Lucene search
K

23 matches found

CNNVD
CNNVD
added 2026/05/13 12:0 a.m.9 views

MISP modules 信任管理问题漏洞

MISP modules are scalable threat intelligence platform modules developed under the open-source MISP Project. They support import, export, expansion, and automated workflows. Prior to version 3.0.7, there were vulnerabilities related to trust management in MISP modules. These vulnerabilities stemm...

5.8CVSS5.9AI score0.00102EPSS
Exploits0References1
OSV
OSV
added 2026/01/09 9:12 p.m.2 views

GHSA-Q5QQ-MVFM-J35X Fickling has Static Analysis Bypass via Incomplete Dangerous Module Blocklist

Fickling's assessment ctypes, importlib, runpy, code and multiprocessing were added the list of unsafe imports https://github.com/trailofbits/fickling/commit/9a2b3f89bd0598b528d62c10a64c1986fcb09f66, https://github.com/trailofbits/fickling/commit/eb299b453342f1931c787bcb3bc33f3a03a173f9,...

9.3CVSS6.2AI score0.00554EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2026/01/09 11:26 a.m.13 views

CVE-2021-33124

Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

7.2CVSS6.8AI score0.00249EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2009-4386

Malware in sbrugna...

7.2CVSS6.4AI score0.00427EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-19818

Malware in sbrugna...

7.2CVSS6.4AI score0.00249EPSS
Exploits0References3
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.7 views

Malicious code in shell-old-code-module-kappa (npm)

The package shell-old-code-module-kappa was found to contain malicious code...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/08/01 12:0 a.m.4 views

The vulnerability of the gbak() function in the burp.cpp module of the “Red Database” database management system allows a hacker to cause a service failure.

The vulnerability of the gbak function in the burp.cpp module of the “Red Database” database management system is related to incorrect validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

3.5CVSS5.5AI score
Exploits0References2Affected Software2
CNNVD
CNNVD
added 2025/04/02 12:0 a.m.5 views

Drupal Access code 安全漏洞

Drupal Access code is a Drupal module for the Drupal community. A security vulnerability exists in Drupal Access code versions prior to 2.0.4, which stems from an improperly restricted authentication attempt that could lead to brute force cracking...

4.8CVSS6.8AI score0.00245EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/02/03 1:46 p.m.13 views

USN-7247-1: OpenCV vulnerabilities

It was discovered that OpenCV did not properly manage certain XML data, leading to a NULL pointer dereference. If a user were tricked into loading a specially crafted file, a remote attacker could possibly use this issue to make OpenCV crash, resulting in a denial of service. This issue only...

7.5CVSS6.7AI score0.0337EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/02/03 12:0 a.m.11 views

Ubuntu 18.04 LTS / 22.04 LTS : OpenCV vulnerabilities (USN-7247-1)

The remote Ubuntu 18.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7247-1 advisory. It was discovered that OpenCV did not properly manage certain XML data, leading to a NULL pointer dereference. If a user were tricked into...

7.5CVSS7AI score0.0337EPSS
Exploits2References6
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.4 views

The vulnerability of the Authenticated Code Module (ACM) in Intel microprogramming system BIOS allows a hacker to enhance their privileges.

The vulnerability of the Authenticated Code Module ACM in Intel microprogramming system BIOS is related to data writing beyond the buffer. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.5CVSS6.6AI score0.00249EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2022/06/29 12:0 a.m.6 views

The vulnerability of the Authenticated Code Module (ACM) in Intel microprogramming system BIOS allows a hacker to enhance their privileges.

The vulnerability of the Authenticated Code Module ACM in Intel microprogramming system BIOS is related to insufficient protection of sensitive data. Exploiting this vulnerability can allow attackers to enhance their privileges...

7.5CVSS6.6AI score0.00249EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/06/22 12:0 a.m.43 views

F5 Networks BIG-IP : Intel BIOS vulnerability (K87351324)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K87351324 advisory. Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to...

7.2CVSS6.8AI score0.00249EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/05/12 4:36 p.m.9 views

CVE-2021-33124

Out-of-bounds write in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

6.5AI score0.00249EPSS
Exploits0References2
CVE
CVE
added 2022/05/12 4:36 p.m.108 views

CVE-2021-33124

CVE-2021-33124 refers to an out-of-bounds write in the BIOS authenticated code module for some Intel processors that may allow a privileged local user to escalate privileges. Public advisories (Intel SA-00601) describe this class of BIOS/firmware flaws and recommend applying the latest Intel BIOS...

7.2CVSS6.3AI score0.00249EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/05/12 4:36 p.m.7 views

CVE-2021-33123

Improper access control in the BIOS authenticated code module for some IntelR Processors may allow a privileged user to potentially enable aescalation of privilege via local access...

7.5AI score0.0025EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/04/15 6:15 p.m.2 views

CVE-2021-44485

An issue was discovered in YottaDB through r1.32 and V7.0-000. A lack of NULL checks in tripgen in srport/emitcode.c allows attackers to crash the application by dereferencing a NULL pointer...

7.5CVSS7.1AI score0.01144EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2021/05/18 12:0 a.m.4 views

PT-2021-7227 · Intel · Intel Processors

Name of the Vulnerable Software and Affected Versions: IntelR Processors affected versions not specified Description: The issue is related to an out-of-bounds write in the BIOS authenticated code module for some IntelR Processors. This may allow a privileged user to potentially enable escalation ...

7.2CVSS6.9AI score0.00249EPSS
Exploits0References6
Cvelist
Cvelist
added 2015/06/15 2:0 p.m.39 views

CVE-2015-4362

Cross-site request forgery CSRF vulnerability in trackingcode.admin.inc in the Tracking Code module 7.x-1.x before 7.x-1.6 for Drupal allows remote attackers to hijack the authentication of administrators for requests that disable tracking codes via unspecified vectors...

7.2AI score0.01055EPSS
Exploits0References6
CNVD
CNVD
added 2015/03/10 12:0 a.m.1 views

Drupal Tracking Code module cross-site request forgery vulnerability

Drupal is a free, open source content management system developed in PHP and maintained by the Drupal community.Tracking Code is one of the code tracking modules. A cross-site request forgery vulnerability exists in the Drupal Tracking Code module. A remote attacker can exploit this vulnerability...

6.8CVSS7.4AI score0.01055EPSS
Exploits0References1
Rows per page
Query Builder