Lucene search
K

22 matches found

OSV
OSV
added 2 days ago2 views

DEBIAN-CVE-2026-53763

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.0.0 and prior to version 4.11.0, 32-bit integer overflows in OP-TEE core's AES-GCM implementation cause the...

3.8CVSS6AI score0.0015EPSS
Exploits0References1
Cvelist
Cvelist
added 2 days ago27 views

CVE-2026-41514 OP-TEE: RSA-OAEP padding oracle in Hisilicon HPRE driver enables plaintext recovery

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 4.5.0 and prior to version 4.11.0, the RSA-OAEP decryption implementation in the Hisilicon HPRE crypto driver uses...

2.5CVSS0.00096EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/20 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-43915

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.11.0 contain a stored cross-site scripting XSS vulnerability in the...

5.4CVSS5.6AI score0.00141EPSS
Exploits0References3
OSV
OSV
added 2026/06/18 8:16 p.m.6 views

DEBIAN-CVE-2026-43915

Coturn is a free open source implementation of TURN and STUN Server. Versions prior to 4.11.0 contain a stored cross-site scripting XSS vulnerability in the web-admin HTTPS interface. An attacker who can create a TURN allocation with a crafted USERNAME value can inject HTML/JavaScript that execut...

5.4CVSS5.6AI score0.00141EPSS
Exploits0References1
CVE
CVE
added 2026/06/18 7:33 p.m.20 views

CVE-2026-43915

CVE-2026-43915 affects Coturn prior to 4.11.0, where the web-admin HTTPS interface vulnerable to a stored XSS via a crafted TURN USERNAME when an allocation is created. An authenticated web-admin user viewing the TURN session list can trigger script execution; in configurations with anonymous acc...

5.4CVSS4.8AI score0.00141EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/02/27 9:22 p.m.6 views

EUVD-2026-8789

ZITADEL's truncated opaque tokens are still valid...

4.3CVSS5.9AI score0.00142EPSS
Exploits0References6
OSV
OSV
added 2025/12/10 9:31 p.m.2 views

GHSA-WCGJ-F865-C7J7 Improper Request Caching Lookup in the Auth0 Next.js SDK

Description When using affected versions of the Next.js SDK, simultaneous requests on the same client may result in improper lookups in the TokenRequestCache for the request results. Am I Affected? You are affected if you meet the following preconditions: - Applications using the auth0/nextjs-aut...

5.4CVSS6.8AI score0.00172EPSS
Exploits0References4
CVE
CVE
added 2025/10/29 4:48 p.m.16 views

CVE-2025-62791

CVE-2025-62791 (Wazuh) : Prior to 4.11.0, DecodeCiscat() does not check the return value of cJSON_GetObjectItem(), allowing a NULL dereference when handling errors. A crafted agent message to the Wazuh manager can cause analysisd to crash and become unavailable. The issue is fixed in 4.11.0. Impa...

7.5CVSS6.3AI score0.00305EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/10/29 4:44 p.m.14 views

CVE-2025-62789

CVE-2025-62789 affects Wazuh before 4.11.0. The fim_alert() path does not check the return value of ctime_r before calling strdup(), enabling a NULL pointer dereference that can crash analysisd when a compromised/malicious agent sends a crafted message to the Wazuh manager. Impact is denial of se...

7.5CVSS6.3AI score0.00372EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.5 views

PT-2025-44324

Name of the Vulnerable Software and Affected Versions Wazuh versions prior to 4.11.0 Description Wazuh is a platform for threat prevention, detection, and response. A flaw exists in the fim fetch attributes state implementation where it does not verify if time string is NULL before applying strle...

7.5CVSS6.5AI score0.00372EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.7 views

PT-2025-44322

Name of the Vulnerable Software and Affected Versions Wazuh versions prior to 4.11.0 Description Wazuh is a platform for threat prevention, detection, and response. A flaw exists in the w copy event for log function where it references memory after it has been freed, initially allocated in OS...

7.5CVSS6.5AI score0.00295EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.4 views

Wazuh 代码问题漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A code issue vulnerability exists in Wazuh versions prior to 4.11.0 that stems from not checking if timestring is...

7.5CVSS6.8AI score0.00372EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/10/06 3:17 p.m.11 views

CVE-2025-10692

The endpoint POST /api/staff/get-new-tickets concatenates the user-controlled parameter departmentId directly into the SQL WHERE clause without parameter binding. As a result, an authenticated staff user level ≥ 1 can inject SQL to alter the filter logic, effectively bypassing department scoping...

7.1CVSS7.4AI score0.0034EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/03 8:35 p.m.10 views

CVE-2025-10696 OpenSupports 4.11.0 — Insecure Direct Object Reference in supervised list

OpenSupports exposes an endpoint that allows the list of 'supervised users' for any account to be edited, but it does not validate whether the actor is the owner of that list. A Level 1 staff member can modify the supervision relationship of a third party the target user, who can then view the...

7.1CVSS0.00203EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:30 p.m.4 views

EUVD-2025-32372

The endpoint POST /api/staff/get-new-tickets concatenates the user-controlled parameter departmentId directly into the SQL WHERE clause without parameter binding. As a result, an authenticated staff user level ≥ 1 can inject SQL to alter the filter logic, effectively bypassing department scoping...

7.1CVSS6.8AI score0.0034EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/09/27 12:0 a.m.5 views

PT-2025-39698

Name of the Vulnerable Software and Affected Versions Wazuh versions 3.8.0 through 4.10.9 Description Wazuh, a platform for threat prevention, detection, and response, contains a heap buffer overflow in the wazuh-analysisd component. This issue occurs when parsing XML elements received from Windo...

6.5CVSS7.2AI score0.00342EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/06/12 12:0 a.m.4 views

vantage6 安全特征问题漏洞

vantage6 is a vantage6 open source priVAcy preserviNg federalTed leArningG infrastructure for Secure Insight eXchange. A security feature issue vulnerability exists in vantage6 versions prior to 4.11.0 that stems from an insecure JWT key auto-generation that could lead to key prediction...

7.5CVSS6.3AI score0.0033EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/06/10 12:0 a.m.4 views

PT-2024-21603 · Unknown +8 · Mit Kerberos +8

Name of the Vulnerable Software and Affected Versions: FreeIPA versions 4.11.0 Description: A vulnerability was found in FreeIPA related to the initial implementation of MS-SFU by MIT Kerberos, which was missing a condition for granting the "forwardable" flag on S4U2Self tickets. This issue...

9CVSS6.7AI score0.02053EPSS
Exploits1References50
CNNVD
CNNVD
added 2024/06/10 12:0 a.m.2 views

Red Hat FreeIPA Access Control Error Vulnerability

Red Hat FreeIPA is a comprehensive security information management solution. An access control error vulnerability exists in FreeIPA version 4.11.0 that stems from a lack of granting, resulting in requests being accepted regardless of rule compliance...

8.8CVSS6.6AI score0.00667EPSS
Exploits0References9
PyPA
PyPA
added 2023/12/22 9:15 p.m.7 views

PYSEC-2023-249

Gradio is an open-source Python package that allows you to quickly build a demo or web application for your machine learning model, API, or any arbitary Python function. Versions of gradio prior to 4.11.0 contained a vulnerability in the /file route which made them susceptible to file traversal...

7.5CVSS6.9AI score0.0228EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder