Lucene search
K

25 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-8418

Malware in sbrugna...

5.3CVSS5.5AI score0.01931EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2004-0263

Malware in sbrugna...

5CVSS6.4AI score0.03485EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-0648

Malware in sbrugna...

2.6CVSS6.4AI score0.00802EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-37173

Malicious code in bioql PyPI...

8.5CVSS6.6AI score0.12341EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/25 12:0 a.m.6 views

PT-2025-26810 · Unknown · Network Printer

Name of the Vulnerable Software and Affected Versions: Brother, FUJIFILM, RICOH, Toshiba Tec, and Konica Minolta Printers affected versions not specified Description: An unauthenticated attacker with access to the HTTP service TCP port 80, HTTPS service TCP port 443, or IPP service TCP port 631 c...

5.3CVSS8.1AI score0.7656EPSS
Exploits0References31
AlpineLinux
AlpineLinux
added 2025/06/11 4:42 p.m.4 views

CVE-2025-4673

Proxy-Authorization and Proxy-Authenticate headers persisted on cross-origin redirects potentially leaking sensitive information...

6.8CVSS7.3AI score0.0056EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 5:9 p.m.6 views

CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

7.5CVSS6.4AI score0.02712EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 10:18 a.m.14 views

CVE-2019-6655

On versions 13.0.0-13.1.0.1, 12.1.0-12.1.4.1, 11.6.1-11.6.4, and 11.5.1-11.5.9, BIG-IP platforms where AVR, ASM, APM, PEM, AFM, and/or AAM is provisioned may leak sensitive data...

5.3CVSS6.8AI score0.0106EPSS
Exploits0References1
CNVD
CNVD
added 2025/04/18 12:0 a.m.8 views

Adobe Animate Out-of-Bounds Read Vulnerability (CNVD-2025-07804)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...

5.5CVSS6.4AI score0.00286EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/22 1:25 p.m.8 views

CVE-2025-0192

A stored Cross-site Scripting XSS vulnerability exists in the latest version of wandb/openui. The vulnerability is present in the edit HTML functionality, where an attacker can inject malicious scripts. When the modified HTML is shared with another user, the XSS payload executes, potentially...

5.4CVSS5.2AI score0.00279EPSS
Exploits0References1
CISA KEV Catalog
CISA KEV Catalog
added 2025/03/10 12:0 a.m.26 views

Ivanti Endpoint Manager (EPM) Absolute Path Traversal Vulnerability

Ivanti Endpoint Manager EPM contains an absolute path traversal vulnerability that allows a remote unauthenticated attacker to leak sensitive information...

9.8CVSS7.2AI score0.89738EPSS
In wildExploits1
RedhatCVE
RedhatCVE
added 2025/02/05 7:58 a.m.7 views

CVE-2024-29900

Electron Packager bundles Electron-based application source code with a renamed Electron executable and supporting files into folders ready for distribution. A random segment of 1-10kb of Node.js heap memory allocated either side of a known buffer will be leaked into the final executable. This...

7.5CVSS6.8AI score0.00633EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/17 12:0 a.m.3 views

Google Pixel 安全漏洞

Google Pixel is a smartphone from the American company Google Google. Google Pixel has a security vulnerability. Attackers can leak sensitive information by exploiting the vulnerability...

4.4CVSS8.9AI score0.00103EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/01/14 5:12 p.m.26 views

CVE-2024-13159

Absolute path traversal in Ivanti EPM before the 2024 January-2025 Security Update and 2022 SU6 January-2025 Security Update allows a remote unauthenticated attacker to leak sensitive information...

9.8CVSS7.1AI score0.99762EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/16 11:23 p.m.26 views

CVE-2024-44125

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15, macOS Sonoma 14.7. A malicious application may be able to leak sensitive user information...

0.00233EPSS
Exploits0References2
NVD
NVD
added 2024/08/06 10:15 p.m.59 views

CVE-2024-38206

An authenticated attacker can bypass Server-Side Request Forgery SSRF protection in Microsoft Copilot Studio to leak sensitive information over a network...

8.5CVSS0.12341EPSS
Exploits0References1
OSV
OSV
added 2024/01/18 5:55 p.m.13 views

USN-6589-1 filezilla vulnerability

Fabian Baeumer, Marcus Brinkmann and Joerg Schwenk discovered that the SSH protocol used in FileZilla is prone to a prefix truncation attack, known as the "Terrapin attack". A remote attacker could use this issue to downgrade or disable some security features and obtain sensitive information...

5.9CVSS6.7AI score0.9378EPSS
Exploits4References2
Vulnrichment
Vulnrichment
added 2023/01/14 12:3 a.m.6 views

CVE-2023-22480 KubeOperator is vulnerable to unauthorized access to system API

KubeOperator is an open source Kubernetes distribution focused on helping enterprises plan, deploy and operate production-level K8s clusters. In KubeOperator versions 3.16.3 and below, API interfaces with unauthorized entities and can leak sensitive information. This vulnerability could be used t...

7.3CVSS8.4AI score0.66768EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2022/07/20 12:0 a.m.4 views

PT-2022-21478 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 12.5 Security Update 2022-005 Catalina is also a fixed version, implying that versions prior to this update are affected. Description: An out-of-bounds read issue was addressed with improved bounds checking. A user in ...

5.9CVSS5.5AI score0.01324EPSS
Exploits0References6
Prion
Prion
added 2021/09/08 3:15 p.m.19 views

Code injection

A logic issue was addressed with improved state management. This issue is fixed in tvOS 14.6, Security Update 2021-004 Mojave, iOS 14.6 and iPadOS 14.6, Security Update 2021-003 Catalina, macOS Big Sur 11.4, watchOS 7.5. A local user may be able to leak sensitive user information...

2.1CVSS5.2AI score0.00297EPSS
Exploits0References6Affected Software6
Rows per page
Query Builder