Lucene search
+L

48 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.13 views

EulerOS 2.0 SP12 : elfutils (EulerOS-SA-2025-1411)

According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function...

7.8CVSS4.4AI score0.00652EPSS
Exploits4References5
OSV
OSV
added 2025/03/31 4:2 p.m.5 views

CGA-XQ9Q-6R9H-VJ3Q

Bulletin has no description...

6.2CVSS7.2AI score0.00364EPSS
Exploits0
NCSC
NCSC
added 2025/03/20 2:10 p.m.11 views

Vulnerability fixed in Veeam Backup & Replication

Veeam has fixed a vulnerability in Veeam Backup & Replication. The vulnerability is located in the authorization mechanism of the Backup & Replication software and allows a domain user to execute arbitrary code on the system where Backup & Replication is implemented. Veeam has released critical...

9.9CVSS7.8AI score0.21522EPSS
Exploits1References1
OSV
OSV
added 2025/02/26 2:31 p.m.11 views

SUSE-SU-2025:0732-1 Security update for xorg-x11-server

This update for xorg-x11-server fixes the following issues: - CVE-2025-26594: Use-after-free of the root cursor bsc1237427. - CVE-2025-26595: Buffer overflow in XkbVModMaskText bsc1237429. - CVE-2025-26596: Heap overflow in XkbWriteKeySyms bsc1237430. - CVE-2025-26597: Buffer overflow in...

7.8CVSS7.8AI score0.00485EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.16 views

PT-2025-4230 · Microsoft · Azure Ai Face Service

Name of the Vulnerable Software and Affected Versions: Azure AI Face Service affected versions not specified Description: An authentication bypass by spoofing in Azure AI Face Service allows an authorized attacker to elevate privileges over a network. This issue has been exploited in real-world...

9.9CVSS9.7AI score0.00907EPSS
Exploits0References26
Tenable Nessus
Tenable Nessus
added 2024/12/10 12:0 a.m.19 views

OracleVM 3.4 : kernel-uek (OVMSA-2024-0016)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.92.3- memcgwriteeventcontrol: fix a user-triggerable oops Al Viro Orabug: 37070674 CVE-2024-45021- ocfs2: fix races between hole punching and AIO+DIO Su Yue Orabug: 36835819...

7.8CVSS6.9AI score0.00622EPSS
Exploits0References35
Malwarebytes
Malwarebytes
added 2023/05/29 1:0 a.m.12 views

A week in security (May 22-28)

Last week on Malwarebytes Labs: Update now: 9 vulnerabilities impact Cisco Small Business Series ChatGPT: Cybersecurity friend or foe? Webinar recap: EDR vs MDR for business success Identity crisis: How an anti-porn crusade could jam the Internet, featuring Alec Muffett: Lock and Code S04E11...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/02/20 12:0 a.m.42 views

Debian dla-3328 : clamav - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3328 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3328-1 [email protected]...

9.8CVSS8.5AI score0.29314EPSS
Exploits5References6
Malwarebytes
Malwarebytes
added 2022/04/30 1:44 p.m.48 views

Update now! Critical patches for Chrome and Edge

Google has released an update for its Chrome browser that includes 30 security fixes. The latest version of the stable channel is now Chrome 101.0.4951.41 for Windows, Mac and Linux. This version addresses vulnerabilities that an attacker could exploit to take control of an affected system...

9AI score0.0105EPSS
Exploits6
Oracle linux
Oracle linux
added 2022/02/28 12:0 a.m.80 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.511.5.2.el7 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33876756 CVE-2022-0492 - scsi: libiscsi: Hold backlock when calling iscsicompletetask Gulam Mohamed Orabug: 33876755 4.14.35-2047.511.5.1 - arm64, mm, efi: Account for GICv3 LPI tables in stat...

7.8CVSS8.5AI score0.05528EPSS
Exploits16
ThreatPost
ThreatPost
added 2021/10/27 7:13 p.m.208 views

Adobe’s Surprise Security Bulletin Dominated by Critical Patches

Adobe has dropped a mammoth out-of-band security update this week, addressing 92 vulnerabilities across 14 products. The majority of the disclosed bugs are critical-severity problems, and most allow arbitrary code execution ACE. Privilege escalation, denial-of-service and memory leaks/information...

9.3CVSS8AI score0.05468EPSS
Exploits0References6
Malwarebytes
Malwarebytes
added 2021/05/12 12:46 p.m.423 views

Get patching! Wormable Windows flaw headlines Patch Tuesday

It looks like patching a wormable Remote Code Execution RCE bug in the HTTP stack of Windows 10 and Windows Server is likely to be top of most sysadmins todo lists after reading Mays Patch Tuesday updates. The monthly bug bonanza also features three other critical items among its 55 patches...

10CVSS10AI score0.99999EPSS
Exploits154
Tenable Nessus
Tenable Nessus
added 2020/09/08 12:0 a.m.40 views

OracleVM 3.4 : Unbreakable / etc (OVMSA-2020-0041)

The remote OracleVM system is missing necessary patches to address critical security updates : - can: peakusb: pcanusbfd: Fix info-leaks to USB devices Tomas Bortoli Orabug: 31351221 CVE-2019-19535 - media: hdpvr: Fix an error handling path in hdpvrprobe Arvind Yadav Orabug: 31352053 CVE-2017-166...

7.8CVSS6.7AI score0.03551EPSS
Exploits0References9
The Hacker News
The Hacker News
added 2020/03/18 9:37 a.m.50 views

Adobe Releases Critical Patches for Acrobat Reader, Photoshop, Bridge, ColdFusion

Though it's not Patch Tuesday, Adobe today released a massive batch of out-of-band software updates for six of its products to patch a total of 41 new security vulnerabilities. Adobe last week made a pre-announcement to inform its users of an upcoming security update for Acrobat and Reader, but t...

7.5CVSS9.5AI score0.04099EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2019/10/17 12:0 a.m.110 views

Oracle Solaris Critical Patch Update : oct2019_SRU11_3_36_15_0

This Solaris system is missing necessary patches to address critical security updates : - Vulnerability in the Oracle Solaris product of Oracle Systems component: Filesystem. Supported versions that are affected are 10 and 11. Difficult to exploit vulnerability allows low privileged attacker with...

8.8CVSS6.7AI score0.13399EPSS
Exploits8References5
Qualys Blog
Qualys Blog
added 2019/08/13 6:49 p.m.204 views

August 2019 Patch Tuesday – 93 Vulns, 29 Critical, 7 Remote Desktop Vulns, Hyper-V, DHCP, Adobe vulns

Update Aug 13, 2019: Detect and Patch Windows Remote Desktop Vulnerabilities This month’s Microsoft Patch Tuesday addresses 93 vulnerabilities with 29 of them labeled as Critical. Of the 29 Critical vulns, 10 are for scripting engines and browsers, 6 for Windows Graphics/Font Library, and 4 are f...

10CVSS9.9AI score0.75194EPSS
Exploits0
The Hacker News
The Hacker News
added 2019/06/11 2:33 p.m.101 views

Adobe Issues Critical Patches for ColdFusion, Flash Player, Campaign

It's Patch Tuesday week! Adobe has just released the latest June 2019 software updates to address a total 11 security vulnerabilities in its three widely-used products Adobe ColdFusion, Flash Player, and Adobe Campaign. Out of these, three vulnerabilities affect Adobe ColdFusion, a commercial rap...

10CVSS3.4AI score0.44098EPSS
Exploits1
The Hacker News
The Hacker News
added 2019/05/14 3:44 p.m.71 views

Adobe Releases Critical Patches for Flash, Acrobat Reader, and Media Encoder

Adobe today released its monthly software updates to patch a total of 87 security vulnerabilities in its Adobe Acrobat and Reader, Flash Player and Media Encoder, most of which could lead to arbitrary code execution attacks or worse. None of the flaws patched this month in Adobe products has been...

9.3CVSS2.7AI score0.09732EPSS
Exploits0
myhack58
myhack58
added 2018/11/14 12:0 a.m.661 views

VirtualBox VMSVGA a plurality of virtual machine escape vulnerability analysis-vulnerability warning-the black bar safety net

VirtualBox simulates a VMware virtual SVGA devices, which interface the detailed information and programming model can be on the network from public access. In addition, in the VMware hosted I/O architecture of GPU virtualization on paper, for the VMware SVGA device architecture had a very good...

4.6CVSS0.7AI score0.00413EPSS
Exploits0
The Hacker News
The Hacker News
added 2018/11/08 3:21 p.m.3 views

New Android API Lets Developers Push Updates Within their Apps

You might have read somewhere online today that Google is granting Android app developers powers to forcefully install app updates…but it is not true. Instead, the tech giant is providing a new feature that will help users to have up-to-date Android apps all the time and yes, it's optional. Along...

6.5AI score
Exploits0
Rows per page
Query Builder