Lucene search
K

18 matches found

CVE
CVE
added 6 days ago12 views

CVE-2026-55993

CVE-2026-55993 : Apache Camel Atmosphere Websocket Component contains an SSRF/Information Disclosure issue via improper input validation. The camel-atmosphere-websocket consumer maps inbound WebSocket query parameters into the Camel Exchange header map without a HeaderFilterStrategy, allowing ext...

7.5CVSS6AI score0.00536EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/06/08 2:11 p.m.11 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.21 CNF IBU extras update

An update for ibu components is available for Red Hat OpenShift Container Platform 4.21. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the extra ibu container...

9.1CVSS6.4AI score0.01557EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/06/08 12:54 p.m.12 views

Important: Red Hat Security Advisory: RHTAS 1.3.5 - Red Hat Trusted Artifact Signer Release

The 1.3.5 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19...

7.5CVSS6.8AI score0.00651EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/08 12:54 p.m.9 views

Important: Red Hat Security Advisory: RHTAS 1.3.5 - Red Hat Trusted Artifact Signer Release

The 1.3.5 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19...

8.9CVSS6.4AI score0.0068EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.8 views

Apache CloudStack 安全漏洞

Apache CloudStack is an IaaS cloud computing platform developed by the Apache Foundation in the United States. This platform is primarily used for deploying and managing large-scale virtual machine networks. Versions 4.21.0.0 and 4.22.0.0 of Apache CloudStack contain security vulnerabilities. The...

6.5CVSS5.8AI score0.0053EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/04/23 12:17 p.m.10 views

Important: Red Hat Security Advisory: RHTAS 1.3.4 - Red Hat Trusted Artifact Signer Release

The 1.3.4 release of Red Hat Trusted Artifact Signer OpenShift Operator. For more details please visit the product documentation at https://access.redhat.com/documentation/en-us/redhattrustedartifactsigner/1.3 The RHTAS Operator can be used with OpenShift Container Platform 4.16, 4.17, 4.18, 4.19...

9.8CVSS7.1AI score0.01735EPSS
Exploits1References6
Patchstack
Patchstack
added 2026/04/22 10:25 a.m.7 views

WordPress EmallShop theme <= 2.4.21 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Phat RiO in WordPress Theme EmallShop versions = 2.4.21...

5.3AI score0.00308EPSS
Exploits0Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/30 12:0 a.m.1 views

CVE-2025-66422

Tryton trytond before 7.6.11 allows remote attackers to obtain sensitive trace-back server setup information. This is fixed in 7.6.11, 7.4.21, 7.0.40, and 6.0.70...

4.3CVSS6.1AI score0.00251EPSS
Exploits1References2
OSV
OSV
added 2023/08/23 10:15 p.m.3 views

CVE-2023-32202

Walchem Intuition 9 firmware versions prior to v4.21 are vulnerable to improper authentication. Login credentials are stored in a format that could allow an attacker to use them as-is to login and gain access to the device...

8.8CVSS5.8AI score0.00483EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/24 2:15 p.m.6 views

CVE-2021-46849

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...

7.2AI score
Exploits0References3
CNNVD
CNNVD
added 2022/08/29 12:0 a.m.6 views

WordPress plugin Anti-Malware Security and Brute-Force Firewall 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...

6.1CVSS5.9AI score0.0102EPSS
Exploits2References2
OSV
OSV
added 2022/01/10 4:15 p.m.3 views

CVE-2021-43951

Affected versions of Atlassian Jira Service Management Server and Data Center allow authenticated remote attackers to view object import configuration details via an Information Disclosure vulnerability in the Create Object type mapping feature. The affected versions are before version 4.21.0...

4.3CVSS5.8AI score0.00809EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/28 12:0 a.m.6 views

Arista EOS Security Breach

Arista Networks Arista EOS is a scalable operating system for data centers and cloud network centers from Arista Networks, Inc. Arista EOS builds cloud architectures that scale to hundreds of thousands of compute and storage nodes with management and provisioning capabilities for large-scale jobs...

5.9CVSS5.8AI score0.00841EPSS
Exploits1References2
CNNVD
CNNVD
added 2020/11/16 12:0 a.m.7 views

Cisco Security Manager 安全漏洞

Cisco Security Manager CSM is a suite of enterprise-level management applications from Cisco that are used to configure firewall, VPN, and intrusion protection security services on Cisco network and security devices. A path traversal vulnerability exists in Cisco Security Manager 4.21 and earlier...

9.1CVSS7.4AI score0.65907EPSS
Exploits0References3
OSV
OSV
added 2020/06/10 8:15 p.m.2 views

CVE-2020-11622

A vulnerability exists in Arista’s Cloud EOS VM / vEOS 4.23.2M and below releases in the 4.23.x train, 4.22.4M and below releases in the 4.22.x train, 4.21.3M to 4.21.9M releases in the 4.21.x train, 4.21.3FX-7368., 4.21.4-FCRFX., 4.21.4.1, 4.21.7.1, 4.22.2.0.1, 4.22.2.2.1, 4.22.3.1, and 4.23.2.1...

7.5CVSS5.8AI score0.01277EPSS
Exploits0References2
CNVD
CNVD
added 2017/08/04 12:0 a.m.4 views

HashiCorp Vagrant VMware Fusion Plugin Elevation of Privilege Vulnerability

HashiCorp Vagrant VMware Fusion plugin is a tool for building and managing virtual machine environments on VMware virtual machines developed by HashiCorp, USA. A security vulnerability exists in the sudo helper in HashiCorp Vagrant VMware Fusion plugin versions prior to 4.0.21. A local attacker...

7.8CVSS6.8AI score0.01229EPSS
Exploits3References1
VulnCheck KEV
VulnCheck KEV
added 2017/06/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2003-0127

The kernel module loader in Linux kernel 2.2.x before 2.2.25, and 2.4.x before 2.4.21, allows local users to gain root privileges by using ptrace to attach to a child process that is spawned by the kernel...

7.2CVSS5.8AI score0.01584EPSS
Exploits5References1
CNVD
CNVD
added 2016/08/29 12:0 a.m.3 views

PHPVibe Stored Cross-Site Scripting Vulnerability

PHPVibe is a video sharing content management system CMS. The system can be used to create video sharing websites. A stored cross-site scripting vulnerability exists in PHPVibe versions prior to 4.21. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML...

5.4CVSS6AI score0.01864EPSS
Exploits1References1
Rows per page
Query Builder