Lucene search
K

7 matches found

EUVD
EUVD
added 2026/06/25 9:31 a.m.6 views

EUVD-2026-39183

NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT connection, and closing the connection without reading the response...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References2
OSV
OSV
added 2026/06/25 12:0 a.m.2 views

UBUNTU-CVE-2026-12245

NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT connection, and closing the connection without reading the response...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References3
CVE
CVE
added 2025/11/21 5:55 p.m.11 views

CVE-2025-64483

CVE-2025-64483 affects Wazuh (4.9.0–before 4.13.0) via the Wazuh API – Agent Configuration endpoint. In certain configurations, authenticated users with read-only API roles could retrieve agent enrollment credentials through the /utils/configuration endpoint, enabling registration of new agents w...

5.3CVSS6.3AI score0.00224EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.5 views

Wazuh 安全漏洞

Wazuh is a Wazuh open source application. It is used to collect, aggregate, index and analyze security data to help organizations detect intrusions, threats and behavioral anomalies. A security vulnerability exists in Wazuh versions prior to 4.13.0 that originates from an authenticated attacker w...

9.1CVSS7.9AI score0.00688EPSS
Exploits1References4
Patchstack
Patchstack
added 2025/11/18 11:53 p.m.7 views

WordPress GiveWP - Donation plugin and Fundraising Platform plugin <= 4.13.0 - Unauthenticated Stored Cross-Site Scripting via 'name' vulnerability

WordPress GiveWP - Donation plugin and Fundraising Platform plugin = 4.13.0 - Unauthenticated Stored Cross-Site Scripting via 'name' vulnerability discovered by shark3y in WordPress Plugin GiveWP versions = 4.13.0...

7.2CVSS5.8AI score0.00217EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/09/27 12:0 a.m.4 views

Chipolo ONE 安全漏洞

Chipolo ONE is a key finder from Chipolo. Perfect for finding your keys, bags, backpacks in seconds. Chipolo ONE version 4.13.0 suffers from a security vulnerability that stems from the ability of a trusted owner to remotely share Chipolo access to another user who could be a potential attacker. ...

7.4CVSS7.4AI score0.00545EPSS
Exploits0References3
CNVD
CNVD
added 2020/08/24 12:0 a.m.2 views

ALEOS Out-of-Bounds Read Vulnerability

ALEOS is an integrated development environment for building customized embedded M2M applications. An out-of-bounds read vulnerability exists in the ACEView service in ALEOS versions prior to 4.13.0, 4.9.5, and 4.4.9, which can be exploited by an attacker to obtain sensitive information...

9.1CVSS6.7AI score0.00938EPSS
Exploits0References1
Rows per page
Query Builder