Lucene search
+L

611 matches found

NVD
NVD
added 5 days ago3 views

CVE-2026-50384

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Clip Service allows an authorized attacker to elevate privileges locally...

7CVSS0.00153EPSS
Exploits0References1
CVE
CVE
added 5 days ago8 views

CVE-2026-50384

CVE-2026-50384 describes a race condition in the Windows Clip Service caused by concurrent execution over a shared resource with improper synchronization. This vulnerability allows a locally authenticated attacker to elevate privileges. The CVSS 3.1 vector is LOCAL, with HIGH impact on confidenti...

7CVSS6.1AI score0.00153EPSS
Exploits0References1Affected Software9
Cvelist
Cvelist
added 5 days ago31 views

CVE-2026-50384 Windows Clip Service Elevation of Privilege Vulnerability

...

7CVSS0.00153EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 5 days ago5 views

CVE-2026-50384 Windows Clip Service Elevation of Privilege Vulnerability

...

7CVSS6.1AI score0.00153EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 5 days ago7 views

Windows Clip Service Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Clip Service allows an authorized attacker to elevate privileges locally...

7CVSS6.2AI score0.00153EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/06/07 10:42 a.m.18 views

Malicious code in bittensor-burn-watch (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 16180f1609731d35398f11dbfcb328826d2e39a7acf42fc256b563512645e6e5 Package advertises itself as a Bittensor subnet burn-rate monitor but bundles a live TELEGRAMBOTTOKEN and TELEGRAMCHATID in...

5.7AI score
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:45 p.m.14 views

CVE-2026-31230

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

9.8CVSS6.2AI score0.00554EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/29 7:42 p.m.10 views

CVE-2026-44420 FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard cliprdr channel by sending a CBCLIPCAPS PDU with a too-small capabilitySetLength. This can crash the server process...

8.8CVSS6.2AI score0.03453EPSS
Exploits1References1
OSV
OSV
added 2026/05/29 7:42 p.m.2 views

CVE-2026-44420 FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard cliprdr channel by sending a CBCLIPCAPS PDU with a too-small capabilitySetLength. This can crash the server process...

8.8CVSS6.3AI score0.03453EPSS
Exploits1References8
Cvelist
Cvelist
added 2026/05/29 7:42 p.m.53 views

CVE-2026-44420 FreeRDP cliprdr server heap-buffer-overflow via undersized capabilitySetLength in CB_CLIP_CAPS

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP client can trigger a heap-buffer-overflow write in FreeRDP's server-side clipboard cliprdr channel by sending a CBCLIPCAPS PDU with a too-small capabilitySetLength. This can crash the server process...

8.8CVSS0.03453EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.10 views

FreeRDP 安全漏洞

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.26.0 contained security vulnerabilities. These vulnerabilities stemmed from malicious RDP clients being able to trigger a heap buffer overflow write in the server-side clipboard...

8.8CVSS6.1AI score0.03453EPSS
Exploits1References1
Broadcom
Broadcom
added 2026/05/19 12:0 a.m.29 views

Security update provided in Brocade ASCG3.4.0b Base OS (OVA Deployment) for Rocky Linux Kernel

Security update provided in Brocade ASCG3.4.0b Base OS OVA Deployment for Rocky Linux Kernel CVE-2022-50673 - Linux Kernel 'ext4' Vulnerable to Use-After-Free via Improper Error Handling in 'ext4orphancleanup' CVE-2022-50865 - Linux Kernel Vulnerable to Signed Integer Overflow via Backlog Limit...

7.8CVSS5.8AI score0.0071EPSS
Exploits3
EUVD
EUVD
added 2026/05/12 6:30 p.m.14 views

EUVD-2026-29553

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

6.3AI score0.00554EPSS
Exploits0References3
NVD
NVD
added 2026/05/12 6:16 p.m.18 views

CVE-2026-31230

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

9.8CVSS0.00554EPSS
Exploits0References5
CVE
CVE
added 2026/05/12 12:0 a.m.27 views

CVE-2026-31230

The CVE-2026-31230 vulnerability concerns the Adversarial Robustness Toolbox (ART) up to v1.20.1, specifically in its Kubeflow component (robustness_evaluation_fgsm_pytorch.py). The issue arises from using unsafe eval() to parse string values passed via --clip_values and --input_shape, enabling a...

9.8CVSS6.3AI score0.00554EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/05/12 12:0 a.m.6 views

CVE-2026-31230

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

6.3AI score0.00554EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/12 12:0 a.m.13 views

PT-2026-40117

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustness evaluation fgsm pytorch.py. The script uses the unsafe eval function to parse string values provided via the --clip values and --input shape command-lin...

6.3AI score0.00554EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/12 12:0 a.m.39 views

CVE-2026-31230

The Adversarial Robustness Toolbox ART thru 1.20.1 contains a command-line argument injection vulnerability in its Kubeflow component robustnessevaluationfgsmpytorch.py. The script uses the unsafe eval function to parse string values provided via the --clipvalues and --inputshape command-line...

0.00554EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007555)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007555 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix potential null-ptr-deref in toatmarpd. atmarpd is protected by RTNL since commit...

5.5CVSS6.2AI score0.00162EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007437)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007437 advisory. In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix memory leak of struct clipvcc. ioctlATMARPMKIP allocates struct clipvcc and set it...

5.5CVSS6.2AI score0.0016EPSS
Exploits0References4
Rows per page
Query Builder