Lucene search
K

38 matches found

EUVD
EUVD
added 2026/04/15 6:31 p.m.7 views

EUVD-2026-22962

A vulnerability in Cisco ISE and Cisco ISE-PIC could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system of an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials. This vulnerability is due to...

9.9CVSS6.2AI score0.10944EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 8:42 a.m.9 views

CVE-2022-31258

In Checkmk before 1.6.0p29, 2.x before 2.0.0p25, and 2.1.x before 2.1.0b10, a site user can escalate to root by editing an OMD hook symlink...

8.2CVSS6.8AI score0.00389EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/16 12:23 a.m.2 views

CVE-2025-67736 Authenticated SQL Injection in FreePBX tts (Text To Speech) module

The FreePBX module tts Text to Speech for FreePBX, an open-source web-based graphical user interface GUI that manages Asterisk. Versions prior to 16.0.5 and 17.0.5 are vulnerable to SQL injection by authenticated users with administrator access. Authenticated users with administrative access to t...

8.6CVSS7.5AI score0.06127EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.2 views

SUSE SLES15 / openSUSE 15 Security Update : rabbitmq-server (SUSE-SU-2025:3809-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:3809-1 advisory. - CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests bsc1245105 - fixed a bad logrotate configuration...

6.7CVSS5.5AI score0.00194EPSS
Exploits1References5
OSV
OSV
added 2025/10/27 1:11 p.m.5 views

SUSE-SU-2025:3809-1 Security update for rabbitmq-server

This update for rabbitmq-server fixes the following issues: - CVE-2025-50200: prevented logging of Basic Auth header from HTTP requests bsc1245105 - fixed a bad logrotate configuration that allowed escalation from rabbitmq to root, /var/log/rabbitmq ownership is now 750 bsc1246091...

6.7CVSS5.8AI score0.00194EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-52827

Malicious code in bioql PyPI...

7.8CVSS7.5AI score0.00311EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/05/26 3:34 p.m.34 views

CVE-2025-23394 daily-backup.sh script in cyrus-imapd allows escalation from cyrus to root

A UNIX Symbolic Link Symlink Following vulnerability in openSUSE Tumbleweed cyrus-imapd allows escalation from cyrus to root.This issue affects openSUSE Tumbleweed cyrus-imapd before 3.8.4-2.1...

0.00485EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:52 p.m.6 views

CVE-2020-8781

Lack of input sanitization in UpdateRebootMgr service of ALEOS 4.11 and later allow an escalation to root from a low-privilege process...

7.8CVSS7.2AI score0.00461EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:30 a.m.14 views

CVE-2019-12791

A directory traversal vulnerability in the v-list-user script in Vesta Control Panel 0.9.8-24 allows remote attackers to escalate from regular registered users to root via the password reset form...

9CVSS7.4AI score0.06497EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/10/16 1:20 p.m.16 views

CVE-2024-22029 tomcat packaging allows for escalation to root from tomcat user

Insecure permissions in the packaging of tomcat allow local users that win a race during package installation to escalate to root...

7.8CVSS7.5AI score0.00182EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.23 views

CentOS 7 : kpatch-patch (RHSA-2021:2727)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2727 advisory. - In the Linux kernel before 5.12.4, net/bluetooth/hcievent.c has a use-after-free when destroying an hcichan, aka CID-5c4c8c954409. This leads to...

7.8CVSS7.3AI score0.09729EPSS
Exploits7References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:25 a.m.5 views

SUSE CVE-2022-31253

A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory allows local attackers with control of the ldap user or group to change ownership of arbitrary directory entries to this user/group, leading to escalation to root. This issue affects: openSUSE Factory openldap2 versions prior ...

7.8CVSS6.9AI score0.0033EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2022/11/09 1:50 p.m.22 views

CVE-2022-31253

A Untrusted Search Path vulnerability in openldap2 of openSUSE Factory allows local attackers with control of the ldap user or group to change ownership of arbitrary directory entries to this user/group, leading to escalation to root. This issue affects: openSUSE Factory openldap2 versions prior ...

7.8CVSS7.6AI score0.0033EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2022/05/09 12:0 a.m.28 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2022-0009)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities: - In drivers/target/targetcorexcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by...

8.1CVSS7.3AI score0.09729EPSS
Exploits6References5
Tenable Nessus
Tenable Nessus
added 2022/05/02 12:0 a.m.65 views

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2022-003)

The version of kernel installed on the remote host is prior to 5.10.50-44.132. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.10-2022-003 advisory. An out-of-bounds write flaw was found in the Linux kernel's seqfile in the Filesystem layer. This flaw allows a loc...

7.8CVSS7AI score0.09729EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.136 views

Rocky Linux 8 : kernel (RLSA-2021:2714)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:2714 advisory. - net/bluetooth/hcirequest.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. CVE-2021-32399 - fs/seqfile.c in...

7.8CVSS7.2AI score0.09729EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.47 views

AlmaLinux 8 : kernel (ALSA-2021:2714)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2021:2714 advisory. - net/bluetooth/hcirequest.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. CVE-2021-32399 - fs/seqfile.c in t...

7.8CVSS7.2AI score0.09729EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2021/09/08 12:0 a.m.47 views

Ubuntu 16.04 ESM / 18.04 LTS : Linux kernel vulnerability (USN-5014-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-5014-1 advisory. It was discovered that the virtual file system implementation in the Linux kernel contained an unsigned to signed integer conversion error. A local...

7.8CVSS7.4AI score0.09729EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2021/08/11 12:0 a.m.121 views

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2021-9407)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-9407 advisory. - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135633 CVE-2021-33909 - net/mlx4: Fix EEPROM dump support Vladyslav...

7.8CVSS7.4AI score0.09729EPSS
Exploits8References6
Tenable Nessus
Tenable Nessus
added 2021/08/10 12:0 a.m.53 views

OracleVM 3.4 : kernel-uek (OVMSA-2021-0025)

The remote OracleVM system is missing necessary patches to address security updates: - A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memor...

8.3CVSS7.1AI score0.78684EPSS
Exploits28References9
Rows per page
Query Builder