Lucene search
K

3923 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/07 3:3 p.m.7 views

CVE-2025-4397

Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encrypted drive data...

6.8CVSS5.8AI score0.00131EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/07 3:3 p.m.34 views

CVE-2025-4397 Medtronic MyCareLink Patient Monitor Data Encryption Weakness

Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encrypted drive data...

6.8CVSS0.00131EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.14 views

PT-2026-38447

Medtronic MyCareLink Patient Monitor uses per-product credentials that are stored in a recoverable format. An attacker can use these credentials to modify encrypted drive data...

6.8CVSS5.8AI score0.00131EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/07 12:0 a.m.10 views

Medtronic MyCareLink Patient Monitor 安全漏洞

Medtronic MyCareLink Patient Monitor is an open-source monitoring system developed by Medtronic in the United States. The Medtronic MyCareLink Patient Monitor has a security vulnerability, which stems from the use of product credentials stored in a recoverable format. This vulnerability could all...

6.8CVSS5.8AI score0.00131EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/05/05 8:5 p.m.12 views

MinIO vulnerable to Path Traversal via msgpack Body in `ReadMultiple` Storage-REST Endpoint

Impact What kind of vulnerability is it? Who is impacted? A path traversal vulnerability in MinIO's ReadMultiple internode storage-REST endpoint allows a caller holding the cluster root JWT to read files from outside the configured drive roots, bounded only by the MinIO process UID...

6.9CVSS6.9AI score0.08457EPSS
Exploits0References3Affected Software1
HackRead
HackRead
added 2026/05/02 6:7 p.m.10 views

Google AppSheet Exploited in 30,000-User Facebook Phishing Operation

Scammers are abusing Google AppSheet and Google Drive to bypass security filters and steal thousands of Facebook Business accounts globally...

5.8AI score
Exploits0
Patchstack
Patchstack
added 2026/05/01 9:32 a.m.6 views

WordPress File Manager for Google Drive – Integrate Google Drive plugin <= 1.4.9 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin Integrate Google Drive versions = 1.4.9...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/04/29 11:42 a.m.4 views

BIT-LIBPYTHON-2026-3087 shutil.unpack_archive() doesn't check for Windows absolute paths in ZIPs

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

7.5CVSS5.3AI score0.00531EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2026/04/29 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-3087

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:... then the archive will be extracted outside the target...

7.5CVSS5.8AI score0.00531EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/04/28 6:49 a.m.12 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.6AI score0.00453EPSS
Exploits1References6
NVD
NVD
added 2026/04/27 9:16 p.m.5 views

CVE-2026-3087

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

7.5CVSS0.00531EPSS
Exploits1References11
EUVD
EUVD
added 2026/04/27 8:46 p.m.8 views

EUVD-2026-25922

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

6CVSS5.2AI score0.00531EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/04/27 8:46 p.m.3 views

CVE-2026-3087

If shutil.unpackarchive is given a ZIP archive with an absolute Windows path containing a drive C:\... then the archive will be extracted outside the target directory which is different than other operating systems. Only Windows is affected by this vulnerability...

6CVSS5.2AI score0.00531EPSS
Exploits1References7Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/27 2:55 p.m.7 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.6AI score0.00453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/27 5:41 a.m.9 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.6AI score0.00453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/27 5:38 a.m.11 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.6AI score0.00453EPSS
Exploits1References6
NVD
NVD
added 2026/04/26 10:17 p.m.6 views

CVE-2018-25287

Drive Power Manager 1.10 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a 6000-byte payload into the Name field and click Register to trigger a denial of service condition...

6.8CVSS0.00128EPSS
Exploits0References3
CVE
CVE
added 2026/04/26 1:19 p.m.10 views

CVE-2018-25287

CVE-2018-25287 involves Drive Power Manager 1.10 with a local-buffer overflow in the Name field. The description states that an excessively long string can crash the application; specifically, a 6000-byte payload pasted into Name and registered can trigger a denial-of-service condition. The avail...

6.8CVSS5.7AI score0.00128EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/26 1:19 p.m.7 views

EUVD-2018-21807

Drive Power Manager 1.10 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a 6000-byte payload into the Name field and click Register to trigger a denial of service condition...

6.8CVSS5.7AI score0.00128EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/26 1:19 p.m.35 views

CVE-2018-25287 Drive Power Manager 1.10 Denial of Service via Name Field

Drive Power Manager 1.10 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a 6000-byte payload into the Name field and click Register to trigger a denial of service condition...

6.8CVSS0.00128EPSS
Exploits0References3
Rows per page
Query Builder