Malware in sbrugna...

5.9CVSS6.1AI score0.04219EPSS
Exploits2References8
Rows per page
Query Builder