Lucene search
K

10068 matches found

Vulnrichment
Vulnrichment
added 2025/08/08 4:23 p.m.5 views

CVE-2025-8393 Dreame Technology iOS and Android Mobile Applications Improper Certificate Validation

A TLS vulnerability exists in the phone application used to manage a connected device. The phone application accepts self-signed certificates when establishing TLS communication which may result in man-in-the-middle attacks on untrusted networks. Captured communications may include user credentia...

8.5CVSS6.5AI score0.00109EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/08 3:18 p.m.16 views

CVE-2025-2028

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs...

6.5CVSS6.4AI score0.00199EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.5 views

PT-2025-32374 · Unknown · Phone Application

Name of the Vulnerable Software and Affected Versions: Phone application affected versions not specified Description: A TLS vulnerability exists in the phone application used to manage a connected device. The application accepts self-signed certificates when establishing TLS communication,...

8.5CVSS6.3AI score0.00109EPSS
Exploits0References7
Amazon
Amazon
added 2025/08/08 12:0 a.m.5 views

Important: java-1.8.0-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15,...

8.1CVSS6.4AI score0.01058EPSS
Exploits1
Amazon
Amazon
added 2025/08/08 12:0 a.m.8 views

Important: java-11-amazon-corretto

Issue Overview: Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: 2D. Supported versions that are affected are Oracle Java SE: 8u451, 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15,...

8.6CVSS6.9AI score0.01058EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2017-7806

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability can occur when the layer manager is freed too early when rendering specific SVG content, resulting in a potentially exploitable...

7.5CVSS8AI score0.02025EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-3564

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as critical was found in Linux Kernel. Affected by this vulnerability is the function l2capreassemblesdu of the file...

7.1CVSS6.2AI score0.0129EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-53204

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: phy: realtek: usb: fix NULL deref in rtkusb3phyprobe In rtkusb3phyprobe devmkzalloc may retu...

5.5CVSS6.1AI score0.00212EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.9 views

net: phy: mscc: Fix memory leak when using one step timestamping

...

5.5CVSS7AI score0.00145EPSS
Exploits0
ICS
ICS
added 2025/08/07 6:0 a.m.38 views

Dreame Technology iOS and Android Mobile Applications (Update A)

RISK EVALUATION Successful exploitation of this vulnerability could result in unauthorized information disclosure. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all control...

8.5CVSS5.8AI score0.00109EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-1056

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Linux, all versions, contains a vulnerability in the kernel mode layer nvidia.ko in which it does not completely honor operating...

7.1CVSS6.8AI score0.01777EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-6859

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free condition affected TLS socket creation when under memory pressure. This vulnerability affects Firefox ESR 115.6, Thunderbird 115.6, and Firefox...

8.8CVSS8.2AI score0.01092EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2018-8034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The host name verification when using TLS with the WebSocket client was missing. It is now enabled by default. Versions Affected: Apache Tomcat 9.0.0.M1 to 9.0....

7.5CVSS7.5AI score0.213EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-34677

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause an integer to be...

7.1CVSS6.8AI score0.00286EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-6267

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite...

5.5CVSS6.2AI score0.00359EPSS
Exploits0References2
OSV
OSV
added 2025/08/06 3:15 p.m.4 views

CVE-2025-2028

Lack of TLS validation when downloading a CSV file including mapping from IPs to countries used ONLY for displaying country flags in logs...

5.3CVSS5.8AI score0.00199EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/06 12:0 a.m.3 views

Check Point Management Log Server 安全漏洞

Check Point Management Log Server is a log server from Check Point Israel. A security vulnerability exists in Check Point Management Log Server that stems from a lack of TLS authentication when downloading CSV files...

6.5CVSS6.9AI score0.00199EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-0181

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel mode layer handler, where memory permissions are not correctly checked, whi...

7.1CVSS7.2AI score0.00206EPSS
Exploits0References2
OSV
OSV
added 2025/08/05 3:18 p.m.8 views

USN-7686-1 linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.4AI score0.01483EPSS
Exploits3References152
OSV
OSV
added 2025/08/05 3:15 p.m.8 views

CVE-2025-44964

A lack of SSL certificate validation in BlueStacks v5.20 allows attackers to execute a man-it-the-middle attack and obtain sensitive information...

3.9CVSS5.9AI score0.0011EPSS
Exploits1References2
Rows per page
Query Builder