Lucene search
K

19177 matches found

RedHat Linux
RedHat Linux
added 2025/11/25 8:59 a.m.7 views

Important: Red Hat Security Advisory: RHTAS 1.3.1 - Tech Preview Release Of the Policy Controller Operator

The Tech Preview release of the RHTAS Policy Controller Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Policy Controller Operator can be used with OpenShift Container Platform 4.15, 4.16,...

8.1CVSS7.5AI score0.00517EPSS
Exploits0References4
Redos
Redos
added 2025/11/25 12:0 a.m.8 views

ROS-20251125-01

A vulnerability in the cross-platform software development framework Qt is related to a bug in the data boundary checking when reading data from Bluetooth L2CAP socket in processUnsolicitedReply and processReply in bluetooth/qlowenergycontrollerbluez.cpp. Exploitation of the vulnerability could...

3.1CVSS7.9AI score0.00172EPSS
Exploits0
EUVD
EUVD
added 2025/11/24 10:51 p.m.2 views

EUVD-2025-199172

Malicious code in bestgpiocontroller npm...

6.6AI score
Exploits0References1
NVD
NVD
added 2025/11/23 7:15 p.m.4 views

CVE-2025-13564

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

7.1CVSS0.00322EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/23 6:32 p.m.4 views

CVE-2025-13564 SourceCodester Pre-School Management System FilehelperController.php removefile denial of service

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

5.5CVSS6.5AI score0.00322EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/11/23 6:32 p.m.12 views

CVE-2025-13564 SourceCodester Pre-School Management System FilehelperController.php removefile denial of service

A security flaw has been discovered in SourceCodester Pre-School Management System 1.0. Impacted is the function removefile of the file app/controllers/FilehelperController.php. Performing manipulation of the argument filepath results in denial of service. The attack is possible to be carried out...

5.5CVSS0.00322EPSS
Exploits1References5
OSV
OSV
added 2025/11/21 10:52 a.m.10 views

CLSA-2025-1763722365 kernel: Fix of 62 CVEs

wifi: mwifiex: Fix OOB and integer underflow when rx packets CVE-2023-53226 CVE-2023-53226 - wifi: mac80211: check S1G action frame size CVE-2023-53257 CVE-2023-53257 - wifi: cfg80211: fix use-after-free in cmpbss CVE-2025-39864 CVE-2025-39864 - partitions: mac: fix handling of bogus partition...

8CVSS6.7AI score0.00369EPSS
Exploits4References1
Wolfi
Wolfi
added 2025/11/21 1:47 a.m.8 views

CVE-2025-58181 vulnerabilities

Vulnerabilities for packages: gogatekeeper, crossplane-provider-aws, trivy-operator, modelmesh-runtime-adapter, tekton-pipelines, kubernetes-csi-external-attacher, atlantis, bento, cosign, gptscript, docker-cli-buildx, timestamp-authority, prometheus-pushgateway, src, terraform-provider-azuread,...

5.3CVSS6.7AI score0.00521EPSS
Exploits0
Wolfi
Wolfi
added 2025/11/21 1:47 a.m.10 views

GHSA-F6X5-JH6R-WRFV vulnerabilities

Vulnerabilities for packages: gogatekeeper, crossplane-provider-aws, ko, modelmesh-runtime-adapter, kubernetes-csi-external-attacher, tekton-pipelines, atlantis, bento, cosign, gptscript, docker-cli-buildx, timestamp-authority, prometheus-pushgateway, src, terraform-provider-azuread, containerd,...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2025/11/21 1:47 a.m.10 views

CVE-2025-47914 vulnerabilities

Vulnerabilities for packages: gogatekeeper, crossplane-provider-aws, ko, modelmesh-runtime-adapter, kubernetes-csi-external-attacher, tekton-pipelines, atlantis, bento, cosign, gptscript, docker-cli-buildx, timestamp-authority, prometheus-pushgateway, src, terraform-provider-azuread, containerd,...

5.3CVSS6.3AI score0.00473EPSS
Exploits0
Wolfi
Wolfi
added 2025/11/21 1:47 a.m.5 views

GHSA-J5W8-Q4QC-RX2X vulnerabilities

Vulnerabilities for packages: gogatekeeper, crossplane-provider-aws, trivy-operator, modelmesh-runtime-adapter, tekton-pipelines, kubernetes-csi-external-attacher, atlantis, bento, cosign, gptscript, docker-cli-buildx, timestamp-authority, prometheus-pushgateway, src, terraform-provider-azuread,...

5.8AI score
Exploits0
NCSC
NCSC
added 2025/11/20 11:48 a.m.15 views

Vulnerabilities fixed in Arista EOS

Arista has fixed vulnerabilities in the Arista EOS platform. The vulnerabilities are related to the processing of malformed messages, which can lead to system crashes and denial-of-service conditions. High-privileged attackers can exploit these vulnerabilities, leading to severe operational...

7.1AI score0.00386EPSS
Exploits0References2
CNVD
CNVD
added 2025/11/20 12:0 a.m.2 views

Web-Based Internet Laboratory Management System /subject/controller.php File SQL Injection Vulnerability

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally-entered SQL statements in the file /subject/controller.php. An attacker c...

9.8CVSS8.2AI score0.00339EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.4 views

Web-Based Internet Laboratory Management System controller.php File SQL Injection Vulnerability

Web-Based Internet Laboratory Management System is a web laboratory software. The Web-Based Internet Laboratory Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the file /course/controller.php. An attacker...

9.8CVSS8.3AI score0.00339EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.4 views

Web-Based Internet Laboratory Management System /user/controller.php File SQL Injection Vulnerability

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /user/controller.php. An attacker can...

9.8CVSS8.2AI score0.00339EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.3 views

Web-Based Internet Laboratory Management System /enrollment/controller.php File SQL Injection Vulnerability

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /enrollment/controller.php. An attacke...

9.8CVSS8.2AI score0.00363EPSS
Exploits1References1
CNVD
CNVD
added 2025/11/20 12:0 a.m.4 views

Web-Based Internet Laboratory Management System /settings/controller.php File SQL Injection Vulnerability

Web-Based Internet Laboratory Management System is a web laboratory software. A SQL injection vulnerability exists in Web-Based Internet Laboratory Management System, which originates from a lack of validation of externally entered SQL statements in the file /settings/controller.php. An attacker...

9.8CVSS8.2AI score0.00339EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/11/19 8:18 a.m.5 views

CVE-2025-8727

There is a vulnerability in the Supermicro BMC web function at Supermicro MBD-X13SEDW-F. After logging into the BMC Web server, an attacker can use a specially crafted payload to trigger the Stack buffer overflow vulnerability...

7.2CVSS7.3AI score0.00293EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/19 7:26 a.m.7 views

CVE-2025-7623

Stack-based buffer overflow in the SMASH-CLP shell. An authenticated attacker with SSH access to the BMC can exploit a stack buffer overflow via a crafted SMASH command, overwrite the return address and registers, and achieve arbitrary code execution on the BMC firmware operating system...

5.4CVSS8AI score0.00234EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/11/19 1:1 a.m.6 views

Bluetooth: When HCI work queue is drained, only queue chained work

...

5.5CVSS7AI score0.00148EPSS
Exploits0
Rows per page
Query Builder