Lucene search
+L

106 matches found

CNNVD
CNNVD
added 2025/11/11 12:0 a.m.8 views

Microsoft SQL Server SQL注入漏洞

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is applied under the Microsoft Windows system. A SQL injection vulnerability exists in Microsoft SQL Server. An attacker can exploit the vulnerability to elevate privileges. The following products and...

8.8CVSS6AI score0.01101EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2000-1015

Malware in sbrugna...

7.2CVSS6.4AI score0.0148EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2000-0214

Malware in sbrugna...

7.2CVSS6.4AI score0.00345EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2001-0190

Malware in sbrugna...

7.2CVSS6.4AI score0.00388EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2017-6411

Malware in sbrugna...

5.5CVSS6.4AI score0.0124EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-37306

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00244EPSS
Exploits0References1
CVE
CVE
added 2025/09/25 8:17 p.m.25 views

CVE-2025-11005

The CVE-2025-11005 issue affects TOTOLINK X6000R, where OS Command Injection arises from improper neutralization of special elements in user input. Affected versions: X6000R up to and including V9.4.0cu.1458_B20250708. Root cause: failure to properly filter special elements allows an attacker to ...

9.8CVSS6.7AI score0.01331EPSS
Exploits0References2Affected Software1
Microsoft KB
Microsoft KB
added 2025/09/09 7:0 a.m.48 views

KB5065222 - Description of the security update for SQL Server 2019 CU32: September 9, 2025

None None...

8.8CVSS6.9AI score0.32908EPSS
Exploits2
OSV
OSV
added 2025/08/28 7:17 a.m.5 views

MAL-2025-41522 Malicious code in @twork-data-services/proxy-prime-api-v2-get-cu-products-info (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.4 views

Malicious code in @zalastax/nolb-node-cu (npm)

The package @zalastax/nolb-node-cu was found to contain malicious code...

7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/08/09 12:0 a.m.3 views

PT-2025-33704 · Git · Libdwarf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=437060549 Crash type: Heap-buffer-overflow READ 4 Crash state: dwarf memcpy noswap bytes dwarf length of cu header dwarf global name offsets...

7.2AI score
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 4:42 a.m.7 views

CVE-2023-48985

Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the login.php component...

6.1CVSS6.2AI score0.00606EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 4:41 a.m.12 views

CVE-2023-48986

Cross Site Scripting XSS vulnerability in CU Solutions Group CUSG Content Management System CMS before v.7.75 allows a remote attacker to execute arbitrary code, escalate privileges, and obtain sensitive information via a crafted script to the users.php component...

6.1CVSS6.2AI score0.00606EPSS
Exploits0
OSV
OSV
added 2024/12/28 10:15 a.m.3 views

UBUNTU-CVE-2024-56695

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...

7.8CVSS6.5AI score0.00212EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/12/28 9:46 a.m.2 views

CVE-2024-56695 drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfd_get_cu_occupancy()'

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...

5.7AI score0.00212EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2024/12/28 9:46 a.m.9 views

CVE-2024-56695

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...

7.8CVSS5.6AI score0.00212EPSS
Exploits0
OSV
OSV
added 2024/12/28 9:46 a.m.5 views

CVE-2024-56695 drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfd_get_cu_occupancy()'

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfdgetcuoccupancy' The kfdgetcuoccupancy function previously declared a large cuoccupancy array as a local variable, which could lead to stack overflows due to excessi...

7.8CVSS6.1AI score0.00212EPSS
Exploits0References5
CVE
CVE
added 2024/12/28 9:46 a.m.90 views

CVE-2024-56695

CVE-2024-56695 affects the Linux kernel’s AMDGPU/KFD subsystem. The vulnerability arose from a large local cu_occupancy array in kfd_get_cu_occupancy(), risking stack overflow when AMDGPU_MAX_QUEUES is large. The fix replaces the static stack allocation with dynamic memory via kcalloc and ensures...

7.8CVSS6.3AI score0.00212EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/12/28 12:0 a.m.5 views

PT-2024-37005 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the kfd get cu occupancy function, which previously declared a large cu occupancy array as a local variable. This could lead to stack overflows due to excessive stac...

7.8CVSS6.2AI score0.00212EPSS
Exploits0References9
CVE
CVE
added 2024/11/04 10:4 a.m.97 views

CVE-2024-38405

CVE-2024-38405 is a Qualcomm WLAN component vulnerability causing a transient denial-of-service when processing the CU information from the RNR IE. The issue is documented with a high impact in Qualcomm’s security context and is indicated in accompanying Android bulletins as part of patch levels ...

7.5CVSS6.8AI score0.00244EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder