Lucene search
K

357 matches found

Gentoo Linux
Gentoo Linux
added 2025/05/12 12:0 a.m.18 views

Mozilla Thunderbird: Multiple Vulnerabilities

Background Mozilla Thunderbird is a popular open-source email client from the Mozilla project. Description Multiple vulnerabilities have been discovered in Mozilla Thunderbird. Please review the CVE identifiers referenced below for details. Impact Please review the referenced CVE identifiers for...

9.8CVSS10AI score0.1307EPSS
Exploits2
Github Security Blog
Github Security Blog
added 2025/05/01 3:31 a.m.10 views

Duplicate Advisory: @cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4pc9-x2fx-p7vj. This link is maintained to preserve external references. Original Description The OAuth implementation in workers-oauth-provider that is part of MCP framework...

6.1CVSS7.1AI score0.00268EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/25 12:0 a.m.9 views

PT-2025-17931 · Unknown · Filez Client

Name of the Vulnerable Software and Affected Versions: FileZ client affected versions not specified Description: An improper XML parsing issue was reported in the FileZ client, which could allow arbitrary file reads on the system if a crafted URL is visited by a local user. Recommendations: At th...

5.1CVSS6.1AI score0.0012EPSS
Exploits0References5
CVE
CVE
added 2025/03/12 9:42 a.m.151 views

CVE-2025-21844

CVE-2025-21844 affects the Linux kernel SMB client path. The vulnerability could allow a NULL pointer dereference in the receive_encrypted_standard() path due to missing checks, which could crash the kernel. The fix adds checks for the next_buffer in receive_encrypted_standard() and validates the...

5.5CVSS6.6AI score0.0021EPSS
Exploits0References10Affected Software1
FreeBSD Advisory
FreeBSD Advisory
added 2025/02/21 12:0 a.m.27 views

FreeBSD-SA-25:05.openssh

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-25:05.openssh Security Advisory The FreeBSD Project Topic: Multiple vulnerabilities in OpenSSH Category: contrib Module: openssh Announced: 2025-02-21 Credits:...

6.8CVSS7AI score0.38474EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/02/20 12:0 a.m.22 views

RHEL 8 : libpq (RHSA-2025:1737)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1737 advisory. The libpq package provides the PostgreSQL client library, which allows client programs to connect to PostgreSQL servers. Security Fixes: postgresql:...

8.1CVSS8AI score0.89472EPSS
Exploits10References4
Tenable Nessus
Tenable Nessus
added 2025/02/18 12:0 a.m.19 views

Debian dsa-5868 : openssh-client - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5868 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5868-1 [email protected] https://www.debian.org/security/...

6.8CVSS7.1AI score0.06997EPSS
Exploits4References4
F5 Networks
F5 Networks
added 2025/02/05 2:16 p.m.13 views

K000139656: BIG-IP APM endpoint inspection vulnerability CVE-2025-23415

Security Advisory Description A missing integrity check vulnerability exists in BIG-IP APM access policy endpoint inspection that may allow an attacker to bypass endpoint inspection checks for VPN connections initiated through the BIG-IP APM browser network access VPN client for Windows, macOS, a...

3.1CVSS6.1AI score0.00134EPSS
Exploits0Affected Software1
OSV
OSV
added 2025/01/18 1:31 a.m.28 views

MGASA-2025-0013 Updated openafs packages fix security vulnerabilities

A local user can bypass the OpenAFS PAG Process Authentication Group throttling mechanism in Unix client. CVE-2024-10394 An authenticated user can provide a malformed ACL to the fileserver's StoreACL RPC, causing the fileserver to crash. CVE-2024-10396 A malicious server can crash the OpenAFS cac...

8.4CVSS6.7AI score0.00563EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/01/09 5:22 p.m.28 views

CVE-2025-22149 JWK Set's HTTP client only overwrites and appends JWK to local cache during refresh

JWK Set JSON Web Key Set is a JWK and JWK Set Go implementation. Prior to 0.6.0, the project's provided HTTP client's local JWK Set cache should do a full replacement when the goroutine refreshes the remote JWK Set. The current behavior is to overwrite or append. This is a security issue for use...

2.1CVSS0.00539EPSS
Exploits0References3
NVD
NVD
added 2024/11/29 5:15 p.m.30 views

CVE-2024-47193

WithSecure Elements Agent for Mac before 24.3, MDR before 24.3, and Elements Client Security for Mac before 16.10 allow a remote Denial of Service...

5.5CVSS0.00192EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/29 12:0 a.m.5 views

PT-2024-32473 · Withsecure · Elements Client Security For Mac +2

Name of the Vulnerable Software and Affected Versions: WithSecure Elements Agent for Mac versions prior to 24.3 MDR versions prior to 24.3 Elements Client Security for Mac versions prior to 16.10 Description: The issue allows a remote Denial of Service. Recommendations: For WithSecure Elements...

5.5CVSS7.3AI score0.00192EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/11/29 12:0 a.m.21 views

CVE-2024-47193

WithSecure Elements Agent for Mac before 24.3, MDR before 24.3, and Elements Client Security for Mac before 16.10 allow a remote Denial of Service...

0.00192EPSS
Exploits0References1
CVE
CVE
added 2024/11/29 12:0 a.m.61 views

CVE-2024-47193

Affected software: WithSecure Elements Agent for Mac (before 24.3), WithSecure MDR (before 24.3), and Elements Client Security for Mac (before 16.10). Issue: remote Denial of Service caused by a condition in these products. Root cause is not explicitly stated in the provided documents. Impact: av...

5.5CVSS7.3AI score0.00192EPSS
Exploits0References1
CVE
CVE
added 2024/11/14 1:0 p.m.491 views

CVE-2024-10977

CVE-2024-10977 affects PostgreSQL libpq by allowing a server to send an error message that, when the client is not trusting SSL/GSS settings, can reveal arbitrary non-NUL bytes to the client (e.g., psql). Affected products/versions include PostgreSQL before the fixed point: 17.1 and older branche...

3.7CVSS3.5AI score0.0038EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/09/25 12:0 a.m.4 views

Xen 安全漏洞

Xen is an open source virtual machine monitor product from Xen Open Source. The product enables different and incompatible operating systems to run on the same computer and supports migration at runtime to ensure uptime and avoid downtime. A security vulnerability exists in versions of Xen prior ...

7.5CVSS6.1AI score0.00235EPSS
Exploits0References3
OSV
OSV
added 2024/09/15 5:19 p.m.37 views

RHSA-2008:0264 Red Hat Security Advisory: Red Hat Network Satellite Server Solaris client security update

Bulletin has no description...

10CVSS7.4AI score0.48575EPSS
Exploits16References51
NVD
NVD
added 2024/07/26 5:15 p.m.31 views

CVE-2024-27357

An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements Client Security through 23.x for macOS, and WithSecure MDR through 23.x for macOS. Local Privilege Escalation can occur during installations or updates by admins...

5.8CVSS0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/26 12:0 a.m.12 views

PT-2024-21845 · Withsecure · Withsecure Mdr +2

Name of the Vulnerable Software and Affected Versions: WithSecure Elements Agent versions through 23.x WithSecure Elements Client Security versions through 23.x WithSecure MDR versions through 23.x Description: An issue allows Local Privilege Escalation to occur during installations or updates by...

5.8CVSS7.2AI score0.00184EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/07/26 12:0 a.m.14 views

CVE-2024-27357

An issue was discovered in WithSecure Elements Agent through 23.x for macOS, WithSecure Elements Client Security through 23.x for macOS, and WithSecure MDR through 23.x for macOS. Local Privilege Escalation can occur during installations or updates by admins...

7AI score0.00184EPSS
Exploits0References1
Rows per page
Query Builder