Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2026/07/01 12:0 a.m.8 views

PT-2026-55209

Name of the Vulnerable Software and Affected Versions Concourse versions prior to 8.2.3 Description An open redirect issue exists in the login flow. An attacker can craft a URL that redirects users from the Concourse web server to an external site, which could be utilized in phishing attacks to...

5.9AI score
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/11 2:59 p.m.14 views

CVE-2026-53694

Improper Neutralization of Argument Delimiters in a Command 'Argument Injection' vulnerability in Nomachine allows Argument Injection.This issue affects Nomachine: before 9.5.7, before 8.23.2...

7.3CVSS5.4AI score0.00131EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/16 10:25 p.m.6 views

CVE-2025-68234

In the Linux kernel, the following vulnerability has been resolved: iouring/cmdnet: fix wrong argument types for skbqueuesplice If timestamp retriving needs to be retried and the local list of SKB's already has entries, then it's spliced back into the socket queue. However, the arguments for the...

5.5AI score0.00145EPSS
Exploits0References4
OSV
OSV
added 2025/11/07 8:49 a.m.6 views

BIT-REDIS-2025-62507 Redis: Bug in XACKDEL may lead to stack overflow and potential RCE

Redis is an open source, in-memory database that persists on disk. In versions 8.2.0 and above, a user can run the XACKDEL command with multiple ID's and trigger a stack buffer overflow, which may potentially lead to remote code execution. This issue is fixed in version 8.2.3. To workaround this...

8.8CVSS8.2AI score0.06867EPSS
Exploits2References4
Github Security Blog
Github Security Blog
added 2025/09/04 8:1 p.m.11 views

Presta Shop vulnerable to email enumeration

Impact An unauthenticated attacker with access to the back-office URL can manipulate the idemployee and resettoken parameters to enumerate valid back-office employee email addresses. Impacted parties: Store administrators and employees: their email addresses are exposed. Merchants: risk of...

3.7CVSS7AI score0.00755EPSS
Exploits1References9Affected Software1
CNNVD
CNNVD
added 2025/08/21 12:0 a.m.3 views

Digital Music Pad 安全漏洞

Digital Music Pad is a music creation and performance software from Digital Music Pad, Inc. A security vulnerability exists in Digital Music Pad version v8.2.3.3.4, which originates from parsing a .pls file without validating the length of the File1 field, which could lead to a stack buffer...

8.4CVSS7.3AI score0.00388EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/05/10 12:0 a.m.2 views

QEMU 安全漏洞

QEMU Quick Emulator is a suite of simulation processor software by Fabrice Bellard, an individual developer in France. The software is fast and cross-platform. A security vulnerability exists in QEMU versions 8.2.3 and 9.0.0, which stems from a flaw found in QEMU in the Virtio PCI binding...

5.5CVSS6.2AI score0.00324EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2011/01/07 12:0 a.m.5 views

PT-2011-1637 · Cisco · Cisco Asa

Name of the Vulnerable Software and Affected Versions: Cisco Adaptive Security Appliances ASA 5500 series devices versions prior to 8.23 Description: A memory leak issue allows remote attackers to cause a denial of service by making multiple incorrect LDAP authentication attempts. Recommendations...

7.8CVSS7AI score0.02885EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2010/06/30 5:47 p.m.6 views

acroread: multiple code execution flaws (APSB10-15)

Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2010-1295, CVE-2010-2202, CVE-2010-2207, CVE-2010-2210,...

9.3CVSS6.2AI score0.03672EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2010/06/30 5:47 p.m.6 views

acroread: multiple code execution flaws (APSB10-15)

Adobe Reader and Acrobat 9.x before 9.3.3, and 8.x before 8.2.3 on Windows and Mac OS X, allow attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2010-1295, CVE-2010-2202, CVE-2010-2207, CVE-2010-2209,...

9.3CVSS6.2AI score0.03672EPSS
Exploits0References4
Rows per page
Query Builder