Lucene search
K

153 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-2448

Malicious code in bioql PyPI...

6.1CVSS6.6AI score0.00799EPSS
Exploits0References4
OSV
OSV
added 2025/10/01 7:44 a.m.3 views

CVE-2025-39916 mm/damon/reclaim: avoid divide-by-zero in damon_reclaim_apply_parameters()

In the Linux kernel, the following vulnerability has been resolved: mm/damon/reclaim: avoid divide-by-zero in damonreclaimapplyparameters When creating a new scheme of DAMONRECLAIM, the calculation of 'minageregion' uses 'aggrinterval' as the divisor, which may lead to division-by-zero errors. Fi...

5.5CVSS6.5AI score0.00137EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/08/22 4:36 a.m.9 views

CVE-2025-55706

URL redirection to untrusted site 'Open Redirect' issue exists in Movable Type. If this vulnerability is exploited, an invalid parameter may be inserted into the password reset page, which may lead to redirection to an arbitrary URL...

5.1CVSS7.3AI score0.0019EPSS
Exploits0References1
NVD
NVD
added 2025/08/20 5:15 a.m.4 views

CVE-2025-55706

URL redirection to untrusted site 'Open Redirect' issue exists in Movable Type. If this vulnerability is exploited, an invalid parameter may be inserted into the password reset page, which may lead to redirection to an arbitrary URL...

5.1CVSS0.0019EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/20 4:23 a.m.3 views

CVE-2025-55706

URL redirection to untrusted site 'Open Redirect' issue exists in Movable Type. If this vulnerability is exploited, an invalid parameter may be inserted into the password reset page, which may lead to redirection to an arbitrary URL...

5.1CVSS7.2AI score0.0019EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/20 4:23 a.m.10 views

CVE-2025-55706

URL redirection to untrusted site 'Open Redirect' issue exists in Movable Type. If this vulnerability is exploited, an invalid parameter may be inserted into the password reset page, which may lead to redirection to an arbitrary URL...

5.1CVSS0.0019EPSS
Exploits0References2
CVE
CVE
added 2025/08/20 4:23 a.m.18 views

CVE-2025-55706

Technical details are not publicly available in the provided connected documents. Monitor for updates.

5.1CVSS7.2AI score0.0019EPSS
Exploits0References2
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/08/20 12:0 a.m.19 views

JVN#76729865: Multiple vulnerabilities in Movable Type

Movable Type provided by Six Apart Ltd. contains multiple vulnerabilities listed below. Use of less trusted source(CWE-348) CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N Base Score 6.9 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N Base Score 5.3 CVE-2025-53522 Open...

6.9CVSS7.8AI score0.0019EPSS
Exploits0
CNNVD
CNNVD
added 2025/06/04 12:0 a.m.2 views

Cisco Unified Communications 命令注入漏洞

Cisco Unified Communications is an enterprise call control and session management platform from Cisco that connects people anywhere using any device. A command injection vulnerability exists in Cisco Unified Communications that stems from insufficient validation of command parameters and can be...

6.7CVSS7.8AI score0.00156EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:4 p.m.8 views

CVE-2020-15568

TerraMaster TOS before 4.1.29 has Invalid Parameter Checking that leads to code injection as root. This is a dynamic class method invocation vulnerability in include/exportUser.php, in which an attacker can trigger a call to the exec method with for example OS commands in the opt parameter...

10CVSS9.6AI score0.28495EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 3:38 p.m.7 views

CVE-2020-5779

A flaw in Trading Technologies Messaging 7.1.28.3 ttmd.exe relates to invalid parameter handling when calling strcpys with an invalid parameter i.e., a long src string parameter as a part of processing a type 4 message sent to default TCP RequestPort 10200. It's been observed that ttmd.exe...

7.5CVSS6.8AI score0.01056EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 10:5 p.m.7 views

CVE-2006-6654

The sendmsg function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029, when run on a 64-bit architecture, allows attackers to cause a denial of service kernel panic via an invalid msgcontrollen parameter to the sendit function...

4.3CVSS6.8AI score0.00814EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/16 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly narrowed conversion in acpinfitctl, which could lead to invalid parameter passing...

5.5CVSS6.5AI score0.00174EPSS
Exploits0References8
OSV
OSV
added 2025/03/06 5:15 p.m.1 views

DEBIAN-CVE-2024-58077

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: don't use socpcmret on .prepare callback commit 1f5664351410 "ASoC: lower "no backend DAIs enabled for ... Port" log severity" ignores -EINVAL error message on common socpcmret. It is used from many functions,...

5.5CVSS5.6AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/06/20 1:56 p.m.18 views

CVE-2022-48749

A NULL pointer dereference flaw was found in the Linux kernel. This issue is due to an invalid parameter check in dpusetupdspppcc...

5.5CVSS9.1AI score0.00225EPSS
Exploits0References4
NVD
NVD
added 2024/06/20 12:15 p.m.17 views

CVE-2022-48749

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: invalid parameter check in dpusetupdspppcc The function performs a check on the "ctx" input parameter, however, it is used before the check. Initialize the "base" variable after the sanity check to avoid a possible...

5.5CVSS0.00225EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/06/20 11:13 a.m.13 views

CVE-2022-48756 drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: invalid parameter check in msmdsiphyenable The function performs a check on the "phy" input parameter, however, it is used before the check. Initialize the "dev" variable after the sanity check to avoid a possible NU...

6.7AI score0.0021EPSS
Exploits0References7
OSV
OSV
added 2024/06/20 11:13 a.m.14 views

CVE-2022-48749 drm/msm/dpu: invalid parameter check in dpu_setup_dspp_pcc

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: invalid parameter check in dpusetupdspppcc The function performs a check on the "ctx" input parameter, however, it is used before the check. Initialize the "base" variable after the sanity check to avoid a possible...

5.5CVSS5.8AI score0.00225EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 5:28 a.m.2 views

SUSE CVE-2014-3512

Multiple buffer overflows in crypto/srp/srplib.c in the SRP implementation in OpenSSL 1.0.1 before 1.0.1i allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via an invalid SRP 1 g, 2 A, or 3 B parameter...

7.5CVSS9.2AI score0.7408EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:9 a.m.2 views

SUSE CVE-2019-14858

A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argumentspec with sub parameters marked as nolog, passing an invalid parameter name to the module will cause the task to fail before the nolog options in the sub parameters are processe...

2.3CVSS9AI score0.00427EPSS
Exploits0References7
Rows per page
Query Builder