Lucene search
+L

104 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/01 12:0 a.m.6 views

RHEL 8 / 9 : Satellite 6.16.10 Async Update (Important) (RHSA-2026:34367)

The remote Redhat Enterprise Linux 8 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:34367 advisory. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessi...

8.8CVSS6.1AI score0.00297EPSS
Exploits0References11
OSV
OSV
added 2026/06/30 12:41 p.m.4 views

USN-8486-1 libssh2 vulnerabilities

It was discovered that libssh2 incorrectly handled the sftpsymlink function. A malicious SSH server or machine-in-the-middle attacker could possibly use this issue to obtain sensitive information or cause a denial of service. CVE-2025-15661 It was discovered that libssh2 had a pre-authentication...

9.2CVSS7.6AI score0.00732EPSS
Exploits11References4
Veracode
Veracode
added 2026/06/20 11:25 a.m.6 views

XML External Entity (XXE) Injection

org.hl7.fhir.utilities is vulnerable to XML External Entity XXE Injection. The vulnerability is due to the saxonTransform... methods instantiating an unprotected TransformerFactory without restricting external DTDs and stylesheets, which allows an attacker to supply a malicious XML document that...

9.1CVSS6AI score0.00315EPSS
Exploits1References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-46222

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rockchip: rkcif: Add missing MUSTCONNECT flag to pads The pads missed checks for connected devices which may a null dereference when the stream is enable...

5.5CVSS5.6AI score0.00105EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/05/13 5:32 p.m.9 views

CVE-2026-43477

A flaw was found in the Linux kernel. Incorrectly configuring Variable Refresh Rate VRR timings before enabling display functionality can cause the system to hang. This issue, which may occur with certain display setups, can lead to a complete system freeze, resulting in a denial of service...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.10 views

LightLLM 代码问题漏洞

LightLLM is an open-source language model inference and service framework developed by ModelTC. Versions of LightLLM 1.1.0 and earlier contained code vulnerabilities. These vulnerabilities stemmed from unauthenticated or improperly authenticated WebSocket endpoints exposed by PD master nodes, whi...

9.3CVSS6.2AI score0.00664EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/04 12:0 a.m.8 views

IBM Cloud Pak System 安全漏洞

IBM Cloud Pak System is a fully configurable and pre-integrated software-based, full-stack, integrated infrastructure provided by IBM. This product supports deployment across hybrid cloud environments, as well as management and mobile application scenarios. There is a security vulnerability in IB...

7.5CVSS5.8AI score0.00292EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/01/23 2:25 p.m.7 views

CVE-2025-71156

In the Linux kernel, the following vulnerability has been resolved: gve: defer interrupt enabling until NAPI registration Currently, interrupts are automatically enabled immediately upon request. This allows interrupt to fire before the associated NAPI context is fully initialized and cause...

7.8CVSS5.4AI score0.00119EPSS
Exploits0
CNNVD
CNNVD
added 2025/10/12 12:0 a.m.6 views

Tomofun Furbo 360和Tomofun Furbo Mini 信任管理问题漏洞

Tomofun Furbo 360 and Tomofun Furbo Mini are both smart pet cameras from Tomofun Corporation of Taiwan, China. A trust management issue vulnerability exists in Tomofun Furbo 360 FB0035FW036 and earlier versions and Tomofun Furbo Mini MC0020FW074 and earlier versions, which stems from the presence...

8.1CVSS4.8AI score0.00261EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2018-13478

Malware in sbrugna...

3.3CVSS4.2AI score0.00265EPSS
Exploits0References2
NVD
NVD
added 2025/09/01 3:15 p.m.5 views

CVE-2025-33102

IBM Concert Software 1.0.0 through 1.1.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS0.00163EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/08/08 12:0 a.m.10 views

The vulnerability of Fortinet FortiClient Windows security devices, which stems from the use of a strictly encrypted cryptographic key, allows attackers to gain unauthorized access to protected information.

The vulnerability of Fortinet FortiClient Windows protection lies in the use of a strictly encrypted cryptographic key. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.3CVSS5.4AI score0.00216EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.4 views

QNAP operating system 命令注入漏洞

QNAP QTS is a Linux-based NAS operating system launched by QNAP, providing an intuitive and easy-to-use graphical interface and powerful data management features. QNAP QuTS hero is an operating system launched by QNAP specifically for enterprise-level applications, adopting the ZFS file system,...

8.8CVSS8AI score0.00924EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 8:56 a.m.6 views

CVE-2024-29080

Potential vulnerabilities have been identified in the HP Display Control software component within the HP Application Enabling Software Driver which might allow escalation of privilege...

6.5CVSS7.3AI score0.0012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:42 p.m.4 views

CVE-2021-0594

In onCreate of ConfirmConnectActivity, there is a possible remote bypass of user consent due to improper input validation. This could lead to remote proximal, NFC escalation of privilege allowing an attacker to deceive a user into allowing a Bluetooth connection with no additional execution...

8CVSS7.3AI score0.01393EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: coresight: cti: Fix hang in cti_disable_hw()

A context violation bug was found in the Linux kernel's CoreSight CTI Cross Trigger Interface driver in the hardware enable/disable functions. These functions are called from atomic context but attempt runtime PM operations that can sleep when communicating with firmware. This causes "sleeping...

5.5CVSS7.2AI score0.00145EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/08 12:0 a.m.5 views

Microsoft Windows BitLocker 安全漏洞

Microsoft Windows BitLocker is a BitLocker by Microsoft Corporation USA Ensure secure backup of recovery keys before activating protection. A security vulnerability exists in Microsoft Windows BitLocker. An attacker exploiting this vulnerability could bypass certain features. The following produc...

6.8CVSS8.1AI score0.00806EPSS
Exploits0References2
OSV
OSV
added 2025/03/27 5:15 p.m.3 views

DEBIAN-CVE-2023-52942

In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Fix wrong check in updateparentsubpartscpumask It was found that the check to see if a partition could use up all the cpus from the parent cpuset in updateparentsubpartscpumask was incorrect. As a result, it is...

5.5CVSS5.5AI score0.00204EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2024-57949

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Don't enable interrupts in itsirqsetvcpuaffinity The following call-chai...

5.5CVSS6.1AI score0.00181EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2022-48868

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Let probe fail when workqueue cannot be enabled The workqueue is enabled wh...

5.5CVSS5.5AI score0.00239EPSS
Exploits0References3
Rows per page
Query Builder