Lucene search
K

1086287 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in libjackson-json-java

A deserialization flaw was discovered in the Jackson-Databind library, in versions prior to 2.6.7.1, 2.7.9.1, and 2.8.9. This flaw could allow an unauthenticated user to execute arbitrary code by sending maliciously crafted input to the readValue method of the ObjectMapper...

9.8CVSS7.2AI score0.37925EPSS
Exploits7References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in PostgresSQL 11

A flaw was discovered in PostgreSQL that allows authenticated database users to execute arbitrary code through insufficient overflow checks during SQL array value modifications. This issue arises due to an integer overflow during array modifications, where a remote user can trigger the overflow b...

8.8CVSS7.8AI score0.04322EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in pyyaml

In PyYAML before version 5.1, the yaml.load API could execute arbitrary code if used with untrusted data. The load function has been deprecated in version 5.1, and the 'UnsafeLoader' has been introduced to maintain backward compatibility with this function...

9.8CVSS7.9AI score0.06031EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in sdl-image1.2

There is an exploitable code execution vulnerability in the XPM image rendering functionality of SDL2image 2.0.4. A specially crafted XPM image can cause an integer overflow, allocating a buffer that is too small. This buffer can then be written beyond its boundaries, leading to a heap overflow a...

8.8CVSS8AI score0.03616EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Chromium

Type Confusion in V8 in Google Chrome prior to 137.0.7151.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.5AI score0.10171EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Chromium

Type confusion in WebAssembly in Google Chrome prior to version 126.0.6478.126 allowed a remote attacker to execute arbitrary code via a crafted HTML page. Chromium security severity: High...

8.8CVSS8.2AI score0.00424EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Git

Git is a distributed revision control system. git log can display commits in an arbitrary format using its --format specifiers. This functionality is also exposed to git archive via the export-subst gitattribute. When processing the padding operators, there is an integer overflow in...

9.8CVSS9AI score0.44268EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in WebKit2GTK

The issue was resolved through improved memory handling. This issue is fixed in Safari 17.5, iOS 17.5, iPadOS 17.5, macOS Sonoma 14.5, tvOS 17.5, visionOS 1.2, and watchOS 10.5. Processing web content may lead to arbitrary code execution...

8.8CVSS8.3AI score0.0118EPSS
Exploits0References2
Nuclei
Nuclei
added 2026/06/19 11:10 a.m.47 views

Zoho ManageEngine - Remote Code Execution

Zoho ManageEngine Password Manager Pro, PAM 360, and Access Manager Plus are susceptible to unauthenticated remote code execution via XML-RPC. An attacker can execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary...

9.8CVSS8.1AI score0.9994EPSS
Exploits5References5
Nuclei
Nuclei
added 2026/06/19 11:10 a.m.11 views

Apache ActiveMQ < 5.16.5/5.17.3 - Remote Code Execution

Once an user is authenticated on Jolokia, he can potentially trigger arbitrary code execution. In details, in ActiveMQ configurations, jetty allows org.jolokia.http.AgentServlet to handler request to /api/jolokia org.jolokia.http.HttpRequestHandlerhandlePostRequest is able to create JmxRequest...

8.8CVSS7.5AI score0.8581EPSS
Exploits2References3
Nuclei
Nuclei
added 2026/06/19 11:10 a.m.72 views

ZeroShell <= 1.0beta11 Remote Code Execution

ZeroShell 1.0beta11 and earlier via cgi-bin/kerbynet allows remote attackers to execute arbitrary commands through shell metacharacters in the type parameter in a NoAuthREQ x509List action. id: CVE-2009-0545 info: name: ZeroShell = 1.0beta11 Remote Code Execution author: geeknik severity: critica...

10CVSS6.2AI score0.90732EPSS
Exploits2References5
Nuclei
Nuclei
added 2026/06/19 11:10 a.m.45 views

Zimbra Collaboration Server 7.2.2/8.0.2 Local File Inclusion

A directory traversal vulnerability in /res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz in Zimbra 7.2.2 and 8.0.2 allows remote attackers to read arbitrary files via a .. dot dot in the skin parameter. This can be leveraged to execute arbitrary code by obtaining LDAP...

5CVSS7.7AI score0.86196EPSS
Exploits7References5
OSV
OSV
added 2026/06/19 11:7 a.m.9 views

ECHO-321F-39D2-90A5

Bulletin has no description...

7.7CVSS6AI score0.00612EPSS
Exploits0References2
OSV
OSV
added 2026/06/19 11:7 a.m.7 views

ECHO-E31B-3EF0-93B2

Bulletin has no description...

3.7CVSS5.8AI score0.00336EPSS
Exploits1References2
OSV
OSV
added 2026/06/19 11:1 a.m.4 views

MINI-JJ9H-HXG7-7494

Bulletin has no description...

7.5CVSS5.8AI score0.00273EPSS
Exploits0
OSV
OSV
added 2026/06/19 10:50 a.m.4 views

CGA-M4XP-J852-PMGC

Bulletin has no description...

6.1CVSS6.7AI score0.0182EPSS
Exploits0
OSV
OSV
added 2026/06/19 10:50 a.m.5 views

CGA-F24Q-H7CX-C3FR

Bulletin has no description...

7.6CVSS6.3AI score0.37565EPSS
Exploits0
OSV
OSV
added 2026/06/19 10:49 a.m.6 views

CGA-PJF7-Q3VG-8MFM

Bulletin has no description...

9.8CVSS5.8AI score0.0032EPSS
Exploits0
OSV
OSV
added 2026/06/19 10:41 a.m.4 views

CGA-74WX-726R-C225

Bulletin has no description...

5.5CVSS6.5AI score0.00465EPSS
Exploits1
OSV
OSV
added 2026/06/19 10:39 a.m.6 views

CGA-58HJ-56F7-4FFQ

Bulletin has no description...

5.5CVSS6.5AI score0.00318EPSS
Exploits0
Rows per page
Query Builder