Lucene search
K

740 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 6:20 p.m.11 views

CVE-2021-22572

On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world readable permissions. Any sensitive information written to theses files is visible to all other loc...

5.5CVSS6.3AI score0.00128EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 p.m.5 views

CVE-2020-3674

Information can leak into userspace due to improper transfer of data from kernel to userspace in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in Nicobar, QCS405, Saipan, SC8180X, SDX55,...

5.5CVSS9.1AI score0.00207EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:7 a.m.6 views

CVE-2019-13267

TP-Link Archer C3200 V1 and Archer C2 V1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. In order to transfer data from the host network to the guest network, the sender joins and then leaves an IGMP group. After i...

8.8CVSS7AI score0.00973EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.8 views

CVE-2019-13270

Edimax BR-6208AC V1 devices have Insufficient Compartmentalization between a host network and a guest network that are established by the same device. In order to transfer data from the host network to the guest network, the sender joins and then leaves an IGMP group. After it leaves, the router...

8.8CVSS7AI score0.00913EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:0 a.m.9 views

CVE-2019-8107

An arbitrary file deletion vulnerability exists in Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3 or 2.3.2-p1. An authenticated user with export data transfer privileges can craft a request to perform arbitrary file deletion...

6.5CVSS6.7AI score0.00791EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 a.m.11 views

CVE-2019-10558

While transferring data from APPS to DSP, Out of bound in FastRPC HLOS Driver due to the data buffer which can be controlled by DSP in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdrag...

7.8CVSS9.5AI score0.00202EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:29 a.m.9 views

CVE-2019-16274

DTEN D5 before 1.3 and D7 before 1.3 devices transfer customer data files via unencrypted HTTP...

7.5CVSS7.1AI score0.00674EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/14 6:12 p.m.34 views

CVE-2025-0136 PAN-OS: Unencrypted Data Transfer when using AES-128-CCM on Intel-based hardware devices

Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks PAN-OS® firewalls PA-7500, PA-5400, PA-5400f, PA-3400, PA-1600, PA-1400, and PA-400 Series leads to unencrypted data transfer to devices that are connected to the PAN-OS firewall through IPSec. This issue does not affect Clou...

5.3CVSS0.00129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.9 views

Palo Alto Networks PAN-OS 10.1.x < 10.1.14-h14 / 10.2.x < 10.2.11 / 11.0.x < 11.0.7 / 11.1.x < 11.1.5 Vulnerability

The version of Palo Alto Networks PAN-OS running on the remote host is 10.1.x prior to 10.1.14-h14, 10.2.x prior to 10.2.11, 11.0.x prior to 11.0.7, or 11.1.x prior to 11.1.5. It is, therefore, affected by a vulnerability. Using the AES-128-CCM algorithm for IPSec on certain Palo Alto Networks...

5.3CVSS5.5AI score0.00129EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2025/05/02 12:25 p.m.18 views

TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China

Ireland's Data Protection Commission DPC on Friday fined popular video-sharing platform TikTok €530 million $601 million for infringing data protection regulations in the region by transferring European users' data to China. "TikTok infringed the GDPR regarding its transfers of EEA European...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/28 12:0 a.m.9 views

The vulnerability of the data transfer function in the Nearby Share utility allows a hacker to upload arbitrary files onto the user’s device.

The vulnerability of the “Nearby Share” data transfer function in the Google Quick Share data sharing tool relates to bypassing the authentication process. Exploiting this vulnerability could allow an attacker to upload arbitrary files onto the user’s device remotely...

7.1CVSS6.1AI score0.00212EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/28 12:0 a.m.8 views

The vulnerability of the data transmission function in the Nearby Share data sharing tool between Google Quick Share devices allows a perpetrator to cause a service failure.

The vulnerability of the Nearby Share data transfer function in the Google Quick Share data sharing tool is related to improper cleaning or release of resources. Exploiting this vulnerability could allow an attacker to cause service failures...

6.8CVSS6AI score0.00225EPSS
Exploits0References6Affected Software1
Krebs on Security
Krebs on Security
added 2025/04/22 1:48 a.m.26 views

Whistleblower: DOGE Siphoned NLRB Case Data

A security architect with the National Labor Relations Board NLRB alleges that employees from Elon Musk 's Department of Government Efficiency DOGE transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few traces of network...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.4 views

PT-2025-29034

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the virtio-pci subsystem where the result size returned for admin command completion is larger than the actual result data size by 8 bytes. This occurs because the...

7.8CVSS8.3AI score0.01345EPSS
Exploits8References571
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-7978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Insufficient policy enforcement in Data Transfer in Google Chrome prior to 128.0.6613.84 allowed a remote attacker who convinced a user to engage in specific UI...

4.3CVSS6.2AI score0.00421EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49173

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. ...

5.5CVSS6.2AI score0.00245EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 7:0 a.m.5 views

DEBIAN-CVE-2022-49173

In the Linux kernel, the following vulnerability has been resolved: spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. If the hardware gets into a bad state, these polling loops may never...

5.5CVSS5.4AI score0.00245EPSS
Exploits0References1
NVD
NVD
added 2025/02/26 7:0 a.m.26 views

CVE-2022-49173

In the Linux kernel, the following vulnerability has been resolved: spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. If the hardware gets into a bad state, these polling loops may never...

5.5CVSS0.00245EPSS
Exploits0References3
OSV
OSV
added 2025/02/26 7:0 a.m.9 views

UBUNTU-CVE-2022-49173

In the Linux kernel, the following vulnerability has been resolved: spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. If the hardware gets into a bad state, these polling loops may never...

5.5CVSS5.7AI score0.00245EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/02/26 1:55 a.m.25 views

CVE-2022-49173 spi: fsi: Implement a timeout for polling status

In the Linux kernel, the following vulnerability has been resolved: spi: fsi: Implement a timeout for polling status The data transfer routines must poll the status register to determine when more data can be shifted in or out. If the hardware gets into a bad state, these polling loops may never...

0.00245EPSS
Exploits0References3
Rows per page
Query Builder