Lucene search
K

3786 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 11:23 p.m.3 views

CVE-2022-38532

Micro-Star International Co., Ltd MSI Center 1.0.50.0 was discovered to contain a vulnerability in the component CFeatures of MSI.CentralServer.exe. This vulnerability allows attackers to escalate privileges via running a crafted executable...

7.8CVSS7AI score0.00459EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.3 views

CVE-2021-31787

The Bluetooth Classic implementation on Actions ATS2815 chipsets does not properly handle the reception of continuous unsolicited LMP responses, allowing attackers in radio range to trigger a denial of service and shutdown of a device by flooding the target device with LMPfeaturesres packets...

6.5CVSS6.6AI score0.00494EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:26 p.m.7 views

CVE-2021-25648

Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and "isPremium" located on device storage...

9.8CVSS7.2AI score0.01167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:49 p.m.6 views

CVE-2020-12494

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

5.3CVSS6.8AI score0.01014EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:34 a.m.10 views

CVE-2015-10104

A vulnerability, which was classified as problematic, has been found in Icons for Features Plugin 1.0.0 on WordPress. Affected by this issue is some unknown functionality of the file classes/class-icons-for-features-admin.php. The manipulation of the argument redirecturl leads to open redirect. T...

6.1CVSS6.9AI score0.00553EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:15 a.m.9 views

CVE-2019-15685

Kaspersky Anti-Virus, Kaspersky Internet Security, Kaspersky Total Security, Kaspersky Free Anti-Virus, Kaspersky Small Office Security, Kaspersky Security Cloud up to 2020, the web protection component allowed an attacker remotely disable such product's security features as private browsing and...

4.3CVSS6.9AI score0.00844EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:39 a.m.6 views

CVE-2019-10885

An issue was discovered in Ivanti Workspace Control before 10.3.90.0. Local authenticated users with low privileges in a Workspace Control managed session can bypass Workspace Control security features configured for this session by resetting the session context...

7.8CVSS6.9AI score0.01043EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:57 a.m.4 views

CVE-2017-8776

Quick Heal Internet Security 10.1.0.316, Quick Heal Total Security 10.1.0.316, and Quick Heal AntiVirus Pro 10.1.0.316 have approximately 165 PE files in the default installation that do not use ASLR/DEP protection mechanisms that provide sufficient defense against directed attacks against the...

7.5CVSS7.5AI score0.00926EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/05/22 12:0 a.m.2 views

A Scalable Hierarchical Intrusion Detection System for Internet of Vehicles

Due to its nature of dynamic, mobility, and wireless data transfer, the Internet of Vehicles IoV is prone to various cyber threats, ranging from spoofing and Distributed Denial of Services DDoS attacks to malware. To safeguard the IoV ecosystem from intrusions, malicious activities, policy...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/22 12:0 a.m.4 views

Password Strength Detection Via Machine Learning: Analysis, Modeling, and Evaluation

As network security issues continue gaining prominence, password security has become crucial in safeguarding personal information and network systems. This study first introduces various methods for system password cracking, outlines password defense strategies, and discusses the application of...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/21 8:30 p.m.17 views

CVE-2002-2032

sqllayer.php in PHP-Nuke 5.4 and earlier does not restrict access to debugging features, which allows remote attackers to gain SQL query information by setting the sqldebug parameter to 1 index.php and 2 modules.php...

5CVSS7.6AI score0.05854EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2025/05/21 7:11 a.m.9 views

Google Chrome's Built-in Manager Lets Users Update Breached Passwords with One Click

Google has announced a new feature in its Chrome browser that lets its built-in Password Manager automatically change a user's password when it detects the credentials to be compromised. "When Chrome detects a compromised password during sign in, Google Password Manager prompts the user with an...

7.2AI score
Exploits0
CNNVD
CNNVD
added 2025/05/21 12:0 a.m.3 views

Inedo ProGet 安全漏洞

Inedo ProGet is a package management system from Inedo. A security vulnerability exists in Inedo ProGet versions prior to 2.17.5, which stems from a low-privileged user having access to configuration file information containing details of allowed/prohibited features...

5.1CVSS6.1AI score0.00181EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/05/20 12:3 p.m.5 views

USN-7519-1: MariaDB vulnerabilities

Several security issues were discovered in MariaDB and this update includes a new upstream MariaDB version to fix these issues. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes...

6.8CVSS6.4AI score0.00819EPSS
Exploits0
OSV
OSV
added 2025/05/20 12:3 p.m.3 views

USN-7519-1 mariadb-10.6 vulnerabilities

Several security issues were discovered in MariaDB and this update includes a new upstream MariaDB version to fix these issues. In addition to security fixes, the updated packages contain bug fixes, new features, and possibly incompatible changes...

6.8CVSS7AI score0.00819EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/05/20 12:0 a.m.3 views

GSDFuse: Capturing Cognitive Inconsistencies from Multi-Dimensional Weak Signals in Social Media Steganalysis

The ubiquity of social media platforms facilitates malicious linguistic steganography, posing significant security risks. Steganalysis is profoundly hindered by the challenge of identifying subtle cognitive inconsistencies arising from textual fragmentation and complex dialogue structures, and th...

7.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/05/20 12:0 a.m.9 views

Ubuntu 22.04 LTS : MariaDB vulnerabilities (USN-7519-1)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7519-1 advisory. Several security issues were discovered in MariaDB and this update includes a new upstream MariaDB version to fix these issues. In addition to security...

6.8CVSS6.4AI score0.00819EPSS
Exploits0References5
CNVD
CNVD
added 2025/05/20 12:0 a.m.3 views

TOTOLINK A3002R and A3002RU Buffer Overflow Vulnerability (CNVD-2025-11996)

The TOTOLINK A3002R and A3002RU are routers from TOTOLINK that support a wide range of network features and services. The TOTOLINK A3002R and A3002RU suffer from a buffer overflow vulnerability that stems from improper handling of the file /boafrm/formIpQoS in the HTTP POST request handler. No...

9CVSS7.6AI score0.00661EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/19 4:24 p.m.14 views

Important: Red Hat Security Advisory: Updated Red Hat OpenShift Dev Spaces 3 container images

Updated Red Hat OpenShift Dev Spaces 3.20 container images are now available The Red Hat OpenShift Dev Spaces 3 container images have been updated to address the following security advisory: RHSA-2025:3713 see References Users of Red Hat OpenShift Dev Spaces 3 container images are advised to...

7CVSS6.7AI score0.0079EPSS
Exploits0References7
The Hacker News
The Hacker News
added 2025/05/19 2:38 p.m.37 views

Ransomware Gangs Use Skitnet Malware for Stealthy Data Theft and Remote Access

Several ransomware actors are using a malware called Skitnet as part of their post-exploitation efforts to steal sensitive data and establish remote control over compromised hosts. "Skitnet has been sold on underground forums like RAMP since April 2024," Swiss cybersecurity company PRODAFT told T...

8.3AI score
Exploits0
Rows per page
Query Builder