Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.52 views

VMware Workstation 17.x, 25H2 < 25H2u1 Multiple Vulnerabilities (VMSA-2026-0002)

The version of VMware Workstation installed on the remote host is 17.x, 25H2.x prior to 25H2u1. It is, therefore, affected by multiple vulnerabilities. - VMWare Workstation and Fusion contain a logic flaw in the management of network packets. A malicious actor with administrative privileges on a...

5.9CVSS5.9AI score0.00203EPSS
Exploits0References4
NVD
NVD
added 2026/03/13 7:53 p.m.3 views

CVE-2025-14483

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.72, 6.2.0.0 through 6.2.0.51, 6.2.1.0 through 6.2.1.11, and 6.2.2.0 could disclose sensitive host information to authenticated users in responses that could be used in further attacks against the system...

6.5CVSS0.00241EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 7:15 p.m.13 views

CVE-2025-14483

CVE-2025-14483 affects IBM Sterling B2B Integrator and IBM Sterling File Gateway across multiple versions: 6.1.0.0–6.1.2.7_2, 6.2.0.0–6.2.0.5_1, 6.2.1.0–6.2.1.1_1, and 6.2.2.0. The issue is an information disclosure vulnerability where authenticated users can receive sensitive host information in...

6.5CVSS5.7AI score0.00241EPSS
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.8 views

PT-2026-25350

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.1.0.0 through 6.1.2.7 2, 6.2.0.0 through 6.2.0.5 1, 6.2.1.0 through 6.2.1.1 1, and 6.2.2.0 could disclose sensitive host information to authenticated users in responses that could be used in further attacks against the system...

4.3CVSS5.7AI score0.00241EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/27 9:31 p.m.10 views

EUVD-2026-9043

Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to obtain limited information disclosure from the machine where VMware Workstation is installed...

5CVSS5.9AI score0.00156EPSS
Exploits0References2
NVD
NVD
added 2026/02/27 7:16 p.m.11 views

CVE-2026-22716

Out-of-bound write vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administrative privileges on a guest VM to terminate certain Workstation processes...

5CVSS0.00156EPSS
Exploits0References1
CVE
CVE
added 2026/02/27 7:11 p.m.23 views

CVE-2026-22717

CVE-2026-22717 is an out-of-bounds read vulnerability in VMware Workstation

2.7CVSS5.9AI score0.00167EPSS
Exploits0References1
Veracode
Veracode
added 2025/11/13 6:52 a.m.8 views

Improper Input Validation

github.com/opencontainers/runc is vulnerable to improper input validation. The vulnerability is due to insufficient verification of the bind-mount source /dev/null, which allows an attacker to exploit it via arbitrary mount manipulation, leading to host information disclosure, denial of service,...

7.8CVSS8AI score0.0067EPSS
Exploits2References7Affected Software2
OSV
OSV
added 2025/11/06 7:15 p.m.5 views

AZL-70592 CVE-2025-31133 affecting package kubernetes for versions less than 1.30.10-16

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.8CVSS6.8AI score0.0067EPSS
Exploits2References1
Cvelist
Cvelist
added 2025/11/06 6:47 p.m.15 views

CVE-2025-31133 runc container escape via "masked path" abuse due to mount race conditions

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS0.0067EPSS
Exploits2References5
OSV
OSV
added 2025/11/06 6:47 p.m.2 views

CVE-2025-31133 runc container escape via "masked path" abuse due to mount race conditions

runc is a CLI tool for spawning and running containers according to the OCI specification. In versions 1.2.7 and below, 1.3.0-rc.1 through 1.3.1, 1.4.0-rc.1 and 1.4.0-rc.2 files, runc would not perform sufficient verification that the source of the bind-mount i.e., the container's /dev/null was...

7.3CVSS6.9AI score0.0067EPSS
Exploits2References7
CVE
CVE
added 2025/11/06 6:47 p.m.175 views

CVE-2025-31133

CVE-2025-31133 (runc) affects the runc runtime when using certain bind-mount sources, where verification of the source inode for "/dev/null" could be bypassed. Affected versions include 1.2.7 and earlier, 1.3.0-rc.1 through 1.3.1, and 1.4.0-rc.1 and 1.4.0-rc.2. The issue enables an attacker to pe...

7.8CVSS6.3AI score0.0067EPSS
Exploits2References5Affected Software1
Tibco
Tibco
added 2024/11/19 6:46 p.m.18 views

TIBCO Security Advisory: November 19, 2024 - TIBCO API Exchange Gateway - CVE-2024-10514

TIBCO APIX - XML External Entity XXE Injection Vulnerability Original release date: November 19, 2024 Last revised: --- CVE-2024-10514 Source: TIBCO Software Inc. Products Affected TIBCO API Exchange Gateway 2.4.0 and 2.5.0 Component Affected API Exchange Gateway Description The TIBCO API Exchang...

7.3AI score
Exploits0
CNNVD
CNNVD
added 2024/05/01 12:0 a.m.3 views

ZITADEL 安全漏洞

ZITADEL is a modern open source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak built for the age of containers and serverless, open sourced by ZITADEL in Switzerland. A security vulnerability exists in Zitadel that stems from the fact that Zitadel discloses internal database...

5.3CVSS5.4AI score0.00635EPSS
Exploits0References9
CNVD
CNVD
added 2018/06/19 12:0 a.m.6 views

TIBCO Administrator - Enterprise Edition TIBCO Administrator server component external entity injection vulnerability

TIBCO Administrator is an application for deploying TIBCO products from TIBCO Software, USA. The program supports deploying TIBCO products, managing users, monitoring hosts, etc. TIBCO Administrator-Enterprise Edition is its enterprise edition.TIBCO Administrator server is one of the management...

6.8CVSS6.7AI score0.01431EPSS
Exploits0References1
OSV
OSV
added 2018/06/13 1:29 p.m.2 views

CVE-2018-5433

The TIBCO Administrator server component of TIBCO Software Inc.'s TIBCO Administrator - Enterprise Edition, and TIBCO Administrator - Enterprise Edition for z/Linux contains vulnerabilities wherein a malicious user could perform XML external entity expansion XXE attacks to disclose host machine...

6.5CVSS5.7AI score0.01431EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2010/02/07 12:0 a.m.28 views

openSUSE Security Update : libsnmp15 (libsnmp15-1922)

This update of net-snmp fixes the following bugs : - truncated walk of hrSWRunPath bnc565586 - crash when 64-bit counters wrap bnc523553 - unknown host names in snmp traps bnc514333 - sensitive host information disclosure bnc475532, CVE-2008-6123 %NASLMINLEVEL 70300 C Tenable Network Security, In...

5CVSS5AI score0.0292EPSS
Exploits2References7
Rows per page
Query Builder