Lucene search
K

14 matches found

Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.8 views

PT-2026-5672

Memory corruption when calculating oversized partition sizes without proper checks...

6.8CVSS5.3AI score0.00093EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/06/20 12:0 a.m.8 views

The vulnerability of the Apache Tomcat application server arises from the acceptance of input paths as internal paths without verification. This allows attackers to gain unauthorized access to protected information and execute arbitrary code.

The vulnerability of the Apache Tomcat application server lies in the acceptance of input paths as internal paths without verification. Exploiting this vulnerability allows an attacker operating remotely to gain unauthorized access to protected information and execute arbitrary code...

10CVSS7.4AI score0.99945EPSS
Exploits46References12Affected Software4
CNNVD
CNNVD
added 2024/11/19 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel has a security vulnerability that stems from a lack of NOWAIT checks...

4.4CVSS6.5AI score0.00183EPSS
Exploits0References7
Veracode
Veracode
added 2023/06/23 7:50 a.m.15 views

Denial Of Service (DoS)

com.owlike, genson is vulnerable to Denial Of Service DoS. The vulnerability exists due to a lack of nested depth checks, which allows an attacker to cause an application crash...

7.5CVSS6.7AI score0.00732EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/02/25 12:0 a.m.24 views

EulerOS 2.0 SP10 : gd (EulerOS-SA-2022-1203)

According to the versions of the gd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...

6.5CVSS6AI score0.01659EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/09/08 9:15 p.m.34 views

CVE-2021-40812

The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...

6.5CVSS6.4AI score0.01659EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2021/09/08 12:0 a.m.27 views

CVE-2021-40812

The GD Graphics Library aka LibGD through 2.3.2 has an out-of-bounds read because of the lack of certain gdGetBuf and gdPutBuf return value checks...

6.7AI score0.01659EPSS
Exploits0References3
Hacker One
Hacker One
added 2020/10/02 1:48 p.m.41 views

RBKmoney: Apple Pay cryptogram replay and amount tampering

During Apple Pay in-app or on-site payments the device generates a payment cryptogram, which contains a transaction ID, encrypted payment data, etc. This is an example of the cryptogram which the phone passes to the internet acquiring service on api.transferwise.com: "token": "paymentData":...

Exploits0
RedHat Linux
RedHat Linux
added 2020/09/08 9:44 a.m.54 views

Important: Red Hat Security Advisory: Red Hat Process Automation Manager 7.8.1 Security Update

An update is now available for Red Hat Process Automation Manager. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

8.8CVSS7.3AI score0.04094EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2020/07/02 2:31 p.m.61 views

Important: Red Hat Security Advisory: RH-SSO 7.4.1 adapters for Red Hat JBoss Enterprise Application Platform 6

A security update is now available for Red Hat Single Sign-On 7.4.1 adapters for Red Hat JBoss Enterprise Application Platform 6 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed...

8.8CVSS7.3AI score0.02604EPSS
Exploits0References4
Veracode
Veracode
added 2020/01/29 5:37 a.m.18 views

Denial Of Service (DoS)

tensorflow is vulnerable to denial of service DoS. The vulnerability exists due to the lack of checks during conversion of a string in eager mode from Python to a tf.float16 value...

7.5CVSS4.5AI score0.00581EPSS
Exploits1References5Affected Software3
Veracode
Veracode
added 2018/06/06 4:43 a.m.22 views

User Impersonation

storm-core is vulnerable to user impersonation attacks. The vulnerability exists due to the lack of checks on whether the impersonation feature is allowed...

6.5CVSS6.3AI score0.01484EPSS
Exploits2References6Affected Software1
Prion
Prion
added 2017/10/19 8:29 a.m.17 views

Input validation

A vulnerability in the web interface of Cisco Jabber could allow an authenticated, local attacker to retrieve user profile information from the affected software, which could lead to the disclosure of confidential information. The vulnerability is due to a lack of input and validation checks in t...

2.1CVSS5.4AI score0.00357EPSS
Exploits0References3Affected Software2
Cisco
Cisco
added 2015/09/22 4:2 p.m.30 views

Cisco AnyConnect Secure Mobility Client for Windows Privilege Escalation Vulnerability

A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. The vulnerability is due to lack of checks in the code f...

7.2CVSS6.5AI score0.01202EPSS
Exploits3References1Affected Software1
Rows per page
Query Builder