Lucene search
K

301 matches found

EUVD
EUVD
added 2026/05/15 1:52 a.m.10 views

EUVD-2025-209868

An out of bounds read within the AMD Platform Management Framework PMF could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality...

5.8CVSS5.9AI score0.00104EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 5:18 p.m.28 views

CVE-2026-2273

CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exist that could cause execution of untrusted commands on the engineering workstation which could result in a limited compromise of the workstation and a potential loss of Confidentiality, Integrity and Availability of...

7.2CVSS0.00227EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2026/02/10 12:0 a.m.3 views

The vulnerability of the ieee80211_probe_client() function in the net/mac80211/cfg.c module of the mac80211 stack in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ieee80211probeclient function in the net/mac80211/cfg.c module of the mac80211 stack in the Linux operating system is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7CVSS6AI score0.00145EPSS
Exploits0References11Affected Software4
Cvelist
Cvelist
added 2026/01/13 1:16 a.m.27 views

CVE-2026-0514 Cross-Site Scripting (XSS) vulnerability in SAP Business Connector

Due to a Cross-Site Scripting XSS vulnerability in SAP Business Connector, an unauthenticated attacker could craft a malicious link. When an unsuspecting user clicks this link, the user may be redirected to a site controlled by the attacker. Successful exploitation could allow the attacker to...

6.1CVSS0.00168EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-33209

Malicious code in bioql PyPI...

6.1CVSS6.8AI score0.00788EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-36486

Malicious code in bioql PyPI...

4.1CVSS6.6AI score0.00302EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-35105

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00393EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-20348

Malicious code in bioql PyPI...

4.9CVSS6.4AI score0.00298EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-39172

Malicious code in bioql PyPI...

4.3CVSS5.1AI score0.00262EPSS
Exploits0References2
Redos
Redos
added 2025/09/11 12:0 a.m.7 views

ROS-20250911-07

A vulnerability in the Apache Commons Compress archiver is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to affect the integrity, availability, and confidentiality of protected information. confidentiality of...

8.1CVSS6.4AI score0.00441EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.5 views

The vulnerability of the ELMED MIS platform, due to deficiencies in access control mechanisms, allows unauthorized access by attackers, thereby compromising the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ELMED MIS platform is related to deficiencies in access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its confidentiality, integrity, and accessibility...

9.9CVSS5.5AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/08/04 12:0 a.m.9 views

The vulnerability of the g_F_n_GenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras allows a intruder to compromise the confidentiality of the protected information.

The vulnerability of the gFnGenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras is related to the use of fixed password encoding. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality of the information being protected...

3.7CVSS5.4AI score0.00866EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/07/08 12:37 a.m.22 views

CVE-2025-42974

CVE-2025-42974 involves SAP NetWeaver/ABAP Platform (SDCCN) with a missing authorization check that allows an authenticated non-administrative user to call a remote-enabled function module. The resulting exposure is limited to confidentiality (low impact); there is no reported impact on integrity...

4.3CVSS6.1AI score0.0023EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/06/19 12:0 a.m.13 views

The vulnerability of the HPIMSGX__init() function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the HPIMSGXinit function in the sound/pci/asihpi/hpimsgx.c module of the asihpi component of the /sound/pci/asihpi/hpimsgx.c kernel of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS6.8AI score0.0025EPSS
Exploits0References36Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/06/10 12:0 a.m.6 views

The vulnerability of the formSetSafeWanWebMan() function (/goform/SetRemoteWebCfg) in the Tenda AC15 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetSafeWanWebMan function /goform/SetRemoteWebCfg in the Tenda AC15 router software exists because the operation is performed outside the buffer in memory when processing the remoteIp parameter. Exploiting this vulnerability could allow a malicious actor to compromise...

9CVSS7.9AI score0.00776EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/25 12:0 a.m.11 views

The vulnerability of the web_acl_mgmt_Rules_Edit_postcontains() function in PLANET Technology’s microcontroller software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the webaclmgmtRulesEditpostcontains function of the PLANET Technology microprogramming device is related to the issue of the operation exceeding the buffer boundaries in memory when processing the byruleEditName parameter. Exploitation of this vulnerability could allow an...

10CVSS5.7AI score0.00453EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/25 12:0 a.m.11 views

The vulnerability of the web_radiusSrv_post() function in PLANET Technology’s microcontroller software allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the webradiusSrvpost function in PLANET Technology’s microcontroller software stems from the operation of the function beyond the buffer boundaries in memory when processing the radIpkey parameter. Exploiting this vulnerability could allow an attacker to compromise the...

10CVSS5.6AI score0.00453EPSS
Exploits1References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 1:46 a.m.10 views

CVE-2023-29050

The optional "LDAP contacts provider" could be abused by privileged users to inject LDAP filter strings that allow to access content outside of the intended hierarchy. Unauthorized users could break confidentiality of information in the directory and potentially cause high load on the directory...

9.6CVSS6.6AI score0.01668EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.6 views

The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems allows a intruder to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the SSH-server software solution for monitoring the status of B&R APROL industrial systems is related to incomplete filtering of specific elements. Exploiting this vulnerability could allow an intruder to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS5.5AI score0.00138EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/06 12:0 a.m.6 views

The vulnerability of the PCMan FTP Server relates to the occurrence of operations beyond the buffer boundaries in memory. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the PCMan FTP Server relates to the execution of operations beyond the buffer boundaries in memory when processing the “lcd” parameter. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.5CVSS7.6AI score0.00612EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder