Lucene search
K

54 matches found

OSV
OSV
added 2026/06/05 11:25 a.m.2 views

MINI-FPPX-85HP-W245

Bulletin has no description...

9.1CVSS5.2AI score0.0036EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/28 7:10 p.m.13 views

CVE-2026-49129 Music Player Daemon < 0.24.11 SSRF via CurlInputPlugin

Music Player Daemon MPD before version 0.24.11 contains a server-side request forgery vulnerability in CurlInputPlugin where CURLOPTFOLLOWLOCATION is set without CURLOPTREDIRPROTOCOLSSTR, allowing unauthenticated attackers to bypass the http/https scheme restriction by causing a malicious HTTP...

6.9CVSS5.8AI score0.00281EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox

The incorrect use of the '' method could lead to a “user-after-poison” situation and potentially cause a exploitable crash. This vulnerability affects Firefox versions earlier than 85...

8.8CVSS7.8AI score0.0089EPSS
Exploits0References2
OSV
OSV
added 2026/05/01 6:26 p.m.4 views

ECHO-E665-D744-85DB

Bulletin has no description...

5.5CVSS5.7AI score0.00125EPSS
Exploits0References1
OSV
OSV
added 2026/05/01 3:16 p.m.3 views

UBUNTU-CVE-2026-31785

In the Linux kernel, the following vulnerability has been resolved: drm/xe/xepagefault: Disallow writes to read-only VMAs The page fault handler should reject write/atomic access to read only VMAs. Add code to handle this in xepagefaultservice after the VMA lookup. v2: - Apply max line length...

5.5CVSS5.7AI score0.00107EPSS
Exploits0References3
OSV
OSV
added 2026/03/04 5:32 a.m.1 views

MINI-RP8X-JX56-6X85

Bulletin has no description...

10CVSS5.9AI score0.00765EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/01/30 11:5 a.m.4 views

CVE-2025-26385

Johnson Controls Metasys component listed below have Improper Neutralization of Special Elements used in a Command Command Injection Vulnerability . Successful exploitation of this vulnerability could allow remote SQL execution This issue affects Metasys: Application and Data Server ADS installed...

9.5CVSS6AI score0.0144EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/01/14 3:7 p.m.4 views

EUVD-2026-2485

In the Linux kernel, the following vulnerability has been resolved: media: adv7842: Avoid possible out-of-bounds array accesses in adv7842cplogstatus It's possible for cpread and hdmiread to return -EIO. Those values are further used as indexes for accessing arrays. Fix that by checking return...

5.9AI score0.00117EPSS
Exploits0References6
Circl
Circl
added 2025/10/31 2:55 p.m.6 views

CVE-2022-50585

creationtimestamp| type| source ---|---|--- 2025-10-31 14:55:18+00:00| seen| Telegram/ixl2blQGt5NCej39GZvtCOfIe1N9SFZgdl1oPswDSRDrM...

5.4CVSS4.8AI score0.00405EPSS
Exploits0
OSV
OSV
added 2025/09/28 2:24 p.m.2 views

MINI-VC88-85MM-R5H6

Bulletin has no description...

5.4CVSS7AI score0.00308EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-23962

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect use of the '' method could have led to a user-after-poison and a potentially exploitable crash. This vulnerability affects Firefox ' method could have...

8.8CVSS8.2AI score0.0089EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-23955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The browser could have been confused into transferring a pointer lock state into another tab, which could have lead to clickjacking attacks. This vulnerability...

6.1CVSS7.5AI score0.00657EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:24 a.m.5 views

CVE-2024-23765

An issue was discovered on HMS Anybus X-Gateway AB7832-F 3 devices. The gateway exposes an unidentified service on port 7412 on the network. All the network services of the gateway become unresponsive after sending 85 requests to this port. The content and length of the frame does not matter. The...

4CVSS6.9AI score0.00157EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:7 a.m.6 views

CVE-2022-2985

In music service, there is a missing permission check. This could lead to elevation of privilege in contacts service with no additional execution privileges needed...

7.8CVSS7AI score0.00152EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.6 views

AZL-60288 CVE-2025-21962 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option User-provided mount parameter closetimeo of type u32 is intended to have an upper limit, but before it is validated, the value is converted from seconds to jiffi...

5.5CVSS6.7AI score0.00179EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 4:15 p.m.13 views

AZL-59876 CVE-2025-21936 affecting package kernel for versions less than 6.6.85.1-2

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Add check for mgmtallocskb in mgmtdeviceconnected Add check for the return value of mgmtallocskb in mgmtdeviceconnected to prevent null pointer dereference...

5.5CVSS6.6AI score0.00189EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/06/16 12:0 a.m.4 views

Ghost CMS Security Vulnerability

Ghost CMS is an open source headless content management system CMS written in JavaScript from the Ghost Foundation in Singapore. A security vulnerability exists in Ghost CMS version 5.85.1 and earlier, which originates from a remote attacker bypassing the authentication rate-limiting protection...

9.1CVSS7.1AI score0.00766EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/05/14 12:0 a.m.4 views

PT-2024-3749 · Unknown · Cpci85 Central Processing/Communication +1

Name of the Vulnerable Software and Affected Versions: CPCI85 Central Processing/Communication versions prior to V5.30 SICORE Base system versions prior to V1.3.0 Description: A command injection vulnerability exists due to missing server-side input sanitation in the web interface of affected...

9CVSS8.1AI score0.02437EPSS
Exploits1References6
Circl
Circl
added 2023/11/04 8:43 a.m.8 views

CVE-2012-3785

creationtimestamp| type| source ---|---|--- 2023-11-04 08:43:51+00:00| seen| https://t.me/cibsecurity/70469...

4.8AI score
Exploits0References1
CNNVD
CNNVD
added 2023/10/10 12:0 a.m.6 views

Siemens CP-8031 信任管理问题漏洞

The SICAM A8000 RTU Remote Terminal Unit series is a modular family of devices for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the CPCI85 firmware of the Siemens SICAM A8000 device, which can be exploited by an attacke...

9.8CVSS6.8AI score0.00363EPSS
Exploits0References3
Rows per page
Query Builder