Lucene search
+L

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000378)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000378 advisory. An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds in...

7.8CVSS6.3AI score0.05789EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/31 12:27 a.m.5 views

SUSE CVE-2023-54234

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix missing mrioc-evtackcmds initialization Commit c1af985d27da "scsi: mpi3mr: Add Event acknowledgment logic" introduced an array mrioc-evtackcmds but initialization of the array elements was missed. They are just...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-36298

Malicious code in bioql PyPI...

8.2CVSS6.5AI score0.00414EPSS
Exploits0References1
0day.today
0day.today
added 2025/02/03 12:0 a.m.169 views

ABB Cylon FLXeon 9.3.4 cmds.js Authenticated Root Remote Code Execution Exploit

ABB Cylon FLXeon version 9.3.4 is vulnerable to authenticated root command execution via the cmds API. An authenticated attacker can execute arbitrary system commands with root privileges. !/usr/bin/env python3 ABB Cylon FLXeon 9.3.4 cmds.js Authenticated Root Remote Code Execution Vendor: ABB Lt...

10CVSS9.9AI score0.04328EPSS
Exploits18
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.2 views

VulnCheck KEV: CVE-2020-17505

Artica Web Proxy 4.30.000000 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via servicecmdspeform...

9CVSS7.3AI score0.82165EPSS
Exploits4References1
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.6 views

kernel: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

7.8CVSS6.8AI score0.00153EPSS
Exploits0References5
NVD
NVD
added 2023/07/25 9:15 p.m.43 views

CVE-2023-37907

Cryptomator is data encryption software for users who store their files in the cloud. Prior to version 1.9.2, the MSI installer provided on the homepage allows local privilege escalation LPE for low privileged users, if already installed. The problem occurs as the repair function of the MSI spawn...

7.8CVSS7.2AI score0.00194EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/07/25 8:11 p.m.13 views

CVE-2023-37907 Cryptomator's MSI installer allows local privilege escalation

Cryptomator is data encryption software for users who store their files in the cloud. Prior to version 1.9.2, the MSI installer provided on the homepage allows local privilege escalation LPE for low privileged users, if already installed. The problem occurs as the repair function of the MSI spawn...

7CVSS7.6AI score0.00194EPSS
Exploits1References3
NVD
NVD
added 2023/01/09 8:15 a.m.29 views

CVE-2022-33255

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device...

8.2CVSS8.2AI score0.00414EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/06 5:2 a.m.38 views

CVE-2022-33255 Buffer over-read in Bluetooth HOST

Information disclosure due to buffer over-read in Bluetooth HOST while processing GetFolderItems and GetItemAttribute Cmds from peer device...

8.2CVSS8.3AI score0.00414EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2022/01/14 7:14 p.m.16 views

CVE-2021-45778

Removed by vendor...

7AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/12/15 7:15 p.m.4 views

CVE-2021-39652

In sectsparsingcmds of TBD, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS6.8AI score0.00123EPSS
Exploits0References2
OSV
OSV
added 2020/08/12 5:15 p.m.7 views

CVE-2020-17505

Artica Web Proxy 4.30.000000 allows an authenticated remote attacker to inject commands via the service-cmds parameter in cyrus.php. These commands are executed with root privileges via servicecmdspeform...

8.8CVSS7.4AI score0.82165EPSS
Exploits4References2
Positive Technologies
Positive Technologies
added 2020/08/12 12:0 a.m.5 views

PT-2020-15027 · Artica · Artica Web Proxy

Name of the Vulnerable Software and Affected Versions: Artica Web Proxy version 4.30.000000 Description: The issue allows an authenticated remote attacker to inject commands via the service-cmds parameter in "cyrus.php". These commands are executed with root privileges through the service cmds...

9CVSS9AI score0.82165EPSS
Exploits4References4
FreeBSD
FreeBSD
added 2018/08/28 12:0 a.m.289 views

bro -- array bounds and potential DOS issues

Corelight reports: Bro 2.5.5 primarily addresses security issues: Fix array bounds checking in BinPAC: for arrays that are fields within a record, the bounds check was based on a pointer to the start of the record rather than the start of the array field, potentially resulting in a buffer...

1.1AI score
Exploits0References1
ThreatPost
ThreatPost
added 2013/04/02 2:35 p.m.6 views

DoD Inspector General Calls Out Army CIO For Poor Mobile Device Security

The CIO of the U.S. Army failed to put in place a comprehensive security program capable of protecting data stored on commercial mobile devices such as iPhones and Androids, leaving sensitive information in key Army installations exposed. The Inspector General of the Department of Defense took th...

0.8AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/03/13 12:0 a.m.17 views

AIX 6.1 TL 6 : bos.aixpert.cmds (U829665)

The remote host is missing AIX PTF U829665, which is related to the security of the package bos.aixpert.cmds. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from AIX Security PTF U829665. The text itself is copyright C...

5.5AI score
Exploits0References1
Rows per page
Query Builder