Lucene search
K

7600 matches found

NVD
NVD
added 2026/06/18 8:16 p.m.15 views

CVE-2026-48983

pamusb provides hardware authentication for Linux using ordinary removable media. In versions prior to 0.9.2, a symlink race condition exists in per-device and per-user pad directory creation. pamusb uses a check-then-act pattern: it calls lstat to test for existence and then calls mkdir separate...

5.8CVSS0.00084EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/06/18 12:0 a.m.3 views

The vulnerability of the SoapServer class in the PHP programming language involves the use of memory after it is freed. This allows attackers to exploit the vulnerable code to disclose sensitive information or cause service failures.

The vulnerability of the SoapServer class in the PHP programming language is related to the use of memory after it is freed during the processing of the SOAPPERSISTENCESESSION parameter. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose sensitive information or...

10CVSS5.7AI score0.00302EPSS
Exploits0References4Affected Software2
Redos
Redos
added 2026/06/17 12:0 a.m.7 views

ROS-20260617-73-0027

The vulnerability of the msl.c component in the console-based image editing tool ImageMagick is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain access to confidential data or cause service interruptions...

9.8CVSS5.8AI score0.00272EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.7 views

ROS-20260617-73-0047

The vulnerability in ImageMagick 7 is related to uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS5.5AI score0.00327EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.7 views

ROS-20260617-73-0028

The vulnerability of the msl.c component in the console-based image editing tool ImageMagick is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to gain access to confidential data or cause service interruptions...

9.8CVSS5.8AI score0.00272EPSS
Exploits0
Redos
Redos
added 2026/06/17 12:0 a.m.6 views

ROS-20260617-73-0048

The vulnerability in ImageMagick is related to an uncontrolled resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.5CVSS5.5AI score0.00327EPSS
Exploits0
EUVD
EUVD
added 2026/06/16 3:42 p.m.8 views

EUVD-2025-210170

An attacker with network-level access between the SUSE Virtualization and Rancher Manager in SUSE Harvester before 1.8.0 could interfere with the TLS handshake and abuse it to bypass TLS as a security control...

8.6CVSS5.2AI score0.00208EPSS
Exploits0References1
NVD
NVD
added 2026/06/16 3:16 p.m.13 views

CVE-2026-10831

A denial-of-service vulnerability exists in NPort devices because of improper access control on the command port. The command interface does not properly validate whether a sender is associated with a valid data port session before accepting break signal commands. A remote attacker with network...

6.9CVSS0.00292EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 1:46 p.m.12 views

CVE-2026-10831

CVE-2026-10831 concerns MOXA NPort serial device servers. The issue is improper access control on the command port: the command interface does not properly verify that the sender is tied to a valid data-port session before accepting break signal commands. A remote attacker with network access can...

6.9CVSS5.4AI score0.00292EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/16 8:51 a.m.10 views

EUVD-2026-37043

A denial-of-service vulnerability exists in the WebSocket API due to insufficient validation and handling of JSON-based requests. A low-privileged authenticated attacker can send a specially crafted request that causes service disruption and may result in an unexpected device reboot...

7.1CVSS5.3AI score0.0024EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.7 views

PT-2026-51773

Name of the Vulnerable Software and Affected Versions Crawl4AI versions prior to 0.8.7 Description Multiple security issues affect the Crawl4AI Docker API server across several functional areas: - An authentication bypass in the monitor router allows unauthenticated access to destructive...

9.2CVSS6.1AI score0.00417EPSS
Exploits0References16
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.20 views

PT-2026-49840

Name of the Vulnerable Software and Affected Versions Oracle Data Integrator version 12.2.1.4.0 Oracle Data Integrator version 14.1.2.0.0 Description An issue exists in the Market Place component of the Oracle Data Integrator product of Oracle Fusion Middleware. A low privileged attacker with...

8.3CVSS5.9AI score0.00387EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.14 views

PT-2026-49966

Name of the Vulnerable Software and Affected Versions Oracle Enterprise Manager APM - Application Performance Management version 13.5 Oracle Enterprise Manager APM - Application Performance Management version 24.1 Description An issue exists in the JADM and JVM Diagnostics components of the APM -...

9.1CVSS5.9AI score0.00447EPSS
Exploits0References3
Redos
Redos
added 2026/06/16 12:0 a.m.7 views

ROS-20260616-73-0023

The vulnerability in ImageMagick 7 is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

8.1CVSS5.5AI score0.00334EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/15 7:54 a.m.9 views

mysql: JSON unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: JSON. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with network access v...

6.5CVSS6.9AI score0.00303EPSS
Exploits0References6
Redos
Redos
added 2026/06/15 12:0 a.m.11 views

ROS-20260615-73-0031

The vulnerability of the updatereadcachebitmaporder function in the RDP client FreeRDP is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failure...

3.1CVSS4.8AI score0.00175EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/06/15 12:0 a.m.3 views

The vulnerability of the CheckKeyTypes() function in the Wayland protocol implementation for X.Org XWaylan, as well as in the X.Org Server implementation of the X Window System, allows a malicious actor to escalate their privileges and cause service failures.

The vulnerability of the CheckKeyTypes function in the Wayland protocol for X.Org XWaylan, as well as in the X.Org Server, is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow attackers to gain increased privileges and cause service...

7.8CVSS6.2AI score0.00161EPSS
Exploits0References7Affected Software3
EUVD
EUVD
added 2026/06/12 6:10 p.m.10 views

EUVD-2026-36529

The Naxclow platform API that returns device relay registration details exposes a persistent credential without verifying that the requester is the legitimate device or owner. An actor able to present a platform-valid request signature can retrieve credentials for arbitrary devices and register o...

8.7CVSS5.5AI score0.00306EPSS
Exploits0References2
NVD
NVD
added 2026/06/12 10:16 a.m.10 views

CVE-2026-11846

The iVEC-IEI Virtualization Edge Computer developed by IEI Integration Corp has an Arbitrary File Deletion vulnerability, allowing authenticated remote attackers to exploit this vulnerability to delete arbitrary system files or directories, resulting in data destruction or service disruption...

8.1CVSS0.00401EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/12 9:38 a.m.10 views

CVE-2026-47166

A flaw was found in ImageMagick, a widely used software for image editing. An attacker with high privileges and local access could exploit a vulnerability in the magick -distribute-cache service. By causing a heap buffer over-read, this could lead to the disclosure of sensitive information and...

6CVSS5.3AI score0.00093EPSS
Exploits0References4
Rows per page
Query Builder