Lucene search
K

30 matches found

Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.7 views

Notepad++ 8.9.6.2 < 8.9.6.4 TOCTOU Race Condition (CVE-2026-52885)

The version of Notepad++ installed on the remote host is 8.9.6.2 or 8.9.6.3. It is, therefore, affected by a TOCTOU race condition vulnerability: - A time-of-check time-of-use TOCTOU race condition exists in the HMAC verification of shortcuts.xml. The HMAC check validates the on-disk file at...

7.5CVSS6.2AI score0.00129EPSS
Exploits2References2
OSV
OSV
added 2026/06/29 6:4 a.m.5 views

MAL-2026-6584 Malicious code in poly-kelly (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3d3df5266b6e9d9347844e4e054ab744aad9517c6f55df4e68e6c6815e843da7 On npm install, the package's postinstall script reads the homepage field from package.json set to...

5.9AI score
Exploits0References5
CVE
CVE
added 2026/06/26 8:19 p.m.39 views

CVE-2026-52885

Notepad++ Notepad++ v8.9.6.4 fixes a TOCTOU vulnerability (CVE-2026-52885) where the on-disk HMAC of shortcuts.xml is checked at trigger time while the command payload is loaded into memory at startup and never synchronized. An attacker with write access to shortcuts.xml can plant a malicious fil...

7.5CVSS6AI score0.00129EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2026/06/23 9:16 p.m.8 views

CVE-2026-47380

NocoDB is software for building databases as spreadsheets. Prior to 2026.04.1, sign-in response timing differed between known and unknown email addresses because the unknown-user branch returned without performing a password hash comparison. This vulnerability is fixed in 2026.04.1...

6.3CVSS0.00197EPSS
Exploits0References1
OSV
OSV
added 2026/06/15 5:30 p.m.16 views

MAL-2026-5799 Malicious code in boardflow (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector f9d5c1524281430272215f48a90b957cf08f76dcb9954cb73945421dff358eb2 package.json declares preinstall: node install.js, which fires automatically on npm install. install.js is heavily obfuscated obfuscator.io...

5.8AI score
Exploits0References9
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the iowqremovepending function in iowq. This function does not check whether the predecessor has...

7.8CVSS5.2AI score0.00138EPSS
Exploits0References2
OSV
OSV
added 2026/05/22 11:16 a.m.13 views

MAL-2026-4533 Malicious code in codebuff-cli (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bdf777f03e4dc44a9956401136a42f099638025ef7d2197dec630525ad26727d The package name codebuff-cli impersonates the legitimate codebuff npm package; the README is copy-pasted from the official CodebuffAI project it eve...

5.9AI score
Exploits0References26
EUVD
EUVD
added 2026/04/21 6:24 p.m.5 views

EUVD-2026-24031

OpenBao: Decompression Bomb via Unbounded Copy in OCI Plugin Extraction DoS...

3.1CVSS5.7AI score0.00218EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/04/21 12:44 a.m.3 views

CVE-2026-39396

OpenBao is an open source identity-based secrets management system. Prior to version 2.5.3, ExtractPluginFromImage in OpenBao's OCI plugin downloader extracts a plugin binary from a container image by streaming decompressed tar data via io.Copy with no upper bound on the number of bytes written. ...

3.1CVSS5.8AI score0.00218EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/04/21 12:44 a.m.16 views

CVE-2026-39396

OpenBao is vulnerable to a DoS via a decompression bomb in its OCI plugin extraction. Before version 2.5.3, ExtractPluginFromImage() streams decompressed tar data with no upper bound, using io.Copy without size checks. If an attacker controls the OCI registry, they can serve a crafted image that ...

6.5CVSS5.8AI score0.00218EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/21 12:0 a.m.6 views

PT-2026-33882

Name of the Vulnerable Software and Affected Versions OpenBao versions prior to 2.5.3 Description The OCI plugin downloader contains an issue in the ExtractPluginFromImage function where plugin binaries are extracted from container images by streaming decompressed tar data via io.Copy without a...

6.5CVSS5.2AI score0.00218EPSS
Exploits1References19
Huntr
Huntr
added 2026/03/17 1:2 a.m.14 views

Pickle deserialization RCE via pd.read_pickle() bypasses CVE-2024-24590 fix

Summary The fix for CVE-2024-24590 only hardened the type == "pickle" deserialization branch in Artifact.get. A parallel code path for type == "pandas" with contenttype == "application/pickle" calls pd.readpickle without any integrity or safety check. An attacker who uploads a malicious pickle...

8.8CVSS6.6AI score0.02452EPSS
Exploits9
Snyk
Snyk
added 2026/03/05 9:13 p.m.5 views

Insufficient Verification of Data Authenticity

Overview Affected versions of this package are vulnerable to Insufficient Verification of Data Authenticity in the handling of LFS object uploads. An attacker can overwrite existing LFS objects across different repositories by uploading objects with the same identifier, potentially leading to...

9.3CVSS5.8AI score0.00327EPSS
Exploits1References2
OSV
OSV
added 2025/11/14 2:45 p.m.30 views

HSEC-2023-0011 git-annex GPG decryption attack via compromised remote

git-annex GPG decryption attack via compromised remote A malicious server for a special remote could trick git-annex into decrypting a file that was encrypted to the user's GPG key. This attack could be used to expose encrypted data that was never stored in git-annex. Daniel Dent discovered this...

7.5CVSS7.6AI score0.01539EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/09 12:0 a.m.8 views

The vulnerability in the `front/index.php` script of the NetAlert X network alert infrastructure allows a intruder to bypass security restrictions and gain unauthorized access to protected information.

The vulnerability in the front/index.php script of the NetAlert X network alerting infrastructure is related to incorrect password comparison based on hashes. Exploiting this vulnerability allows an attacker to bypass security restrictions and gain unauthorized access to protected information...

9.7CVSS5.5AI score0.00498EPSS
Exploits1References2Affected Software1
GithubExploit
GithubExploit
added 2025/06/24 6:58 a.m.156 views

Exploit for CVE-2025-45467

CVE-2025-45467: Insecure Firmware Verification in Unitree Go1...

7.1CVSS8.5AI score0.00301EPSS
Exploits2
SUSE Linux
SUSE Linux
added 2025/04/29 11:20 a.m.8 views

Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: CVE-2024-53237: Fixed bluetooth: fix use-after-free in deviceforeachchild bsc1235008 CVE-2024-53082: Fixed virtionet: Add hashkeylength check bsc1233677 CVE-2024-8805: Fixed BlueZ HID over GATT Profile Improper Access...

8.8CVSS8.1AI score0.02033EPSS
Exploits0References16
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.4 views

TCPDF 安全漏洞

TCPDF is an open source library from Tecnick. It is used to generate PDF documents and barcodes. TCPDF version before 6.8.0 has a security vulnerability , the vulnerability stems from unserializeTCPDFtag use "! =" and does not use the constant-time function to compare TCPDF tag hashes...

7.5CVSS6.5AI score0.00615EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2024/11/21 1:11 a.m.2 views

golang-fips: Golang FIPS zeroed buffer

A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted...

6.5CVSS5.8AI score0.00298EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/06/07 12:0 a.m.7 views

PT-2023-11866 · WordPress · Wordable

Name of the Vulnerable Software and Affected Versions: Wordable plugin for WordPress versions up to, and including, 3.1.1 Description: The issue is related to authentication bypass due to the use of a user-supplied hashing algorithm passed to the hash hmac function and a loose comparison on the...

9.8CVSS9.7AI score0.01543EPSS
Exploits1References5
Rows per page
Query Builder