Lucene search
K

2081 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/06 12:0 a.m.5 views

RockyLinux 10 : expat (RLSA-2025:7512)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:7512 advisory. libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2024-8176 Tenable has extracted the preceding description block directly from...

7.5CVSS6.7AI score0.01569EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-25833

Malicious code in bioql PyPI...

5.5CVSS6.4AI score0.00171EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-54268

Malicious code in bioql PyPI...

8.4CVSS6.5AI score0.00204EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-31590

Malicious code in bioql PyPI...

8.7CVSS6.3AI score0.00458EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-48051

Malicious code in bioql PyPI...

9.8CVSS6.5AI score0.00575EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54913

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00188EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-28253

Malicious code in bioql PyPI...

6.4CVSS5.8AI score0.00375EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-25798

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00326EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24352

Malicious code in bioql PyPI...

7.3CVSS6.2AI score0.00527EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27914

Malicious code in bioql PyPI...

6.2AI score0.00191EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-55505

Malicious code in bioql PyPI...

6.3AI score0.00145EPSS
Exploits0References5
OSV
OSV
added 2025/10/03 7:56 p.m.4 views

RLSA-2025:7512 Moderate: expat security update

Expat is a C library for parsing XML documents. Security Fixes: libexpat: expat: Improper Restriction of XML Entity Expansion Depth in libexpat CVE-2024-8176 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to th...

7.5CVSS7.8AI score0.01569EPSS
Exploits0References2
CVE
CVE
added 2025/10/01 4:7 p.m.11 views

CVE-2025-20369

The CVE-2025-20369 affects Splunk Enterprise and Splunk Cloud Platform. A low-privilege user not in admin/power roles can perform an XML External Entity (XXE) injection via the dashboard tab label field, potentially enabling Denial of Service (DoS). Affected versions include Splunk Enterprise &lt...

6.5CVSS6.8AI score0.00284EPSS
Exploits0References1Affected Software2
Ubuntu
Ubuntu
added 2025/10/01 2:52 p.m.4 views

USN-7790-1: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - x86 architecture; - Compute Acceleration Framework; - Bus devices; - AMD CDX bus driver; - DP...

8.1CVSS7AI score0.00328EPSS
Exploits0
Cvelist
Cvelist
added 2025/10/01 11:42 a.m.6 views

CVE-2022-50433 efi: ssdt: Don't free memory if ACPI table was loaded successfully

In the Linux kernel, the following vulnerability has been resolved: efi: ssdt: Don't free memory if ACPI table was loaded successfully Amadeusz reports KASAN use-after-free errors introduced by commit 3881ee0b1edc "efi: avoid efivars layer when loading SSDTs from variables". The problem appears t...

0.00143EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2025/10/01 12:0 a.m.5 views

Delta Electronics EIP Builder EIP File Parsing XML External Entity Processing Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Delta Electronics EIP Builder. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists...

5.5CVSS6.2AI score0.00171EPSS
Exploits0References1
Redos
Redos
added 2025/09/30 12:0 a.m.5 views

ROS-20250930-03

The polkit service vulnerability is related to a boundary validation error when processing XML policies with a nesting depth of 32 or more elements. of 32 or more elements. Exploitation of the vulnerability could allow an attacker to compromise a compromised vulnerable system...

6.7CVSS6.9AI score0.00184EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/29 4:2 a.m.11 views

CVE-2025-11140 Bjskzy Zhiyou ERP com.artery.richclient.RichClientService openForm xml external entity reference

A vulnerability was identified in Bjskzy Zhiyou ERP up to 11.0. Affected by this vulnerability is the function openForm of the component com.artery.richclient.RichClientService. Such manipulation of the argument contentString leads to xml external entity reference. The attack can be executed...

7.5CVSS0.00575EPSS
Exploits1References4
Gitee
Gitee
added 2025/09/28 9:3 p.m.128 views

sparta

This is a network infrastructure penetration testing tool called SPARTA. It is a Python GUI application that simplifies the scanning and enumeration phase of penetration testing by providing point-and-click access to various tools and displaying all tool output in a convenient way. The tool...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2025/09/27 12:0 a.m.3 views

Wazuh 安全漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A security vulnerability exists in Wazuh version 3.8.0 through versions prior to 4.11.0 that stems from a heap...

6.5CVSS7.1AI score0.00342EPSS
Exploits1References2
Rows per page
Query Builder