Lucene search
K

219 matches found

Positive Technologies
Positive Technologies
added 2025/12/01 12:0 a.m.5 views

PT-2025-48533

In Search Guard FLX versions from 3.1.0 up to 4.0.0 with enterprise modules being disabled, there exists an issue which allows authenticated users to use specially crafted requests to read documents from data streams without having the respective privileges...

4.3CVSS6.6AI score0.00175EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/11/29 5:20 p.m.183 views

Exploit for Path Traversal in Rarlab Winrar

☠️ CVE-2025-8088 WinRAR Exploit Tool ☠️ SYSTEM ACCESS:...

8.8CVSS6.8AI score0.80906EPSS
Exploits35
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.7 views

Samba Information Disclosure (CVE-2025-9640)

In the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability. Note that Nessus has not tested for...

4.3CVSS6.3AI score0.00421EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2025/11/02 7:23 p.m.161 views

Exploit for Path Traversal in Rarlab Winrar

🧩 CVE-2025-8088 — WinRAR Zero-Day Vulnerability Type: Pat...

8.8CVSS8.1AI score0.80906EPSS
Exploits35
Amazon
Amazon
added 2025/10/27 12:0 a.m.9 views

Medium: samba

Issue Overview: A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure...

4.3CVSS6.1AI score0.00421EPSS
Exploits0
OSV
OSV
added 2025/10/21 7:17 p.m.23 views

JLSEC-2025-182 An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0

An issue was discovered in libgit2 before 0.28.4 and 0.9x before 0.99.0. path.c mishandles equivalent filenames that exist because of NTFS Alternate Data Streams. This may allow remote code execution when cloning a repository. This issue is similar to CVE-2019-1352...

9.8CVSS8.2AI score0.0511EPSS
Exploits0References14
NVD
NVD
added 2025/10/15 1:16 p.m.5 views

CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS0.00421EPSS
Exploits0References6
OSV
OSV
added 2025/10/15 1:16 p.m.5 views

ALPINE-CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS5.8AI score0.00421EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 1:16 p.m.6 views

AZL-68936 CVE-2025-9640 affecting package samba 4.18.3-2

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS7.2AI score0.00421EPSS
Exploits0References1
OSV
OSV
added 2025/10/15 1:16 p.m.4 views

DEBIAN-CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS6AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2025/10/15 12:47 p.m.84 views

CVE-2025-9640

The CVE-2025-9640 advisory concerns Samba’s vfs_streams_xattr module, where uninitialized heap memory can be written to alternate data streams, enabling an authenticated user to read residual memory and disclose sensitive data. Public references in Debian LTS (DLA-4384-1) state a fix in Samba 2:4...

4.3CVSS5.4AI score0.00421EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/10/15 12:47 p.m.17 views

CVE-2025-9640 Samba: vfs_streams_xattr uninitialized memory write possible

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS0.00421EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/15 12:47 p.m.6 views

EUVD-2025-34611

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS5.3AI score0.00421EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/10/15 12:47 p.m.1 views

CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS5.5AI score0.00421EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2025/10/15 12:47 p.m.5 views

CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS6.5AI score0.00421EPSS
Exploits0References4Affected Software6
RedhatCVE
RedhatCVE
added 2025/10/15 12:47 p.m.2 views

CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability. Mitigati...

4.3CVSS5.4AI score0.00421EPSS
Exploits0References4
OSV
OSV
added 2025/10/15 12:0 a.m.4 views

UBUNTU-CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

4.3CVSS7.2AI score0.00421EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2000-0914

Malware in sbrugna...

4.6CVSS6.4AI score0.00462EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-1082

Malware in sbrugna...

5CVSS6.3AI score0.01644EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2006-1479

Malware in sbrugna...

2.1CVSS6.4AI score0.0168EPSS
Exploits0References4
Rows per page
Query Builder