Lucene search
K

25574 matches found

Positive Technologies
Positive Technologies
added 2026/01/19 12:0 a.m.8 views

PT-2026-3475

Name of the Vulnerable Software and Affected Versions ESPHome versions 2025.9.0 through 2025.12.6 Description ESPHome is a system for remote microcontroller control via Home Automation systems. An integer overflow in the API component’s protobuf decoder can lead to denial-of-service attacks when...

7.5CVSS5.5AI score0.00273EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 4 : java-1.7.0-openjdk-1.7.0.161-2.6.12.0.AXS4 (AXSA:2017-2469:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2469:04 advisory. Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to...

9.6CVSS8.5AI score0.16181EPSS
Exploits2References17
Microsoft CVE
Microsoft CVE
added 2026/01/16 9:3 a.m.7 views

crypto: seqiv - Do not use req->iv after crypto_aead_encrypt

...

5.5CVSS5.4AI score0.00114EPSS
Exploits0
OSV
OSV
added 2026/01/16 2:16 a.m.4 views

CVE-2025-64769

The Process Optimization application suite leverages connection channels/protocols that by-default are not encrypted and could become subject to hijacking or data leakage in certain man-in-the-middle or passive inspection scenarios...

7.6CVSS5.8AI score0.00161EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/01/16 1:6 a.m.5 views

SUSE CVE-2020-14799

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5.4AI score0.01333EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : ipa-4.4.0-14.6.0.1.el7.AXS7 (AXSA:2017-1334:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1334:03 advisory. IPA is an integrated solution to provide centrally managed Identity users, hosts, services, Authentication SSO, 2FA, and Authorization host access control,...

8.1CVSS6.7AI score0.01283EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001479)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001479 advisory. u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility ...

6.5CVSS6.3AI score0.00343EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001548)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001548 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference in fscryptdopagecrypto in fs/crypto/crypto.c when operating on a fil...

7.1CVSS6.6AI score0.02166EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001628 advisory. crypto/pcrypt.c in the Linux kernel before 4.14.13 mishandles freeing instances, allowing a local user able to access the AFALG-based AEAD interface...

7.8CVSS6.5AI score0.00411EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000959)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000959 advisory. A missing authorization check in the fscryptprocesspolicy function in fs/crypto/policy.c in the ext4 and f2fs filesystem encryption support in the Linux kernel befor...

6.5CVSS7.4AI score0.02159EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.3 views

MiracleLinux 7 : xmlsec1-1.2.20-7.el7 (AXSA:2017-1915:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1915:01 advisory. XML Security Library is a C library based on LibXML2 and OpenSSL. The library was created with a goal to support major XML security standards XML Digital...

7.1CVSS6.9AI score0.01341EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001503)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001503 advisory. Use-after-free vulnerability in fs/crypto/ in the Linux kernel before 4.10.7 allows local users to cause a denial of service NULL pointer dereference or possibly gai...

7.8CVSS6.5AI score0.00799EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004415)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004415 advisory. A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic...

7.5CVSS6.4AI score0.02404EPSS
Exploits1References11
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 7 : java-1.7.0-openjdk-1.7.0.161-2.6.12.0.0.1.el7.AXS7 (AXSA:2017-2478:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2478:04 advisory. Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to...

9.6CVSS6.8AI score0.16181EPSS
Exploits2References17
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.5 views

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.151-1.b12.el7 (AXSA:2017-2339:07)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2339:07 advisory. Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to...

9.6CVSS6.8AI score0.16181EPSS
Exploits2References15
RedHat Linux
RedHat Linux
added 2026/01/15 4:5 p.m.3 views

openssl: Out-of-bounds read & write in RFC 3211 KEK Unwrap

A flaw was found in the OpenSSL CMS implementation RFC 3211 KEK Unwrap. This vulnerability allows memory corruption, an application level denial of service, or potential execution of attacker-supplied code via crafted CMS messages using password-based encryption PWRI...

7.5CVSS6AI score0.01744EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.8 views

Juniper Networks Junos Space encryption vulnerabilities

Juniper Networks Junos Space is a network management solution provided by the company Juniper Networks. This solution supports automatic configuration, monitoring, and troubleshooting of devices and services throughout their entire lifecycle. Versions of Juniper Networks Junos Space prior to 24.1...

8.2CVSS5.8AI score0.00181EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/15 12:0 a.m.4 views

Deno security vulnerabilities

Deno is a simple, modern, and secure JavaScript and TypeScript runtime environment developed by Deno itself. Versions of Deno prior to 2.6.0 contained a security vulnerability caused by node:crypto failing to perform password encryption properly, which could lead to infinite encryption attacks...

9.2CVSS5.8AI score0.00195EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

EulerOS 2.0 SP10 : openssl (EulerOS-SA-2026-1055)

According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and writ...

7.5CVSS6.5AI score0.01744EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003283)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003283 advisory. Use-after-free vulnerability in fs/crypto/ in the Linux kernel before 4.10.7 allows local users to cause a denial of service NULL pointer dereference or possibly gai...

7.8CVSS6.5AI score0.00799EPSS
Exploits0References8
Rows per page
Query Builder