Lucene search
+L

169 matches found

Positive Technologies
Positive Technologies
added 2025/11/27 12:0 a.m.8 views

PT-2025-48284

An issue was discovered in Logpoint before 7.7.0. An improperly configured access control policy exposes sensitive Logpoint internal service Redis information to li-admin users. This can lead to privilege escalation...

6.9CVSS6.7AI score0.00264EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/12 4:47 p.m.3 views

Malicious code in masako-males-li (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fec5a98d268f64cb646ae0435e664e728379913010e3629993bd972d94fdce30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/12 4:47 p.m.1 views

MAL-2025-160154 Malicious code in masako-males-li (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fec5a98d268f64cb646ae0435e664e728379913010e3629993bd972d94fdce30 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-0796

Malware in sbrugna...

7.5CVSS6.4AI score0.01051EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-1299

Malware in sbrugna...

6.8CVSS6.4AI score0.01249EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2006-1988

Malware in sbrugna...

5CVSS6.4AI score0.01848EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-4244

Malicious code in bioql PyPI...

6.9CVSS6.6AI score0.00368EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/19 9:26 p.m.10 views

CVE-2025-7977

Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.5AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/19 9:26 p.m.8 views

CVE-2025-7993

Ashlar-Vellum Cobalt LI File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS7.5AI score0.002EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/09/19 9:26 p.m.11 views

CVE-2025-8000

Ashlar-Vellum Cobalt LI File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS7.6AI score0.00189EPSS
Exploits0References1
CNVD
CNVD
added 2025/09/19 12:0 a.m.7 views

Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22939)

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

7.8CVSS7.4AI score0.00203EPSS
Exploits0References1
CNVD
CNVD
added 2025/09/19 12:0 a.m.3 views

Ashlar-Vellum Cobalt Type Obfuscation Vulnerability (CNVD-2025-23022)

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. A type confusion vulnerability exists in Ashlar-Vellum Cobalt,...

7.8CVSS8AI score0.00189EPSS
Exploits0References1
NVD
NVD
added 2025/09/17 9:15 p.m.5 views

CVE-2025-8000

Ashlar-Vellum Cobalt LI File Parsing Type Confusion Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS0.00189EPSS
Exploits0References1
OSV
OSV
added 2025/09/17 9:15 p.m.5 views

CVE-2025-7993

Ashlar-Vellum Cobalt LI File Parsing Use-After-Free Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must visit...

7.8CVSS6.3AI score0.002EPSS
Exploits0References1
NVD
NVD
added 2025/09/17 9:15 p.m.31 views

CVE-2025-7982

Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must vis...

7.8CVSS0.00203EPSS
Exploits0References1
OSV
OSV
added 2025/09/17 9:15 p.m.2 views

CVE-2025-7977

Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS6.3AI score0.00203EPSS
Exploits0References1
NVD
NVD
added 2025/09/17 9:15 p.m.6 views

CVE-2025-7977

Ashlar-Vellum Cobalt LI File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS0.00203EPSS
Exploits0References1
CVE
CVE
added 2025/09/17 8:53 p.m.18 views

CVE-2025-7993

CVE-2025-7993 affects Ashlar-Vellum Cobalt LI File Parsing and is a Use-After-Free remote code execution vulnerability. The flaw arises in LI file parsing where the code does not validate an object's existence before performing operations, allowing an attacker to execute code in the process conte...

7.8CVSS7.2AI score0.002EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/09/17 8:53 p.m.20 views

CVE-2025-8000

Ashlar-Vellum Cobalt Li-file parsing is affected by a type-confusion vulnerability caused by insufficient validation of user-supplied data. The flaw can let an attacker execute code in the context of the current process after the target opens a malicious LI file or visits a malicious page, with u...

7.8CVSS7.2AI score0.00189EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/09/17 8:51 p.m.8 views

CVE-2025-7982 Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability

Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Ashlar-Vellum Cobalt. User interaction is required to exploit this vulnerability in that the target must vis...

7.8CVSS7.9AI score0.00203EPSS
Exploits0References1
Rows per page
Query Builder