Lucene search
K

10 matches found

Positive Technologies
Positive Technologies
added 2026/03/26 12:0 a.m.6 views

PT-2026-28514

Name of the Vulnerable Software and Affected Versions dd-trace-java versions 0.40.0 through prior to 1.60.2 Description dd-trace-java is a Datadog APM client for Java. The RMI instrumentation in affected versions registered a custom endpoint that deserialized incoming data without applying...

9.3CVSS6.6AI score0.00622EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2026/03/25 7:36 p.m.3 views

CVE-2026-27889

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Starting in version 2.2.0 and prior to versions 2.11.14 and 2.12.5, a missing sanity check on a WebSockets frame could trigger a server panic in the nats-server. This happens before authentication, and...

7.5CVSS5.8AI score0.00582EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2026/03/14 12:0 a.m.4 views

VulnCheck KEV: CVE-2026-21902

An Incorrect Permission Assignment for Critical Resource vulnerability in the On-Box Anomaly detection framework of Juniper Networks Junos OS Evolved on PTX Series allows an unauthenticated, network-based attacker to execute code as root. The On-Box Anomaly detection framework should only be...

9.8CVSS6AI score0.17709EPSS
In wildExploits2References13
OSV
OSV
added 2026/03/12 8:32 p.m.4 views

GHSA-M48G-4WR2-J2H6 TinaCMS CLI has Arbitrary File Read via Disabled Vite Filesystem Restriction

Summary The TinaCMS CLI dev server configures Vite with server.fs.strict: false, which disables Vite's built-in filesystem access restriction. This allows any unauthenticated attacker who can reach the dev server to read arbitrary files on the host system Details When running tinacms dev, the CLI...

6.2CVSS5.9AI score0.01025EPSS
Exploits1References3
AlpineLinux
AlpineLinux
added 2026/02/24 3:59 p.m.7 views

CVE-2026-27571

NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. The WebSockets handling of NATS messages handles compressed messages via the WebSockets negotiated compression. Prior to versions 2.11.2 and 2.12.3, the implementation bound the memory size of a NATS...

7.5CVSS5.8AI score0.00478EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/08/12 12:0 a.m.6 views

Siemens SINEC Traffic Analyzer 信息泄露漏洞

Siemens SINEC Traffic Analyzer is a network traffic analysis tool from Siemens Germany. An information disclosure vulnerability exists in Siemens SINEC Traffic Analyzer versions prior to V3.0, which originates from an internal service port exposure that could lead to unauthorized access...

7.8CVSS5.8AI score0.00132EPSS
Exploits0References1
NVD
NVD
added 2022/09/19 8:15 p.m.27 views

CVE-2022-23768

This Vulnerability in NIS-HAP11AC is caused by an exposed external port for the telnet service. Remote attackers use this vulnerability to induce all attacks such as source code hijacking, remote control of the device...

9.8CVSS0.00844EPSS
Exploits0References1
OSV
OSV
added 2022/07/19 3:15 p.m.3 views

CVE-2022-24082

If an on-premise installation of the Pega Platform is configured with the port for the JMX interface exposed to the Internet and port filtering is not properly configured, then it may be possible to upload serialized payloads to attack the underlying system. This does not affect systems running o...

9.8CVSS5.8AI score0.09477EPSS
Exploits5References2
OSV
OSV
added 2019/09/04 5:15 p.m.4 views

CVE-2019-6644

Similar to the issue identified in CVE-2018-12120, on versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, and 12.1.0-12.1.4 BIG-IP will bind a debug nodejs process to all interfaces when invoked. This may expose the process to unauthorized users if the plugin is left in debug mode and the...

9.4CVSS7.2AI score0.01404EPSS
Exploits0References1
myhack58
myhack58
added 2016/06/01 12:0 a.m.17 views

Docker exposure to 2 3 7 5 port, causing security vulnerabilities-vulnerability warning-the black bar safety net

Today there is a small partner found the docker exposed 2 3 7 5 port, causing a security vulnerability. I now introduce to you the whole thing the ins and outs, and tell little friends, and how to fix this vulnerability. In order to implement Cluster Management, Docker provides a remote managemen...

0.4AI score
Exploits0
Rows per page
Query Builder