Lucene search
K

710 matches found

Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-22901

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraph accel api AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References5
Redos
Redos
added 2026/03/04 12:0 a.m.2 views

ROS-20260304-73-0008

A vulnerability in the netsched component of the Linux operating system kernel is related to incorrect resource clearing or freeing. Exploitation of the vulnerability could allow a remote attacker to affect the availability of protected information...

5.5CVSS7.2AI score0.00172EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2026/03/03 1:28 p.m.5 views

Security update for patch

This update for patch fixes the following issues: CVE-2021-45261: Clear range of pointers before they are used/freed bsc1194037. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

3.3CVSS5.9AI score0.00705EPSS
Exploits1References4
OSV
OSV
added 2026/03/03 1:28 p.m.1 views

SUSE-SU-2026:0781-1 Security update for patch

This update for patch fixes the following issues: - CVE-2021-45261: Clear range of pointers before they are used/freed bsc1194037...

5.5CVSS5.9AI score0.00705EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.9 views

ImageMagick 代码注入漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained a code injection vulnerability. This vulnerability stemmed from the ps...

5.7CVSS7.4AI score0.00161EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-20609

Name of the Vulnerable Software and Affected Versions Breeze - WordPress Cache Plugin versions through 2.2.21 Description The Breeze - WordPress Cache Plugin is affected by an issue allowing unauthorized cache clearing. The REST API endpoint /wp-json/breeze/v1/clear-all-cache is registered withou...

5.3CVSS5.2AI score0.00353EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/02/19 12:0 a.m.10 views

WordPress plugin Breeze - WordPress Cache Plugin 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.8AI score0.00353EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/02/18 7:30 p.m.6 views

CVE-2025-33101

IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man in the middle techniques due to improper clearing of heap memory...

5.9CVSS5.5AI score0.00202EPSS
Exploits0References1
OSV
OSV
added 2026/02/17 8:22 p.m.7 views

CVE-2025-33101

IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man in the middle techniques due to improper clearing of heap memory...

5.9CVSS5.5AI score
Exploits0References1
NVD
NVD
added 2026/02/17 8:22 p.m.17 views

CVE-2025-33101

IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man in the middle techniques due to improper clearing of heap memory...

5.9CVSS0.00202EPSS
Exploits0References1
OSV
OSV
added 2026/02/17 8:22 p.m.6 views

CVE-2025-13108

IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources...

7.5CVSS6AI score0.0018EPSS
Exploits0References1
NVD
NVD
added 2026/02/17 8:22 p.m.14 views

CVE-2025-13108

IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources...

7.5CVSS0.0018EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/17 7:3 p.m.4 views

CVE-2025-33101 Multiple Vulnerabilities in IBM Concert Software.

IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man in the middle techniques due to improper clearing of heap memory...

5.9CVSS7.1AI score0.00202EPSS
Exploits0References1
CVE
CVE
added 2026/02/17 7:3 p.m.15 views

CVE-2025-33101

CVE-2025-33101 affects IBM Concert Software 1.0.0–2.1.0. The vulnerability arises from improper clearing of heap memory, enabling an attacker to obtain sensitive information via man-in-the-middle techniques. Public sources in connected documents reiterate information disclosure as the impact and ...

5.9CVSS7.3AI score0.00202EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.9 views

PT-2026-20243

Name of the Vulnerable Software and Affected Versions IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform versions 3.0.0.0 through 3.0.5.4 Interim Fix 027 Description The software is susceptible to cross-site scripting. An unauthenticated attacker can embed...

6.1CVSS5.1AI score0.00172EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.11 views

IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 跨站脚本漏洞

IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform is a payment integration and processing platform provided by IBM. Version 3.0.0.0 to 3.0.5.4 Interim Fix 027 of IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform contain...

6.1CVSS5.8AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/17 12:0 a.m.6 views

PT-2026-20224

Name of the Vulnerable Software and Affected Versions IBM DB2 Merge Backup for Linux, UNIX and Windows version 12.1.0.0 Description A flaw exists in IBM DB2 Merge Backup for Linux, UNIX and Windows version 12.1.0.0 where a buffer does not properly clear resources, potentially allowing an attacker...

7.5CVSS6.1AI score0.0018EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/02/14 4:27 p.m.26 views

CVE-2026-23200 ipv6: Fix ECMP sibling count mismatch when clearing RTF_ADDRCONF

In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix ECMP sibling count mismatch when clearing RTFADDRCONF syzbot reported a kernel BUG in fib6addrt2node when adding an IPv6 route. 0 Commit f72514b3c569 "ipv6: clear RA flags when adding a static route" introduced logic to...

0.00114EPSS
Exploits0References4
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/10 4:45 a.m.11 views

Security Bulletin: Multiple Vulnerabilities in IBM Concert Software.

Summary Multiple vulnerabilities were addressed in IBM Concert Software version 2.2.0 Vulnerability Details CVEID:CVE-2025-48924 DESCRIPTION: Uncontrolled Recursion vulnerability in Apache Commons Lang. This issue affects Apache Commons Lang: Starting with commons-lang:commons-lang 2.0 to 2.6, an...

9.8CVSS6.4AI score0.02164EPSS
Exploits11Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/04 2:34 p.m.6 views

lz4-java: lz4-java: Information Disclosure via Insufficient Output Buffer Clearing

A flaw was found in lz4-java. This vulnerability allows disclosure of sensitive data via crafted compressed input due to insufficient clearing of the output buffer in Java-based decompressor implementations...

8.2CVSS5.9AI score0.00562EPSS
Exploits0References6
Rows per page
Query Builder