Lucene search
K

174 matches found

CNNVD
CNNVD
added 2026/03/11 12:0 a.m.7 views

Locker 代码注入漏洞

Locker is an open-source personal data aggregation and management platform developed by The Locker Project. Versions 0.0.0, 0.0.1, and 0.1.0 of Locker contain code injection vulnerabilities. These vulnerabilities stem from incorrect operations on the authIsAwesome parameter ID in the file...

5.3CVSS5.7AI score0.00296EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000643)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000643 advisory. Heap-based buffer overflow in the iscsiaddnotunderstoodresponse function in drivers/target/iscsi/iscsitargetparameters.c in the iSCSI target subsystem in the Linux...

7.9CVSS8.4AI score0.07313EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001945)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001945 advisory. Heap-based buffer overflow in the iscsiaddnotunderstoodresponse function in drivers/target/iscsi/iscsitargetparameters.c in the iSCSI target subsystem in the Linux...

7.9CVSS8.4AI score0.07313EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002030)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002030 advisory. Heap-based buffer overflow in the iscsiaddnotunderstoodresponse function in drivers/target/iscsi/iscsitargetparameters.c in the iSCSI target subsystem in the Linux...

7.9CVSS8.4AI score0.07313EPSS
Exploits1References15
CVE
CVE
added 2026/01/10 12:20 a.m.17 views

CVE-2026-22025

CryptoLib’s memory-leak vulnerability affects the KMC client: when a non-200 HTTP response is returned, cryptography_encrypt() and cryptography_decrypt() fail to free previously allocated buffers, leaking ~467 bytes per failed request and risking memory exhaustion with repeated failures. This occ...

6.3CVSS6.5AI score0.00497EPSS
Exploits1References3Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 10:19 a.m.7 views

CVE-2019-18233

In Advantech Spectre RT Industrial Routers ERT351 5.1.3 and prior, the affected product does not neutralize special characters in the error response, allowing attackers to use a reflected XSS attack...

6.1CVSS6AI score0.00739EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:2 a.m.9 views

CVE-2023-25948

Server information leak of configuration data when an error is generated in response to a specially crafted message. See Honeywell Security Notification for recommendations on upgrading and versioning...

7.5CVSS6.6AI score0.00476EPSS
Exploits0References1
OSV
OSV
added 2025/12/08 1:16 a.m.4 views

DEBIAN-CVE-2025-40326

In the Linux kernel, the following vulnerability has been resolved: NFSD: Define actions for the new timedeleg FATTR4 attributes NFSv4 clients won't send legitimate GETATTR requests for these new attributes because they are intended to be used only with CBGETATTR and SETATTR. But NFSD has to do...

5.3AI score0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/03 12:0 a.m.4 views

PT-2025-48970

Name of the Vulnerable Software and Affected Versions Envoy versions 1.33.12 through 1.36.2 Description Envoy, a high-performance edge/middle/service proxy, has an issue when configured in TCP proxy mode to handle CONNECT requests. It accepts client data before issuing a 2xx response and forwards...

5.3CVSS6.6AI score0.00282EPSS
Exploits0References10
OSV
OSV
added 2025/10/16 5:15 p.m.6 views

UBUNTU-CVE-2025-61789

Icinga DB Web provides a graphical interface for Icinga monitoring. Before 1.1.4 and 1.2.3, an authorized user with access to Icinga DB Web, can use a custom variable in a filter that is either protected by icingadb/protect/variables or hidden by icingadb/denylist/variables, to guess values...

6.5CVSS5.8AI score0.00331EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2019-0779

Malware in sbrugna...

6.1CVSS6.5AI score0.01905EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0010

Malware in sbrugna...

7.5CVSS7.5AI score0.02053EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-10549

Malware in sbrugna...

4.3CVSS4.8AI score0.00941EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-4825

Malware in sbrugna...

4.3CVSS6.4AI score0.01279EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.13 views

EUVD-2012-4342

Malware in sbrugna...

5CVSS6.1AI score0.014EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-8033

Malware in sbrugna...

6.1CVSS6.7AI score0.00739EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-2662

Malware in sbrugna...

10CVSS6.4AI score0.01769EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-14515

Malware in sbrugna...

5.4CVSS5.6AI score0.00354EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-27404

Malware in sbrugna...

6.1CVSS6.3AI score0.00654EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-37266

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00409EPSS
Exploits0References2
Rows per page
Query Builder