Lucene search
K

2223 matches found

Tenable Nessus
Tenable Nessus
added 2025/06/09 12:0 a.m.5 views

RHEL 8 : thunderbird (RHSA-2025:8630)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2025:8630 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving...

9.8CVSS7.7AI score0.08917EPSS
Exploits1References19
Debian
Debian
added 2025/06/06 6:28 p.m.11 views

[SECURITY] [DSA 5939-1] gimp security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5939-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff June 06, 2025 https://www.debian.org/security/faq -...

7.8CVSS8.7AI score0.06312EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/05 3:26 p.m.9 views

CVE-2025-25021

IBM QRadar Suite Software 1.10.12.0 through 1.11.2.0 and IBM Cloud Pak for Security 1.10.0.0 through 1.10.11.0 could allow a privileged execute code in case management script creation due to the improper generation of code...

7.2CVSS6.9AI score0.00536EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/06/05 12:0 a.m.9 views

Debian dsa-5936 : libfile-find-rule-perl - security update

The remote Debian 12 host has a package installed that is affected by a vulnerability as referenced in the dsa-5936 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5936-1 [email protected] https://www.debian.org/security/...

8.8CVSS8.4AI score0.00736EPSS
Exploits0References4
AlmaLinux
AlmaLinux
added 2025/06/05 12:0 a.m.5 views

Important: thunderbird security update

Mozilla Thunderbird is a standalone mail and newsgroup client. Security Fixes: firefox: thunderbird: Out-of-bounds access when resolving Promise objects CVE-2025-4918 firefox: thunderbird: Out-of-bounds access when optimizing linear sums CVE-2025-4919 firefox: thunderbird: Clickjacking...

9.8CVSS8.2AI score0.08917EPSS
Exploits1References19
NVD
NVD
added 2025/06/04 8:15 a.m.10 views

CVE-2025-47726

Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

7.3CVSS0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/04 7:25 a.m.7 views

CVE-2025-47727 Out-of-bounds Write in CNCSoft

Delta Electronics CNCSoft lacks proper validation of the user-supplied file. If a user opens a malicious file, an attacker can leverage this vulnerability to execute code in the context of the current process...

7.3CVSS7.2AI score0.00214EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2025:01702-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.0039EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2025/06/03 12:0 a.m.4 views

PT-2025-23615 · Erupt · Erupt

Name of the Vulnerable Software and Affected Versions: erupt version 1.12.19 Description: The issue is related to an arbitrary file upload vulnerability in the /upload/GoodsCategory/image component, which allows attackers to execute arbitrary code by uploading a crafted file. Recommendations: For...

5.4CVSS7.5AI score0.00281EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2025/06/02 12:0 a.m.16 views

Debian dsa-5934 : roundcube - security update

The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5934 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5934-1 [email protected] https://www.debian.org/security/ Moritz...

9.9CVSS8.7AI score0.89462EPSS
Exploits29References4
OSV
OSV
added 2025/05/28 11:4 p.m.2 views

USN-7537-2 net-tools regression

USN-7537-1 fixed a vulnerability in net-tools that caused a regression. This update fixes the problem. Original advisory details: It was discovered that net-tools incorrectly handled certain inputs. An attacker could possible use this issue to cause a crash or execute arbitrary code...

6.6CVSS6.9AI score0.00158EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/28 12:0 a.m.12 views

Mozilla Firefox Security Update (mfsa_2025-42) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

8.1CVSS6.4AI score0.00493EPSS
Exploits0References1
CVE
CVE
added 2025/05/27 4:43 p.m.69 views

CVE-2025-23247

CVE-2025-23247 affects the NVIDIA CUDA Toolkit cuobjdump binary. The root cause is a failure to check the length of a buffer when processing ELF inputs, which can cause the tool to crash or potentially execute arbitrary code with a crafted ELF file. A GitHub exploit PoC exists for this CVE, showi...

7.8CVSS5.7AI score0.00263EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/05/27 2:15 p.m.5 views

CVE-2025-48796

A flaw was found in GIMP. The GIMP aniloadimage function is vulnerable to a stack-based overflow. If a user opens.ANI files, GIMP may be used to store more information than the capacity allows. This flaw allows a malicious ANI file to trigger arbitrary code execution...

7.3CVSS7.3AI score0.00161EPSS
Exploits0References3
OSV
OSV
added 2025/05/27 1:15 p.m.1 views

DEBIAN-CVE-2025-5269

Memory safety bug present in Firefox ESR 128.10, and Thunderbird 128.10. This bug showed evidence of memory corruption and we presume that with enough effort this could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox ESR 128.11 and Thunderbird 128.11...

8.1CVSS7.5AI score0.00377EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/27 12:29 p.m.6 views

CVE-2025-5268 Memory safety bugs fixed in Firefox 139, Thunderbird 139, Firefox ESR 128.11, and Thunderbird 128.11

Memory safety bugs present in Firefox 138, Thunderbird 138, Firefox ESR 128.10, and Thunderbird 128.10. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

7AI score0.00398EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/05/27 12:0 a.m.10 views

Mozilla Thunderbird < 139.0

The version of Thunderbird installed on the remote macOS or Mac OS X host is prior to 139.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2025-45 advisory. - Memory safety bugs present in Firefox 138, Thunderbird 138, Firefox ESR 128.10, and Thunderbird 128.10...

8.1CVSS7.3AI score0.00493EPSS
Exploits0References11
Rosalinux
Rosalinux
added 2025/05/26 6:34 a.m.13 views

Advisory ROSA-SA-2025-2869

Software: libxslt 1.1.28 OS: rosa-server79 packageevrstring: libxslt-1.1.28-6.0.1.1.res7 CVE-ID: CVE-2024-55549 BDU-ID: 2025-03641 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the xsltGetInheritedNsList function of the libxslt library is related to memory usage after it has been freed...

7.8CVSS7.6AI score0.00324EPSS
Exploits4
RedhatCVE
RedhatCVE
added 2025/05/25 12:18 a.m.17 views

CVE-2023-34873

On MOBOTIX P3 cameras before MX-V4.7.2.18 and Mx6 cameras before MX-V5.2.0.61, the tcpdump feature does not properly validate input, which allows authenticated users to execute code...

8.7CVSS7AI score0.00387EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:36 a.m.4 views

CVE-2024-45773

A use-after-free vulnerability involving upgradeToRocket requests can cause the application to crash or potentially result in code execution or other undesirable effects. This issue affects Facebook Thrift prior to v2024.09.09.00...

7.5CVSS7.5AI score0.00463EPSS
Exploits0References1
Rows per page
Query Builder