Lucene search
K

8 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/21 7:34 a.m.11 views

CVE-2026-44068

Incomplete sanitization of extended attribute EA path components in Netatalk 2.1.0 through 4.4.2 allows a remote authenticated attacker to write to files outside the intended metadata namespace via crafted EA names...

7.6CVSS5.8AI score0.00322EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/12/13 12:0 a.m.3 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: aide (UTSA-2025-991233)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991233 advisory. AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft...

6.2CVSS7.4AI score0.0021EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/08/26 9:51 a.m.4 views

aide: improper output neutralization enables bypassing

A flaw was found in AIDE. This flaw allows an attacker to craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and tamper with the log output. A local user may exploit this to bypass AIDE's detection of malicious files...

6.2CVSS7.3AI score0.0021EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2025/08/18 11:22 p.m.5 views

SUSE CVE-2025-54389

AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and/or tamp...

6.2CVSS6.6AI score0.0021EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/08/16 4:11 p.m.5 views

CVE-2025-54389

A flaw was found in AIDE. This flaw allows an attacker to craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and tamper with the log output. A local user may exploit this to bypass AIDE's detection of malicious files...

7.1CVSS5.7AI score0.0021EPSS
Exploits1References3
NVD
NVD
added 2025/08/14 4:15 p.m.5 views

CVE-2025-54389

AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and/or tamp...

6.2CVSS0.0021EPSS
Exploits1References5
OSV
OSV
added 2025/08/14 2:0 p.m.2 views

UBUNTU-CVE-2025-54389

AIDE is an advanced intrusion detection environment. Prior to version 0.19.2, there is an improper output neutralization vulnerability in AIDE. An attacker can craft a malicious filename by including terminal escape sequences to hide the addition or removal of the file from the report and/or tamp...

6.2CVSS7AI score0.0021EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/08/14 12:0 a.m.6 views

PT-2025-33306

Name of the Vulnerable Software and Affected Versions: AIDE versions prior to 0.19.2 Description: AIDE is susceptible to an improper output neutralization issue. An attacker can create a malicious filename containing terminal escape sequences to conceal file additions or removals from reports and...

6.2CVSS6.2AI score0.00216EPSS
Exploits2References44
Rows per page
Query Builder