Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6435

Malicious code in bioql PyPI...

9.3CVSS9.3AI score0.00389EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-4526

Malicious code in bioql PyPI...

10CVSS9.1AI score0.00917EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/03/16 1:16 p.m.9 views

CVE-2025-27593

The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...

9.3CVSS7.7AI score0.00389EPSS
Exploits0References9
NVD
NVD
added 2025/03/14 1:15 p.m.9 views

CVE-2025-27593

The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...

9.3CVSS0.00389EPSS
Exploits0References7
CVE
CVE
added 2025/03/14 12:46 p.m.57 views

CVE-2025-27593

CVE-2025-27593 affects SICK DL100-2xxxxxxx sensors. The issue arises from missing download verification checks in SICK’s distribution flow (SDD Device Drivers), which could allow a malicious payload to be delivered and execute code on target systems. The NVD entry assigns a CVSS 3.1 base score of...

9.3CVSS9.5AI score0.00389EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/03/14 12:46 p.m.12 views

CVE-2025-27593 RCE due to Device Driver

The product can be used to distribute malicious code using SDD Device Drivers due to missing download verification checks, leading to code execution on target systems...

9.3CVSS0.00389EPSS
Exploits0References7
Prion
Prion
added 2022/04/20 7:15 p.m.19 views

Server side request forgery (ssrf)

Databasir is a team-oriented relational database model document management platform. Databasir 1.01 has Server-Side Request Forgery vulnerability. During the download verification process of a JDBC driver the corresponding JDBC driver download address will be downloaded first, but this address wi...

4CVSS7.5AI score0.00969EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2022/01/10 12:0 a.m.6 views

The vulnerability of Google Chrome browser downloads, related to a lack of mechanism for verifying the source, allows attackers to circumvent existing security restrictions by using a specially created HTML page.

The vulnerability of Google Chrome browsers relates to a lack of mechanisms for verifying the source of the download. Exploiting this vulnerability allows a malicious actor to circumvent existing security restrictions by using a specially created HTML page...

6.5CVSS6.7AI score0.0085EPSS
Exploits0References10Affected Software6
Cvelist
Cvelist
added 2020/12/03 3:55 p.m.24 views

CVE-2020-2320

Jenkins Plugin Installation Manager Tool 2.1.3 and earlier does not verify plugin downloads...

9.6AI score0.00917EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2020/12/03 12:0 a.m.8 views

PT-2020-15554 · Jenkins · Jenkins Plugin Installation Manager Tool +1

Name of the Vulnerable Software and Affected Versions: Jenkins Plugin Installation Manager Tool versions 2.1.3 and earlier Description: The issue is related to the Jenkins Plugin Installation Manager Tool not verifying plugin downloads, which may allow third parties to provide crafted plugin...

10CVSS9.2AI score0.00917EPSS
Exploits0References9
NVD
NVD
added 2019/07/05 2:15 p.m.19 views

CVE-2019-5982

Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicous wireless LAN access point. A successful exploitation may result in a malicious file being downloaded/executed...

7.5CVSS7.4AI score0.00435EPSS
Exploits0References2
OSV
OSV
added 2019/07/05 2:15 p.m.4 views

CVE-2019-5982

Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicous wireless LAN access point. A successful exploitation may result in a malicious file being downloaded/executed...

7.5CVSS7.2AI score0.00435EPSS
Exploits0References2
Prion
Prion
added 2019/07/05 2:15 p.m.20 views

Input validation

Improper download file verification vulnerability in VAIO Update 7.3.0.03150 and earlier allows remote attackers to conduct a man-in-the-middle attack via a malicous wireless LAN access point. A successful exploitation may result in a malicious file being downloaded/executed...

5.4CVSS7.3AI score0.00435EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2016/08/25 5:26 a.m.4 views

LINE for Windows fails to properly verify downloaded files

Overview The auto update function in LINE for Windows provided by LINE Corporation contains a vulnerability where downloaded files are not properly verified. LINE Corporation reported this vulnerability to JPCERT/CC to notify users of its solution through JVN. JPCERT/CC and LINE Corporation...

8.1CVSS6.5AI score0.02201EPSS
Exploits0References5
Rows per page
Query Builder