Lucene search
K

125 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: rtnetlink: Allocate sufficient vfinfo size for VF GUIDs when supported. Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for obtaining VF port and node GUIDs in netlink’s ifinfo messages. However,...

5.5CVSS6.4AI score0.00185EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/03/22 6:30 a.m.10 views

Pygments has Regular Expression Denial of Service (ReDoS) due to Inefficient Regex for GUID Matching

A security flaw has been discovered in pygments before 2.20.0. The impacted element is the function AdlLexer of the file pygments/lexers/archetype.py. The manipulation results in inefficient regular expression complexity. The attack is only possible with local access. The exploit has been release...

4.8CVSS5.4AI score0.00156EPSS
Exploits0References10Affected Software1
NVD
NVD
added 2026/02/19 11:15 a.m.6 views

CVE-2025-15559

An unauthenticated attacker can inject OS commands when calling a server API endpoint in NesterSoft WorkTime. The server API call to generate and download the WorkTime client from the WorkTime server is vulnerable in the “guid” parameter. This allows an attacker to execute arbitrary commands on t...

9.8CVSS0.00441EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/17 12:0 a.m.10 views

Sciyon Koyuan Thermoelectricity Heat Network SQL注入漏洞

Sciyon Koyuan Thermoelectricity Heat Network is a heat network management system developed by the Chinese company Sciyon. Version 3.0 of Sciyon Koyuan Thermoelectricity Heat Network has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the PGUID parameter in the...

7.5CVSS7.2AI score0.00254EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/09 6:4 p.m.6 views

CVE-2025-66630 Fiber insecurely fallsback in utils.UUIDv4() / utils.UUID() — predictable / zero‑UUID on crypto/rand failure

Fiber is an Express inspired web framework written in Go. Before 2.52.11, on Go versions prior to 1.24, the underlying crypto/rand implementation can return an error if secure randomness cannot be obtained. Because no error is returned by the Fiber v2 UUID functions, application code may...

9.2CVSS5.6AI score0.00471EPSS
Exploits0References3
OSV
OSV
added 2025/04/16 3:16 p.m.5 views

DEBIAN-CVE-2025-22075

In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit 30aad41721e0 "net/core: Add support for getting VF GUIDs" added support for getting VF port and node GUIDs in netlink ifinfo messages, but their size was not take...

5.5CVSS5.7AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.11 views

PT-2025-37962

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.6 Description The Linux kernel contains a flaw in the efivarfs module related to an out-of-bounds write in the efivarfs d compare function. This issue occurs when dentry-d name.len is less than EFI VARIABLE GUI...

7.1CVSS6.5AI score0.00152EPSS
Exploits0
OSV
OSV
added 2024/10/11 4:15 p.m.5 views

CVE-2024-47505

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon evo-pfemand of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service DoS.When specific SNMP GET operations or specifi...

7.1CVSS5.8AI score0.00375EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/03/28 12:0 a.m.6 views

The vulnerability of the LoadPartitionTable function in the gpt.cc component of the GPT disk partitioning tool allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the LoadPartitionTable function in the gpt.cc component of the GPT disk partitioning tool, fdisk, is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and even cause service failures...

7.2CVSS7.1AI score0.00214EPSS
Exploits0References9Affected Software4
OSV
OSV
added 2021/02/11 6:15 p.m.6 views

CVE-2020-13186

An Anti CSRF mechanism was discovered missing in the Teradici Cloud Access Connector v31 and earlier in a specific web form, which allowed an attacker with knowledge of both a machineID and user GUID to modify data if a user clicked a malicious link...

6.5CVSS6.6AI score0.00344EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/27 12:0 a.m.3 views

BOSH Director VM Agent Anonymous Endpoint Vulnerability

BOSH is an open source tool for deployment and lifecycle management of large-scale distributed systems, of which Director VM is a virtual machine and stemcell is an image. A security vulnerability exists in the endpoint of the Agent in the BOSH Director VM using stemcell versions prior to 3232.6...

9CVSS6.7AI score0.00876EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/06/27 3:4 p.m.4 views

nodejs-node-uuid: insecure entropy source - Math.random()

It was found that NodeJS node-uuid used Math.random to create a GUID Globally Unique Identifier which does not provide enough entropy on some platforms it only provides 32 bits which can result in collisions of GUIDs. An attacker could use this to guess GUID values and leverage further attacks...

7.5CVSS7.1AI score0.02257EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2011/08/23 2:30 p.m.8 views

kernel: validate size of EFI GUID partition entries

The isgptvalid function in fs/partitions/efi.c in the Linux kernel before 2.6.39 does not check the size of an Extensible Firmware Interface EFI GUID Partition Table GPT entry, which allows physically proximate attackers to cause a denial of service heap-based buffer overflow and OOPS or obtain...

6.1CVSS7AI score0.00546EPSS
Exploits0References4
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

MS:2C9AB732-FBCC-4552-87B2-BA2BB53811C8

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.1 views

MS:75C9BA9D-DA13-4C45-AD21-A47835E866EF

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

MS:4D7FADA7-696D-40F4-9C06-7E43691705B8

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

MS:CC24D418-62D4-44BF-B4F6-CD0A3CC06EC6

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

MS:E2D29B5E-D962-4DD9-8F5E-3597AEA2A8BF

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

MS:BFECCFAE-84C3-4E21-B198-5175F76CACF2

...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

MS:3233D408-90D3-4C1B-B381-85B843A64EAF

...

7AI score
Exploits0
Rows per page
Query Builder