Lucene search
K

590963 matches found

Rockylinux
Rockylinux
added 2026/06/13 12:3 a.m.11 views

libyang security update

An update is available for libyang. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Libyang is YANG data modeling language parser and toolkit written and providi...

7.5CVSS6.2AI score0.00428EPSS
Exploits0
Rockylinux
Rockylinux
added 2026/06/13 12:3 a.m.13 views

redis:7 security update

An update is available for redis, module.redis. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Redis is an advanced key-value store. It is often referred to as ...

8.8CVSS6.8AI score0.02995EPSS
Exploits4
OSV
OSV
added 2026/06/13 12:3 a.m.9 views

RLSA-2026:25219 Important: redis:7 security update

Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and sorted sets. For performance, Redis works with an in-memory data set. You can persist it either by dumping the data set to disk every once in a while, ...

8.8CVSS6.7AI score0.02995EPSS
Exploits4References4
Rockylinux
Rockylinux
added 2026/06/13 12:3 a.m.32 views

samba security update

An update is available for samba. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Samba is an open-source implementation of the Server Message Block SMB protocol...

9.8CVSS6AI score0.12797EPSS
Exploits8
Positive Technologies
Positive Technologies
added 2026/06/13 12:0 a.m.35 views

PT-2026-50528

Name of the Vulnerable Software and Affected Versions libssh2 versions prior to 1.11.2 Description An out-of-bounds write issue exists in the ssh2 transport read function due to an integer overflow and a failure to enforce upper bounds on the packet length field. A remote attacker operating a...

9.8CVSS8AI score0.00922EPSS
Exploits8References96
Tenable Nessus
Tenable Nessus
added 2026/06/13 12:0 a.m.8 views

Debian dsa-6344 : chromium - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6344 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6344-1 [email protected]...

9.6CVSS6AI score0.00287EPSS
Exploits0References59
OSV
OSV
added 2026/06/12 11:28 p.m.8 views

MGASA-2026-0200 Updated proftpd packages fix security vulnerabilities

CVE-2026-42167 modsql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands e.g., COPY TO PROGRAM. CVE-2026-44331 a SQL injection vulnerabili...

8.1CVSS6.7AI score0.05004EPSS
Exploits6References3
OSV
OSV
added 2026/06/12 11:28 p.m.10 views

MGASA-2026-0201 Updated cups packages fix security vulnerabilities

CVE-2026-27447, Authorization bypass via case-insensitive group-member lookup. CVE-2026-39314, Integer underflow in ppdCreateFromIPP causes root cupsd crash via negative job-password-supported CVE-2026-39316, Use-after-free in cupsdDeleteTemporaryPrinters via dangling subscription pointer...

7.8CVSS5.7AI score0.00502EPSS
Exploits7References12
Mageia
Mageia
added 2026/06/12 11:28 p.m.11 views

Updated cups packages fix security vulnerabilities

CVE-2026-27447, Authorization bypass via case-insensitive group-member lookup. CVE-2026-39314, Integer underflow in ppdCreateFromIPP causes root cupsd crash via negative job-password-supported CVE-2026-39316, Use-after-free in cupsdDeleteTemporaryPrinters via dangling subscription pointer...

7.8CVSS5.7AI score0.00502EPSS
Exploits7References11
Mageia
Mageia
added 2026/06/12 11:28 p.m.18 views

Updated proftpd packages fix security vulnerabilities

CVE-2026-42167 modsql in ProFTPD before 1.3.9a allows remote attackers to execute arbitrary code via a username, in scenarios where there is logging of USER requests with an expansion such as %U, and the SQL backend allows commands e.g., COPY TO PROGRAM. CVE-2026-44331 a SQL injection vulnerabili...

8.1CVSS6.4AI score0.05004EPSS
Exploits6References2
NVD
NVD
added 2026/06/12 11:16 p.m.13 views

CVE-2026-6676

Heap buffer out-of-bounds write vulnerability in Avira Antivirus engine when scanning a malformed POSIX tar archive may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before...

7.8CVSS0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 11:16 p.m.16 views

CVE-2025-9033

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed PDF file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70.76...

7.8CVSS0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 11:16 p.m.13 views

CVE-2025-9032

Heap buffer out-of-bounds read vulnerability in Avira Antivirus engine when scanning a malformed Windows PE file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux for engine builds before 8.3.70....

7.8CVSS0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/06/12 11:16 p.m.17 views

CVE-2025-14098

Heap buffer out-of-bounds write vulnerability due to integer overflow in Avira Antivirus engine when scanning a malformed MS-DOS executable file may allow Local Execution of Code or Denial-of-Service of the antivirus engine process. This issue affects Avira Antivirus on Windows, macOS, and Linux...

7.8CVSS0.00122EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/12 11:4 p.m.7 views

CVE-2026-11443 Allegra downloadAttachment Cross-Site Scripting Authentication Bypass Vulnerability

Allegra downloadAttachment Cross-Site Scripting Authentication Bypass Vulnerability. This vulnerability allows remote attackers to execute arbitrary script on affected installations of Allegra. User interaction is required to exploit this vulnerability in that the target must visit a malicious pa...

4.6CVSS5.7AI score0.00225EPSS
Exploits0References2
CVE
CVE
added 2026/06/12 11:4 p.m.38 views

CVE-2026-11443

CVE-2026-11443 affects Allegra via the downloadAttachment method, where insufficient validation of user-supplied data enables cross-site scripting and an authentication bypass. This allows remote attackers to execute arbitrary script in the context of the current user after visiting a malicious p...

4.6CVSS5.3AI score0.00225EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/06/12 10:52 p.m.20 views

File Browser has a Command Execution Allowlist Bypass via Shell Metacharacter Injection

!NOTE This feature has been disabled by default for all installations from v2.33.8 onwards, including for existent installations. To exploit this vulnerability, the instance administrator must turn on a feature and ignore all the warnings about known vulnerabilities. We're publishing this new...

8.7CVSS6AI score0.00323EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/06/12 10:52 p.m.8 views

GHSA-8C9Q-7855-WFXQ File Browser has a Command Execution Allowlist Bypass via Shell Metacharacter Injection

!NOTE This feature has been disabled by default for all installations from v2.33.8 onwards, including for existent installations. To exploit this vulnerability, the instance administrator must turn on a feature and ignore all the warnings about known vulnerabilities. We're publishing this new...

8.7CVSS6.1AI score0.00323EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/06/12 10:44 p.m.71 views

Exploit for Missing Authentication for Critical Function in Erlang Erlang\/Otp

Information Security Fundamentals — Spring 2026 Project Tot...

10CVSS6.4AI score0.97673EPSS
Exploits36
NVD
NVD
added 2026/06/12 10:16 p.m.14 views

CVE-2025-7011

Heap out-of-bounds read vulnerability in Avast Antivirus when scanning a malformed zip file containing XML may allow Local Execution of Code or Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus ...

7.8CVSS0.00146EPSS
Exploits0References1
Rows per page
Query Builder