Lucene search
K

61 matches found

RedHat Linux
RedHat Linux
added 4 days ago7 views

Important: Red Hat Security Advisory: Red Hat Ceph Storage

A new version of Red Hat build of Ceph Storage has been released The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 7.1. This release updates to the latest version...

8.9CVSS6.7AI score0.02667EPSS
Exploits4References13
NVD
NVD
added 2026/06/15 12:16 p.m.14 views

CVE-2026-5482

Responsive FileManager's allows an unauthenticated attacker to upload files of any type and extension without restriction using dialog.php endpoint, leading to Remote Code Execution. This project is unmaintained at the time of CVE assignment. The vulnerability was found in the latest release 9.14...

9.3CVSS0.00445EPSS
Exploits0References2
Atlassian
Atlassian
added 2026/06/03 4:30 p.m.7 views

Injection axios Dependency in Jira Service Management Data Center

This is a vulnerability in a non-Atlassian dependency. Atlassian's application of this dependency presents a lower, non-critical assessed risk. This Critical severity Injection vulnerability was introduced in versions 5.17.2, 10.3.12, 11.1.0, 11.2.0, and 11.3.0 of Jira Service Management Data...

9.1CVSS5.3AI score0.00535EPSS
Exploits1
Github Security Blog
Github Security Blog
added 2026/05/13 3:33 p.m.11 views

Anchor: `InterfaceAccount` allows account substitution between unexpected types

Impact Any uses of InterfaceAccount allows another unexpected account type to be passed, after https://github.com/solana-foundation/anchor/pull/3837 disabled discriminator checking for this type. The bug was originally reported and fixed in https://github.com/solana-foundation/anchor/pull/4139, s...

5.8AI score
Exploits0References7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 2:25 p.m.8 views

Security Bulletin: Vulnerability in Axios affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in Axios has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerability...

7.5CVSS7AI score0.02591EPSS
Exploits1Affected Software2
Fedora
Fedora
added 2026/05/03 1:18 a.m.25 views

[SECURITY] Fedora 43 Update: insight-18.0.50.20260306-3.fc43

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...

7.8CVSS5.8AI score0.00171EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/16 5:11 a.m.6 views

CVE-2026-22618

A security misconfiguration was identified in Eaton Intelligent Power Protector IPP, where an HTTP response header was set with an insecure attribute, potentially exposing users to web‑based attacks. This security issue has been fixed in the latest version of Eaton IPP software which is available...

5.9CVSS5.7AI score0.00233EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/28 12:0 a.m.9 views

PT-2026-28789

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /pms image proxy endpoint accepts a user-supplied img parameter and forwards it to Plex Media Server's /photo/:/ transcode transcoder without authentication and without restricting the sche...

4CVSS5.8AI score0.00277EPSS
Exploits1References6
OSV
OSV
added 2026/03/27 10:22 p.m.4 views

GHSA-MVM6-F9R3-FGFX AWS SDK for .NET: Improper escaping of special characters in CloudFront policy document construction

Summary This notification is related to the CloudFront signing utilities in the AWS SDK for .NET, which are used to generate Amazon CloudFront signed URLs and signed cookies. A defense-in-depth enhancement has been implemented to improve handling of special characters, such as double quotes and...

7.7CVSS5.8AI score
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/24 10:0 a.m.46 views

Important: Red Hat Security Advisory: Red Hat Ceph Storage

A new version of Red Hat build of Ceph Storage has been released The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 8.1. This release updates to the latest version...

8.4CVSS6.8AI score0.00955EPSS
Exploits4References16
NVD
NVD
added 2026/03/10 6:18 p.m.2 views

CVE-2026-22614

The encryption mechanism used in Eaton's EasySoft project file was insecure and susceptible to brute force attacks, an attacker with access to this file and the local host machine could potentially read the sensitive information stored and tamper with the project file. This security issue has bee...

6.1CVSS0.00082EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2026/02/17 12:10 p.m.9 views

Security Bulletin: IBM Sterling Secure Proxy is vulnerable to multiple issues

Summary Multiple vulnerabilities affect IBM Sterling Secure Proxy and are addressed in the latest release and fixpack Vulnerability Details CVEID:CVE-2025-8885 DESCRIPTION: Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcprov on All...

7.5CVSS5.7AI score0.01099EPSS
Exploits1Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/16 12:56 p.m.8 views

Important: Red Hat Security Advisory: Red Hat Ceph Storage

A new version of Red Hat build of Ceph Storage has been released The Red Hat Storage Ceph container images are based on the latest ubi9 base image and Ceph 8.1. This release updates to the latest version...

9.4CVSS7AI score0.04087EPSS
Exploits7References20
ATTACKERKB
ATTACKERKB
added 2026/02/12 4:34 p.m.3 views

CVE-2025-54756

BrightSign players running BrightSign OS series 4 prior to v8.5.53.1 or series 5 prior to v9.0.166 use a default password that is guessable with knowledge of the device information. The latest release fixes this issue for new installations; users of old installations are encouraged to change all...

8.6CVSS5.5AI score0.00126EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.5 views

PT-2026-7862

Name of the Vulnerable Software and Affected Versions BrightSign players versions prior to 8.5.53.1 series 4 BrightSign players versions prior to 9.0.166 series 5 Description BrightSign players utilize a default password that can be easily guessed if device information is known. This allows...

8.6CVSS5.4AI score0.00126EPSS
Exploits0References7
Nvidia
Nvidia
added 2025/12/02 12:0 a.m.7 views

Security Bulletin: NVIDIA Triton Inference Server - December 2025

NVIDIA has released a software update for NVIDIA Triton Inference Server to address the issue disclosed in this bulletin. To protect your system, install the latest release from the Triton Inference Server Releases page on GitHub, and view the Secure Deployment Considerations Guide. Go to NVIDIA...

7.5CVSS6.9AI score0.00857EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/30 12:0 a.m.8 views

PT-2025-44522

Name of the Vulnerable Software and Affected Versions Nagios XI versions prior to 2024R2 Description Nagios XI versions prior to 2024R2 have a command injection issue in the WinRM plugin. A lack of proper validation of user-supplied parameters allows an authenticated administrator to inject shell...

9.4CVSS7.6AI score0.04188EPSS
Exploits0References9
Veracode
Veracode
added 2025/10/22 3:18 a.m.9 views

Malware Injection

prebid-universal-creative is vulnerable to malware injection. The vulnerability is due to the inclusion of crypto-related malicious code and the latest release, which allows an attacker to execute unauthorized cryptocurrency-related operations on affected systems...

9.3CVSS7.5AI score0.00312EPSS
Exploits0References4Affected Software1
Nvidia
Nvidia
added 2025/09/23 12:0 a.m.7 views

Security Bulletin: NVIDIA CUDA Toolkit - September 2025

NVIDIA has released a software update for NVIDIA® CUDA® Toolkit. To protect your system, download and install the latest release from the CUDA Toolkit Downloads page. Go to NVIDIA Product Security...

7.8CVSS7AI score0.00306EPSS
Exploits1Affected Software2
Amazon
Amazon
added 2025/06/10 12:0 a.m.4 views

Medium: cuda-compiler-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

7.8CVSS8AI score0.00263EPSS
Exploits1
Rows per page
Query Builder