Lucene search
+L

12 matches found

OSV
OSV
added 2026/05/01 2:14 p.m.2 views

CVE-2026-31749 comedi: ni_atmio16d: Fix invalid clean-up after failed attach

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References11
NVD
NVD
added 2026/02/12 10:16 p.m.12 views

CVE-2026-26185

Directus is a real-time API and App dashboard for managing SQL database content. Before 11.14.1, a timing-based user enumeration vulnerability exists in the password reset functionality. When an invalid reseturl parameter is provided, the response time differs by approximately 500ms between...

5.3CVSS0.00349EPSS
Exploits0References4
OSV
OSV
added 2026/02/12 10:13 p.m.8 views

GHSA-JR94-GJ3H-C8RF Directus Vulnerable to User Enumeration via Password Reset Timing Attack

Summary A timing-based user enumeration vulnerability exists in the password reset functionality. When an invalid reseturl parameter is provided, the response time differs by approximately 500ms between existing and non-existing users, enabling reliable user enumeration. Details The password rese...

5.3CVSS5.9AI score0.00349EPSS
Exploits0References6
CVE
CVE
added 2026/02/12 9:54 p.m.27 views

CVE-2026-26185

Directus before v11.14.1 is affected by a timing-based user enumeration vulnerability in the password reset flow. When an invalid reset_url is supplied, responses differ by about 500ms between existing and non-existing users, enabling enumeration of valid usernames. The issue is fixed in v11.14.1...

5.3CVSS5.7AI score0.00349EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/03 3:18 p.m.7 views

CVE-2022-50976

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References1
NVD
NVD
added 2026/02/02 3:16 p.m.9 views

CVE-2022-50976

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS0.00138EPSS
Exploits0References2
EUVD
EUVD
added 2026/02/02 2:8 p.m.4 views

EUVD-2022-55953

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/02 2:8 p.m.5 views

CVE-2022-50976 Innomic VibroLine Configurator and avibia Configurator allow unintended device reset via USB

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References2
CVE
CVE
added 2026/02/02 2:8 p.m.15 views

CVE-2022-50976

CVE-2022-50976 affects Innomic VibroLine Configurator and avibia Configurator. A local attacker can trigger a full device reset by resetting device passwords with an invalid reset file over USB, per Red Hat/NVD/CVE records. The vulnerability is local, requires no user interaction, and can impact ...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/02 2:8 p.m.5 views

CVE-2022-50976

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References3Affected Software2
CNNVD
CNNVD
added 2026/02/02 12:0 a.m.9 views

Innomic VibroLine Series 安全漏洞

The Innomic VibroLine Series is a professional vibration measurement and analysis system developed by the German company Innomic. The Innomic VibroLine Series has a security vulnerability: local attackers can reset the device’s password using an invalid reset file via USB, resulting in the comple...

7.7CVSS5.8AI score0.00138EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.7 views

PT-2026-5663

A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...

7.7CVSS5.4AI score0.00138EPSS
Exploits0References3
Rows per page
Query Builder