Lucene search
K

146 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007029)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007029 advisory. In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare Observed on kernel 6.6 present on master as...

7.1CVSS5.6AI score0.00152EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/23 12:0 a.m.8 views

jsrsasign 安全漏洞

jsrsasign is a signature verification library developed by Kenji Urushima. Versions of jsrsasign from 7.0.0 to 11.1.1 contained security vulnerabilities. These vulnerabilities stemmed from incomplete comparisons in the getRandomBigIntegerZeroToMax and getRandomBigIntegerMinToMax functions located...

9.3CVSS5.8AI score0.00476EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.7 views

H3 安全漏洞

H3 is an open-source HTTP framework developed by H3. Versions of H3 from 2.0.1-beta.0 to 2.0.0-rc.8 contain security vulnerabilities. These vulnerabilities stem from the use of insecure string comparisons in the requireBasicAuth function, which may lead to timing side-channel attacks...

5.9CVSS5.8AI score0.00319EPSS
Exploits1References4
Packet Storm News
Packet Storm News
added 2026/03/17 12:0 a.m.4 views

Security Assessment and Mitigation Strategies for Large Language Models: A Comprehensive Defensive Framework

Large Language Models increasingly power critical infrastructure from healthcare to finance, yet their vulnerability to adversarial manipulation threatens system integrity and user safety. Despite growing deployment, no comprehensive comparative security assessment exists across major LLM...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.5 views

NocoDB 安全漏洞

NocoDB is an open-source alternative to Airtable. It converts any MySQL, PostgreSQL, SQL Server, SQLite, and MariaDB databases into intelligent spreadsheets. Versions of NocoDB prior to 0.301.3 contained a security vulnerability. This vulnerability stemmed from storing shared view passwords as...

6.9CVSS5.9AI score0.00194EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/02/06 12:0 a.m.5 views

Evaluating and Enhancing the Vulnerability Reasoning Capabilities of Large Language Models

Large Language Models LLMs have demonstrated remarkable proficiency in vulnerability detection. However, a critical reliability gap persists: models frequently yield correct detection verdicts based on hallucinated logic or superficial patterns that deviate from the actual root cause. This...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the BPF validator incorrectly disabling pointer comparisons...

5.8AI score0.00168EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from mpicmpui not handling zero-value comparisons correctly, which could lead to a null pointer dereference...

6AI score0.00252EPSS
Exploits0References9
Packet Storm News
Packet Storm News
added 2025/12/05 12:0 a.m.24 views

TeleAI-Safety: A Comprehensive LLM Jailbreaking Benchmark Towards Attacks, Defenses, and Evaluations

While the deployment of large language models LLMs in high-value industries continues to expand, the systematic assessment of their safety against jailbreak and prompt-based attacks remains insufficient. Existing safety evaluation benchmarks and frameworks are often limited by an imbalanced...

7.5AI score
Exploits0
OSV
OSV
added 2025/11/25 10:50 p.m.4 views

JLSEC-2025-324 A flaw was found in rsync which could be triggered when rsync compares file checksums

A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time...

7.5CVSS6.4AI score0.09353EPSS
Exploits2References27
Vulnrichment
Vulnrichment
added 2025/11/13 9:46 p.m.3 views

CVE-2025-64753 grist-core has insufficient access control in endpoints for comparisons between documents and versions

grist-core is a spreadsheet hosting server. Prior to version 1.7.7, a user with only partial read access to a document could still access endpoints listing hashes for versions of that document and receive a full list of changes between versions, even if those changes contained cells, columns, or...

5.3CVSS6.1AI score0.00201EPSS
Exploits0References2
Veracode
Veracode
added 2025/10/29 2:10 p.m.11 views

Timing Attack

Dragonfly is vulnerable to Timing Attack. The vulnerability is due to the use of simple string comparisons in the Proxy feature’s access control mechanism, which allows an attacker to guess the password one character at a time by analyzing response time variations...

6.9CVSS7.1AI score0.00315EPSS
Exploits0References5Affected Software2
EUVD
EUVD
added 2025/10/16 9:30 a.m.6 views

EUVD-2025-34730

Mattermost has an Observable Timing Discrepancy vulnerability...

3.1CVSS6.5AI score0.00246EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/10/16 8:17 a.m.4 views

CVE-2025-54499 Insecure string comparison enables timing attacks

Mattermost versions 10.5.x = 10.5.10, 10.11.x = 10.11.2 fail to use constant-time comparison for sensitive string comparisons which allows attackers to exploit timing oracles to perform byte-by-byte brute force attacks via response time analysis on Cloud API keys and OAuth client secrets...

3.1CVSS6.4AI score0.00246EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2012-0527

Malware in sbrugna...

4CVSS6AI score0.02394EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-3837

Malware in sbrugna...

5.5CVSS5.6AI score0.00231EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-7516

Malware in sbrugna...

6.9CVSS6.6AI score0.00412EPSS
Exploits1References36
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2017-16783

Malware in sbrugna...

5.3CVSS7.3AI score0.0085EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2013-4875

Malware in sbrugna...

10CVSS6.1AI score0.01669EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-19249

Malware in sbrugna...

9.8CVSS9.3AI score0.03041EPSS
Exploits0References14
Rows per page
Query Builder