Lucene search
+L

1186 matches found

BDU FSTEC
BDU FSTEC
added 2026/07/07 12:0 a.m.6 views

The vulnerability of the tcf_ife_dump() function in the net/sched/act_ife.c module of the network/sched/control subsystem of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tcfifedump function in the net/sched/actife.c module of the net/sched subsystem of the Linux operating system’s kernel is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.2AI score0.00189EPSS
Exploits0References13Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/26 12:0 a.m.7 views

The vulnerability of the net/batman-adv/bat_iv_ogm.c module in the Linux operating system allows a hacker to trigger a system failure during maintenance operations.

The vulnerability of the net/batman-adv/bativogm.c module in the Linux operating system is related to incorrect calculations of buffer size. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.8CVSS6.1AI score0.00121EPSS
Exploits0References13Affected Software2
EUVD
EUVD
added 2026/06/13 12:34 a.m.13 views

EUVD-2025-210125

Uncontrolled recursion vulnerability in Avast Antivirus when scanning a malformed Windows PE file may allow Denial-of-Service of the antivirus process. This issue affects Avast Antivirus, AVG Antivirus, Norton Antivirus, Avast One, and Avast Business Antivirus on Windows, macOS, and Linux for vir...

5.5CVSS5.3AI score0.00111EPSS
Exploits0References2
Redos
Redos
added 2026/06/11 12:0 a.m.11 views

ROS-20260611-73-0039

The vulnerability of the Linux operating system’s network protocol implementation is related to the repeated release of memory. Exploiting this vulnerability can allow an attacker to increase their privileges and cause service interruptions...

7.8CVSS5.3AI score0.00269EPSS
Exploits3
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.11 views

Microsoft ASP.NET Core 安全漏洞

Microsoft ASP.NET Core is a cross-platform open-source framework developed by Microsoft. This framework is used to build cloud-based applications such as web applications, IoT applications, and mobile backends. There are security vulnerabilities in Microsoft ASP.NET Core. Attackers can exploit...

7.5CVSS5.8AI score0.0243EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/05/08 12:0 a.m.4 views

The vulnerability of the espintcp_close() function in the Linux operating system allows a hacker to execute arbitrary code.

The vulnerability of the espintcpclose function in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.8CVSS6AI score0.00101EPSS
Exploits0References11Affected Software5
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43060

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftct: drop pending enqueued packets on removal Packets sitting in nfqueue might hold a reference to: - templates that specify the conntrack zone,...

7.8CVSS6AI score0.0012EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2026/04/30 1:44 p.m.87 views

ctf-scripts

CTF Scripts Kumpulan script otomatisasi dan template eksploit...

5.4AI score
Exploits0
EUVD
EUVD
added 2026/04/23 12:31 a.m.6 views

EUVD-2026-25125

IBM Db2 11.5.0 through 11.5.9, and 12.1.0 through 12.1.4 for Linux, UNIX and Windows includes Db2 Connect Server could allow an authenticated user to cause a denial of service due to improper neutralization of special elements in data query logic...

6.5CVSS5.8AI score0.00328EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/06 5:51 p.m.2 views

CVE-2026-35175

Ajenti is a Linux and BSD modular server admin panel. Prior to 2.2.15, an authenticated user using the authusers plugin authentication method could install a custom package even if this user is not superuser. This vulnerability is fixed in 2.2.15...

7.2CVSS5.9AI score0.00266EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/04/03 12:0 a.m.3 views

The vulnerability of the nilfs_segctor_thread() function in the fs/nilfs2/segment.c file of the NILFS2 file system of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the nilfssegctorthread function in the fs/nilfs2/segment.c file of the NILFS2 file system in the Linux operating system is related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00139EPSS
Exploits0References19Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/04/03 12:0 a.m.6 views

The vulnerability of the arch_stack_walk_user_common() function in the arch/s390/kernel/stacktrace.c module of the S390 platform support for the Linux operating system allows a malicious attacker to trigger a service failure.

The vulnerability of the archstackwalkusercommon function in the arch/s390/kernel/stacktrace.c module of the S390 platform support for the Linux operating system is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker...

5.5CVSS7.1AI score0.00185EPSS
Exploits0References20Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/31 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2025-66038

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSC is an open source smart card tools and middleware. Prior to version 0.27.0, sccompacttlvfindtag searches a compact-TLV buffer for a given tag. In...

6.8CVSS5.7AI score0.00282EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/03/23 7:49 a.m.32 views

CVE-2026-3587 Hidden CLI Function Allows Root Access

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device...

10CVSS0.00679EPSS
Exploits0References1
CVE
CVE
added 2026/03/23 7:49 a.m.27 views

CVE-2026-3587

CVE-2026-3587 describes an unauthenticated remote vulnerability where an attacker can exploit a hidden function in the CLI prompt to escape the restricted interface on a Linux-based OS, resulting in full device compromise. The CVSSv3.1 vector (AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H) yields a base sc...

10CVSS5.8AI score0.00679EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/23 7:49 a.m.2 views

CVE-2026-3587 Hidden CLI Function Allows Root Access

An unauthenticated remote attacker can exploit a hidden function in the CLI prompt to escape the restricted interface, leading to full compromise of the device...

10CVSS5.8AI score0.00679EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/18 9:30 a.m.13 views

EUVD-2026-12786

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges...

7.2CVSS6.1AI score0.00999EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/18 7:33 a.m.38 views

CVE-2026-22317 Command Injection Vulnerability in Root CA Certificate Transfer Workflow

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges...

7.2CVSS0.00999EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/18 7:33 a.m.5 views

CVE-2026-22317

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges...

7.2CVSS6.1AI score0.00999EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/03/18 7:33 a.m.4 views

CVE-2026-22317 Command Injection Vulnerability in Root CA Certificate Transfer Workflow

A command injection vulnerability in the device’s Root CA certificate transfer workflow allows a high-privileged attacker to send crafted HTTP POST requests that result in arbitrary command execution on the underlying Linux OS with root privileges...

7.2CVSS6.1AI score0.00999EPSS
Exploits0References1
Rows per page
Query Builder