Lucene search
K

96 matches found

NVD
NVD
added 6 days ago6 views

CVE-2026-53467

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-51 and 7.1.2-26, the MNG decoder contains a possible heap information disclosure vulnerability because part of the pixels are left unchanged. This issue has been fixed in versio...

5.3CVSS0.00197EPSS
Exploits0References1
Wolfi
Wolfi
added 2026/06/12 1:48 a.m.8 views

CVE-2026-11651 vulnerabilities

Vulnerabilities for packages: chromium...

9.6CVSS5.4AI score0.00337EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.14 views

PT-2026-46346

Unauthenticated Local File Inclusion in Wanium = 1.9.8 versions...

8.1CVSS5.2AI score0.00435EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.13 views

PT-2026-46326

Unauthenticated Local File Inclusion in Raider Spirit = 1.1.2 versions...

8.1CVSS5.2AI score0.00435EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/19 12:30 p.m.10 views

CVE-2026-8973

Memory safety bugs present in Firefox 150. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in Firefox 151 and Thunderbird 151...

8.8CVSS6AI score0.00335EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/19 12:29 p.m.9 views

CVE-2026-8953 Sandbox escape due to use-after-free in the Disability Access APIs component

Sandbox escape due to use-after-free in the Disability Access APIs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

5.8AI score0.00532EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/05/19 12:29 p.m.9 views

CVE-2026-8946

Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability was fixed in Firefox 151, Firefox ESR 115.36, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

7.5CVSS5.8AI score0.0056EPSS
Exploits0References6
NVD
NVD
added 2026/02/21 6:17 a.m.20 views

CVE-2026-27211

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

10CVSS0.005EPSS
Exploits1References7
OSV
OSV
added 2026/02/21 5:36 a.m.8 views

CVE-2026-27211 Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

9.1CVSS5.7AI score0.005EPSS
Exploits1References9
Vulnrichment
Vulnrichment
added 2026/02/21 5:36 a.m.3 views

CVE-2026-27211 Cloud Hypervisor: Host File Exfiltration via QCOW Backing File Abuse

Cloud Hypervisor is a Virtual Machine Monitor for Cloud workloads. Versions 34.0 through 50.0 arevulnerable to arbitrary host file exfiltration constrained by process privileges when using virtio-block devices backed by raw images. A malicious guest can overwrite its disk header with a crafted...

9.1CVSS5.5AI score0.005EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/02/21 12:0 a.m.8 views

PT-2026-21357

Name of the Vulnerable Software and Affected Versions Cloud Hypervisor versions 34.0 through 50.0 Description Cloud Hypervisor, a Virtual Machine Monitor for Cloud workloads, has an issue where a malicious guest can potentially access sensitive host files. This occurs when using virtio-block...

10CVSS5.2AI score0.005EPSS
Exploits1References17
Positive Technologies
Positive Technologies
added 2026/01/08 12:0 a.m.4 views

PT-2026-1959

Name of the Vulnerable Software and Affected Versions Asseco InfoMedica versions prior to 4.50.1 Asseco InfoMedica versions prior to 5.38.0 Description Asseco InfoMedica stores user passwords in an encoded format within a database. An attacker with access to these encoded passwords can decode the...

5.9CVSS6.5AI score0.00138EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.4 views

Mozilla Firefox < 51.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 51.0. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2017-01 advisory. - A use-after-free vulnerability in the Media Decoder when working with media files when some events are fired...

9.8CVSS7.6AI score0.33434EPSS
Exploits24References25
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.5 views

Malicious code in bitha-51 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 146504a69ebd3f3dc97a4976f2268db27b464079718103ab3a3f9dba2471f7dd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.3 views

MAL-2025-165035 Malicious code in rival-poke51 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 08ef17468e670783fdd21a1cc3063467cd0fa89df38656a40b026e1d5d5276f2 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

ClipBucket SQL注入漏洞

ClipBucket is an open source and freely downloadable PHP script from MacWarrior Open Source. It is used for sharing video sites. A SQL injection vulnerability exists in ClipBucket v5 versions 5.5.2 through 151 and earlier, which originates from a certified administrator with plugin management...

6.5CVSS8.3AI score0.00385EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/10/30 3:22 p.m.4 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.16.51 CNF IBU extras update

An update for ibu components is available for Red Hat OpenShift Container Platform 4.16. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the extra ibu container...

7.1CVSS7.1AI score0.00281EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.4 views

StarNet FastX 安全漏洞

StarNet FastX is a remote desktop software from StarNet USA. A security vulnerability exists in StarNet FastX 4.1.51 and prior versions that stems from a path traversal flaw that could allow an unauthenticated attacker to read arbitrary files...

6.5CVSS9.1AI score0.00393EPSS
Exploits0References3
HackRead
HackRead
added 2025/09/22 11:14 a.m.2 views

AI Forensics Help Europol Track 51 Children in Global Online Abuse Case

Europol and 18 countries used AI forensics to identify 51 child victims and 60 suspects in a global online abuse investigation...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/09/04 12:0 a.m.4 views

Adversarial Bug Reports As a Security Risk in Language Model-Based Automated Program Repair

Large Language Model LLM - based Automated Program Repair APR systems are increasingly integrated into modern software development workflows, offering automated patches in response to natural language bug reports. However, this reliance on untrusted user input introduces a novel and underexplored...

7.1AI score
Exploits0
Rows per page
Query Builder