Lucene search
K

802 matches found

RedhatCVE
RedhatCVE
added 2026/05/06 9:50 a.m.20 views

CVE-2026-43064

A flaw was found in the Linux kernel's dmaengine IDXD driver. The workqueue associated with a Data Streaming Accelerator DSA or In-Memory Analytics Accelerator IAA device is not properly released when the object is freed. This resource leak may lead to a denial of service...

5.5CVSS5.8AI score0.00114EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/05 5:17 p.m.6 views

CVE-2026-25243

Redis is an in-memory data structure store. In versions of redis-server up to 8.6.3, the RESTORE command does not properly validate serialized values. An authenticated attacker with permission to execute RESTORE can supply a crafted serialized payload that triggers invalid memory access and may...

8.8CVSS6.2AI score0.02995EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/05/04 12:0 a.m.12 views

nimrc 1.0.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score
Exploits0
GithubExploit
GithubExploit
added 2026/05/03 6:21 p.m.105 views

linux-copy-fail-exploit

CVE-2026-31431 Copy Fail - LPE Exploit PoC !Pythonhttps:...

7.8CVSS6AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/02 2:31 p.m.123 views

linux-copy-fail-exploit

CVE-2026-31431 Copy Fail - LPE Exploit PoC !Pythonhttps:...

7.8CVSS6.3AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/02 8:10 a.m.94 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 "Copy Fail" Proof-of-concept exploit and analy...

7.8CVSS6.1AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/01 5:13 p.m.88 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 — Copy Fail Linux Privilege Escalation Ov...

7.8CVSS6.2AI score0.96267EPSS
Exploits230
GithubExploit
GithubExploit
added 2026/05/01 2:14 p.m.86 views

Exploit for CVE-2026-31431

CVE-2026-31431 Python...

7.8CVSS5.8AI score0.96267EPSS
Exploits230
NVD
NVD
added 2026/04/28 2:16 p.m.7 views

CVE-2026-40550

mpGabinet is vulnerable to Privilege Escalation due to excessive database privileges assigned to the user used by the application. An attacker with access to any running application instance connected to the backend server can extract database credentials from the application’s memory by inspecti...

6.9CVSS0.00121EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/28 1:12 p.m.6 views

CVE-2026-40550

mpGabinet is vulnerable to Privilege Escalation due to excessive database privileges assigned to the user used by the application. An attacker with access to any running application instance connected to the backend server can extract database credentials from the application’s memory by inspecti...

6.9CVSS5.3AI score0.00121EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2026/04/16 5:52 p.m.11 views

Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic

Cybersecurity researchers have warned of an active malicious campaign that's targeting the workforce in the Czech Republic with a previously undocumented botnet dubbed PowMix since at least December 2025. "PowMix employs randomized command-and-control C2 beaconing intervals, rather than persisten...

6.5AI score
Exploits0
OSV
OSV
added 2026/04/14 8:5 p.m.8 views

GHSA-4P64-V8F5-R2GX Multiple security fixes in justhtml

Summary justhtml 1.16.0 fixes multiple security issues in sanitization, serialization, and programmatic DOM handling. Most of these issues affected one of these advanced paths rather than ordinary parsed HTML with the default safe settings: - programmatic DOM input to sanitize or sanitizedom -...

5.3CVSS5.9AI score
Exploits0References2
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.7 views

SAP ERP和SAP S/4HANA 安全漏洞

SAP ERP and SAP S/4HANA are both products of the German company SAP. SAP ERP is a suite of software used for ERP management. SAP S/4HANA is an enterprise resource management software based on the SAP HANA in-memory database system. There are security vulnerabilities in SAP ERP and SAP S/4HANA...

7.1CVSS5.9AI score0.00221EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2026/04/13 7:18 a.m.15 views

K000160730: Microsoft semantic kernel Python SDK vulnerability CVE-2026-26030

Security Advisory Description Semantic Kernel, Microsoft's semantic kernel Python SDK, has a remote code execution vulnerability in versions prior to 1.39.4, specifically within the InMemoryVectorStore filter functionality. The problem has been fixed in version python-1.39.4. Users should upgrade...

9.9CVSS6.3AI score0.02914EPSS
Exploits2
Github Security Blog
Github Security Blog
added 2026/04/10 9:0 p.m.10 views

Juju: In-Memory Token Store for Discharge Tokens Lacks Concurrency Safety and Persistence

Summary The localLoginHandlers struct in the Juju API server maintains an in-memory map to store discharge tokens following successful local authentication. This map is accessed concurrently from multiple HTTP handler goroutines without any synchronization primitive protecting it. The absence of ...

6.4CVSS5.8AI score0.00243EPSS
Exploits1References5Affected Software1
OSV
OSV
added 2026/04/10 9:0 p.m.11 views

GHSA-7M55-2HR4-PW78 Juju: In-Memory Token Store for Discharge Tokens Lacks Concurrency Safety and Persistence

Summary The localLoginHandlers struct in the Juju API server maintains an in-memory map to store discharge tokens following successful local authentication. This map is accessed concurrently from multiple HTTP handler goroutines without any synchronization primitive protecting it. The absence of ...

6.4CVSS5.8AI score0.00243EPSS
Exploits1References5
NVD
NVD
added 2026/04/10 5:17 p.m.7 views

CVE-2026-35597

Vikunja is an open-source self-hosted task management platform. Prior to 2.3.0, the TOTP failed-attempt lockout mechanism is non-functional due to a database transaction handling bug. When a TOTP validation fails, the login handler in pkg/routes/api/v1/login.go calls HandleFailedTOTPAuth and then...

7.5CVSS0.00296EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/04/10 12:0 a.m.9 views

PT-2026-31948

Name of the Vulnerable Software and Affected Versions Vikunja versions prior to 2.3.0 Description A flaw exists in Vikunja before version 2.3.0 related to the Time-based One-Time Password TOTP failed-attempt lockout mechanism. A database transaction handling bug prevents the account lockout from...

7.5CVSS5.8AI score0.00296EPSS
Exploits1References9
Github Security Blog
Github Security Blog
added 2026/03/31 11:41 p.m.8 views

openssl-encrypt: TOTP rate limiter is in-memory only — not shared across workers, lost on restart

Severity: HIGH Summary The TOTP brute-force rate limiter in opensslencryptserver/modules/pepper/totp.py at lines 47-98 uses an in-memory defaultdictlist as a class variable. Affected Code python class TOTPRateLimiter: def initself, ...: self.attempts: Dictstr, Listdatetime = defaultdictlist...

5.9AI score
Exploits0References3Affected Software1
OSV
OSV
added 2026/03/31 11:41 p.m.6 views

GHSA-H45M-MGCP-Q388 openssl-encrypt: TOTP rate limiter is in-memory only — not shared across workers, lost on restart

Severity: HIGH Summary The TOTP brute-force rate limiter in opensslencryptserver/modules/pepper/totp.py at lines 47-98 uses an in-memory defaultdictlist as a class variable. Affected Code python class TOTPRateLimiter: def initself, ...: self.attempts: Dictstr, Listdatetime = defaultdictlist...

9.1CVSS5.9AI score
Exploits0References3
Rows per page
Query Builder