Lucene search
K

2881 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:20 p.m.8 views

CVE-2022-20341

In ConnectivityService, there is a possible bypass of network permissions due to a missing permission check. This could lead to local information disclosure of tethering interfaces with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

5.5CVSS6.2AI score0.0009EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:4 p.m.8 views

CVE-2021-37206

A vulnerability has been identified in SIPROTEC 5 relays with CPU variants CP050 All versions V8.80, SIPROTEC 5 relays with CPU variants CP100 All versions V8.80, SIPROTEC 5 relays with CPU variants CP300 All versions V8.80. Received webpackets are not properly processed. An unauthenticated remot...

7.5CVSS6.8AI score0.01387EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:38 p.m.8 views

CVE-2021-30298

Possible out of bound access due to improper validation of item size and DIAG memory pools data while switching between USB and PCIE interface in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wire...

7.8CVSS7.2AI score0.00144EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:14 p.m.8 views

CVE-2021-22403

There is a vulnerability of hijacking unverified providers in Huawei Smartphone.Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands...

10CVSS7.1AI score0.00888EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:31 p.m.11 views

CVE-2021-30266

Possible use after free due to improper memory validation when initializing new interface via Interface add command in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired...

6.7CVSS7.5AI score0.0017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:34 p.m.9 views

CVE-2020-26110

cPanel before 88.0.13 allows self XSS via DNS Zone Manager DNSSEC interfaces SEC-564...

6.1CVSS5.9AI score0.00782EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.10 views

CVE-2020-14126

Information leakage vulnerability exists in the Mi Sound APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information...

7.5CVSS6.6AI score0.00618EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.7 views

CVE-2020-14114

information leakage vulnerability exists in the Xiaomi SmartHome APP. This vulnerability is caused by illegal calls of some sensitive JS interfaces, which can be exploited by attackers to leak sensitive information...

7.5CVSS6.4AI score0.00618EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.7 views

CVE-2020-14130

Some js interfaces in the Xiaomi community were exposed, causing sensitive functions to be maliciously called on Xiaomi community app Affected Version 3.0.210809...

5.3CVSS6.8AI score0.00685EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 3:43 p.m.9 views

CVE-2020-5881

On versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when the BIG-IP Virtual Edition VE is configured with VLAN groups and there are devices configured with OSPF connected to it, the Network Device Abstraction Layer NDAL Interfaces can lock up and in turn disrupting the communicatio...

7.5CVSS6.9AI score0.01276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:38 a.m.8 views

CVE-2017-18472

cPanel before 62.0.4 allows reflected XSS in reset-password interfaces SEC-198...

6.1CVSS6.1AI score0.00647EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/05/20 12:0 a.m.8 views

The vulnerability of the AES-128-CCM encryption algorithm in the operating system PAN-OS of network interfaces from Palo Alto Networks, including models PA-7500, PA 5400, PA 5400f, PA 3400, PA 1400, and PA 400, allows attackers to disclose confidential information.

The vulnerability of the AES-128-CCM encryption algorithm in the networking interfaces of the PAN-OS operating system of Palo Alto Networks’ devices such as PA-7500, PA 5400, PA 5400f, PA 3400, PA 1400, and PA 400 relates to the transmission of confidential information in plaintext. Exploiting th...

5.5CVSS5.4AI score0.00129EPSS
Exploits0References2Affected Software1
Akamai Blog
Akamai Blog
added 2025/05/13 10:20 a.m.5 views

Introducing Linode Interfaces: Better Network Management (Open Beta)

Join the beta for Linode Interfaces, a new network management tool offering clearer configurations, better security, and smarter routing...

7AI score
Exploits0
AlmaLinux
AlmaLinux
added 2025/05/13 12:0 a.m.6 views

Moderate: iptraf-ng security update

IPTraf-ng is a console-based network monitoring utility which includes an IP traffic monitor, a TCP and UDP service monitor, and a LAN statistics module. It supports Ethernet, FDDI, ISDN, SLIP, PPP, and loopback interfaces as well as the built-in raw socket interface of the Linux kernel. Security...

7.5CVSS7.5AI score0.00727EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2025/05/09 4:55 a.m.5 views

SUSE CVE-2022-49844

In the Linux kernel, the following vulnerability has been resolved: can: dev: fix skb drop check In commit a6d190f8c767 "can: skb: drop tx skb if in listen only mode" the priv-ctrlmode element is read even on virtual CAN interfaces that do not create the struct canpriv at startup. This...

7.1CVSS6.2AI score0.00153EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/05/09 12:0 a.m.7 views

The software of the centralized backup and disaster recovery system of Dell PowerProtect Data Manager is vulnerable due to errors in the use of privileged application programming interfaces (APIs). This vulnerability allows a malicious individual to escalate their privileges.

The vulnerability of the software for centralized backup and disaster recovery management in Dell PowerProtect Data Manager is related to errors when privileged application programming interfaces are used. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS5.5AI score0.00122EPSS
Exploits0References4Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2025/05/09 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-57049

A vulnerability in the TP-Link Archer c20 router with firmware version V6.6230412 and earlier permits unauthorized individuals to bypass the authentication of some interfaces under the /cgi directory. When adding Referer: http://tplinkwifi.net to the the request, it will be recognized as passing...

9.8CVSS7.3AI score0.03211EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/05/07 12:0 a.m.5 views

SAMSUNG SMR 安全漏洞

SAMSUNG SMR is a system patch package from the South Korean company Samsung SAMSUNG. It provides patches for Samsung mobile applications. SAMSUNG SMR suffers from a security vulnerability that stems from mishandling of insufficient privileges, which could lead to the use of privileged APIs by a...

4CVSS6.3AI score0.00111EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.3 views

Bind Network Interfaces to the Correct Zones

Different filtering policies can be configured for different firewall zones. If the server network is complex and has multiple interfaces that provide different service functions, it is recommended that interfaces be configured in different zones and different firewall policies be configured. For...

6.8AI score
Exploits0References2
OpenVAS
OpenVAS
added 2025/05/07 12:0 a.m.1 views

Configure the nftables Policies for Loopback Properly

The loopback address 127.0.0.0/8 is a special address on a server. It is irrelevant to NICs and is mainly used for the inter-process communication of a local device. Packets with the source address 127.0.0.0/8 from NICs should be discarded. If policies related to the loopback address are improper...

6.8AI score
Exploits0References2
Rows per page
Query Builder