Lucene search
K

812 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.5 views

Cisco Nexus Dashboard < 4.1(1g) Multiple Vulnerabilities (cisco-sa-nshs-urapi-gJuBVFpu)

According to its self-reported version, Cisco Nexus Dashboard is affected by multiple vulnerabilities. - A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC could allow an authenticated, low-privileged, remote attacker to view...

5.4CVSS5.9AI score0.00273EPSS
Exploits0References3
OSV
OSV
added 2025/08/27 5:15 p.m.6 views

CVE-2025-20347

A vulnerability in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC could allow an authenticated, low-privileged, remote attacker to view sensitive information or upload and modify files on an affected device. This vulnerability exists because of...

5.4CVSS5.8AI score0.00232EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/27 12:0 a.m.7 views

PT-2025-34898 · Cisco · Cisco Nexus Dashboard +1

Name of the Vulnerable Software and Affected Versions: Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC affected versions not specified Description: A vulnerability exists in the REST API endpoints of Cisco Nexus Dashboard and Cisco Nexus Dashboard Fabric Controller NDFC. Th...

5CVSS6.1AI score0.00273EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2025/08/12 3:0 p.m.12 views

Scam hunter scammed by tax office impersonators

The next time you shake your head at another online scam and vow that you'd never fall for it, remember that even the most tech-savvy people can sometimes slip up. A case in point: Julie-Anne Kearns. This self-made scam-hunter told her story to the Guardian last week, revealing how she had been...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/07/21 12:0 a.m.4 views

Realistic Vulnerabilities of Decoy-State Quantum Key Distribution

We analyze realistic vulnerabilities of decoy-state quantum key distribution QKD arising from the combination of laser damage attack LDA and unambiguous state discrimination USD. While decoy-state QKD is designed to protect against photon-number-splitting and beam-splitting attacks by accurately...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/15 12:0 a.m.6 views

The vulnerability of the ath11k_core_halt() function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ath11kcorehalt function in the drivers/net/wireless/ath/ath11k/core.c kernel module of the Linux operating system is related to damage to a node in the arvifs list due to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a...

7CVSS6.4AI score0.00176EPSS
Exploits0References16Affected Software5
OSV
OSV
added 2025/07/08 7:15 a.m.3 views

CVE-2025-24004

A physical attacker with access to the device display via USB-C can send a message to the device which triggers an unsecure copy to a buffer resulting in loss of integrity and a temporary denial-of-service for the stations until they got restarted by the watchdog...

5.2CVSS6AI score0.00162EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/02 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of an automatic downclocking mechanism for GPUs, which could lead to hardware overheating and damag...

5.5CVSS6.1AI score0.00136EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/06/23 8:39 a.m.5 views

CVE-2025-49157

A link following vulnerability in the Trend Micro Apex One Damage Cleanup Engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS7.5AI score0.00159EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/06/19 3:38 a.m.5 views

SUSE CVE-2022-50221

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

5.5CVSS6.4AI score0.00182EPSS
Exploits0References6
Packet Storm News
Packet Storm News
added 2025/06/19 12:0 a.m.6 views

Advantech WISE 4060LAN / IoT Gateway Packet Injection

Remote attackers can execute Modbus commands to WISE-4060/LAN module and manipulate the DO channels. This could lead to unauthorized control of connected devices, such as turning systems on or off, causing disruptions or unsafe conditions. In industrial settings, the DO channels might control...

8.1CVSS7.5AI score0.00509EPSS
Exploits1
OSV
OSV
added 2025/06/18 11:15 a.m.3 views

DEBIAN-CVE-2022-50221

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

7.1CVSS5.6AI score0.00182EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 11:15 a.m.6 views

UBUNTU-CVE-2022-50221

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

7.1CVSS6.2AI score0.00182EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/06/18 11:3 a.m.10 views

CVE-2022-50221 drm/fb-helper: Fix out-of-bounds access

In the Linux kernel, the following vulnerability has been resolved: drm/fb-helper: Fix out-of-bounds access Clip memory range to screen-buffer size to avoid out-of-bounds access in fbdev deferred I/O's damage handling. Fbdev's deferred I/O can only track pages. From the range of pages, the damage...

0.00182EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/06/17 6:42 p.m.4 views

CVE-2025-49157

A link following vulnerability in the Trend Micro Apex One Damage Cleanup Engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this...

7.8CVSS7.4AI score0.00159EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/06/17 12:0 a.m.6 views

Trend Micro Apex One Damage Cleanup Engine 安全漏洞

Trend Micro Apex One Damage Cleanup Engine is a malware scanning engine from Trend Micro. A security vulnerability exists in Trend Micro Apex One Damage Cleanup Engine, which stems from a link following issue that could lead to local elevation of privilege...

7.8CVSS6AI score0.00159EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2025/06/11 12:0 a.m.5 views

Trend Micro Apex One Damage Cleanup Engine Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Trend Micro Apex One Security Agent. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

7.8CVSS7.5AI score0.00159EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/06 12:0 a.m.8 views

The vulnerability in the implementation of IOCTL commands in Qualcomm’s embedded software allows a hacker to damage memory.

The vulnerability of the IOCTL command implementation in Qualcomm’s embedded software lies in the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to damage the memory...

7.8CVSS5.5AI score0.00083EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/05 12:0 a.m.9 views

The vulnerability of embedded Qualcomm microprogramming software, related to access control errors, allows attackers to damage memory.

The vulnerability of embedded Qualcomm software programs is related to access control errors. Exploiting this vulnerability can allow attackers to damage memory...

7.8CVSS5.4AI score0.00075EPSS
Exploits0References2
OSV
OSV
added 2025/06/04 7:59 p.m.7 views

CVE-2025-32015 FreshRSS vulnerable to Cross-site Scripting by embedding <script> tag inside <iframe srcdoc>

FreshRSS is a self-hosted RSS feed aggregator. Prior to version 1.26.2, HTML is sanitized improperly inside the attribute, which leads to cross-site scripting XSS by loading an attacker's UserJS inside . In order to execute the attack, the attacker needs to control one of the victim's feeds and...

6.7CVSS6.6AI score0.00387EPSS
Exploits1References4
Rows per page
Query Builder