Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-14684

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00591EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-14683

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00743EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/04/30 8:15 p.m.15 views

CVE-2025-34491

GFI MailEssentials prior to version 21.8 is vulnerable to a .NET deserialization issue. A remote and authenticated attacker can execute arbitrary code by sending crafted serialized .NET when joining to a Multi-Server setup...

8.8CVSS7.7AI score0.00743EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/04/30 7:11 p.m.7 views

CVE-2025-34490

GFI MailEssentials prior to version 21.8 is vulnerable to an XML External Entity XXE issue. An authenticated and remote attacker can send crafted HTTP requests to read arbitrary system files...

6.5CVSS6.9AI score0.00591EPSS
Exploits1References1
NVD
NVD
added 2025/04/28 8:15 p.m.14 views

CVE-2025-34491

GFI MailEssentials prior to version 21.8 is vulnerable to a .NET deserialization issue. A remote and authenticated attacker can execute arbitrary code by sending crafted serialized .NET when joining to a Multi-Server setup...

8.8CVSS0.00743EPSS
Exploits1References3
CVE
CVE
added 2025/04/28 7:20 p.m.73 views

CVE-2025-34491

CVE-2025-34491 affects GFI MailEssentials prior to v21.8. The issue is a .NET deserialization flaw in the Multi-Server setup that allows a remote, authenticated attacker to execute arbitrary code by sending crafted serialized .NET data. Root cause: improper deserialization in the Multi-Server com...

8.8CVSS8.9AI score0.00743EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2025/04/28 7:15 p.m.12 views

CVE-2025-34490

GFI MailEssentials prior to version 21.8 is vulnerable to an XML External Entity XXE issue. An authenticated and remote attacker can send crafted HTTP requests to read arbitrary system files...

6.5CVSS0.00591EPSS
Exploits1References3
CVE
CVE
added 2025/04/28 7:2 p.m.62 views

CVE-2025-34490

GFI MailEssentials

6.5CVSS6.4AI score0.00591EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/28 12:0 a.m.4 views

PT-2025-18106 · Gfi · Gfi Mailessentials

Name of the Vulnerable Software and Affected Versions: GFI MailEssentials versions prior to 21.8 Description: The issue is related to an XML External Entity XXE problem. An authenticated and remote attacker can send crafted HTTP requests to read arbitrary system files. Recommendations: For versio...

6.5CVSS6.4AI score0.00591EPSS
Exploits1References7
Rows per page
Query Builder