Lucene search
K

8 matches found

SUSE CVE
SUSE CVE
added 2026/06/12 2:26 a.m.8 views

SUSE CVE-2026-44724

systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...

7.8CVSS5.3AI score0.0062EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/27 7:26 p.m.10 views

CVE-2026-44724

systeminformation is a System and OS information library for node.js. From 4.17.0 to 5.31.5, on Linux, systeminformation is vulnerable to command injection in networkInterfaces when an active NetworkManager connection profile name contains shell metacharacters. The vulnerable value is obtained...

7.8CVSS5.8AI score0.0062EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2026/02/21 12:24 a.m.5 views

SUSE CVE-2026-26318

systeminformation is a System and OS information library for node.js. Versions prior to 5.31.0 are vulnerable to command injection via unsanitized locate output in versions. Version 5.31.0 fixes the issue...

8.8CVSS5.8AI score0.0115EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/02/19 7:48 p.m.27 views

CVE-2026-26318 systeminformation has Command Injection via Unsanitized `locate` Output in `versions()`

systeminformation is a System and OS information library for node.js. Versions prior to 5.31.0 are vulnerable to command injection via unsanitized locate output in versions. Version 5.31.0 fixes the issue...

8.8CVSS0.0115EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/09/15 7:28 p.m.2 views

CVE-2023-53169

In the Linux kernel, the following vulnerability has been resolved: x86/resctrl: Clear stagedconfig before and after it is used As a temporary storage, stagedconfig in rdtdomain should be cleared before and after it is used. The stale value in stagedconfig could cause an MSR access error. Here is...

7CVSS5.8AI score0.00145EPSS
Exploits0References4
OSV
OSV
added 2025/03/27 2:15 p.m.4 views

DEBIAN-CVE-2025-26619

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In vega 5.30.0 and lower and in vega-functions 5.15.0 and lower , it was possible to call JavaScript functions from the Vega expression language that were not meant to be...

6.1CVSS5.9AI score0.00324EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/07/18 2:15 p.m.3 views

CVE-2022-26563

An issue was discovered in Tildeslash Monit before 5.31.0, allows remote attackers to gain escilated privlidges due to improper PAM-authorization...

8.8CVSS5.9AI score0.00667EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2013/07/18 12:0 a.m.3 views

PT-2013-1303 · Oracle +3 · Mysql Server +2

Name of the Vulnerable Software and Affected Versions: Oracle MySQL versions 5.5.31 and earlier Oracle MySQL versions 5.6.11 and earlier Description: The issue is related to errors in the Optimizer code of the MySQL database management system. It allows a remote attacker to affect the availabilit...

7.2CVSS7.5AI score0.07505EPSS
Exploits1References74
Rows per page
Query Builder