Lucene search
K

4316 matches found

Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28640)

A potential local adjacent arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability was discovered in HPE Integrated Lights-Out 5 iLO 5 in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for HPE Integrated...

8.8CVSS8.6AI score0.00488EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.19 views

Security Updates for Microsoft Excel Products C2R (November 2025)

The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerabilities: - Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. CVE-2025-60727 - Untrusted pointer dereference in Microsoft Office Excel...

7.8CVSS6.3AI score0.00678EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28627)

A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availability...

8.4CVSS8.4AI score0.00218EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Input Validatio (CVE-2022-28629)

A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. A low privileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality, integrity, and availabilit...

7.8CVSS8.1AI score0.00212EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

Siemens SIMATIC S7-1500 Use After Free (CVE-2020-1712)

A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while handling dbus messages. A local unprivileged attacker can abuse this flaw to crash systemd services or potentially execute code and elevate their privileges, by...

7.8CVSS6.7AI score0.0046EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.6 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28637)

A local Denial of Service DoS and local arbitrary code execution vulnerability that could potentially lead to a loss of confidentiality, integrity, and availability were discovered in HPE Integrated Lights-Out 5 iLO 5 in Version: 2.71. Hewlett Packard Enterprise has provided updated firmware for...

7.8CVSS7.7AI score0.0024EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.4 views

HP Integrated Lights-Out Improper Input Validation (CVE-2022-28630)

A local arbitrary code execution vulnerability was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware versions: Prior to 2.71. An unprivileged user could locally exploit this vulnerability to execute arbitrary code resulting in a complete loss of confidentiality and integrity, and a partial...

7.3CVSS8AI score0.00229EPSS
Exploits0References2
OSV
OSV
added 2025/11/12 8:15 p.m.4 views

CVE-2024-48829

Dell SmartFabric OS10 Software, versions prior to 10.6.1.0, contain an Improper Control of Generation of Code 'Code Injection' vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Code execution...

6.7CVSS5.8AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.4 views

CVE-2025-60727

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.7AI score0.00491EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.5 views

CVE-2025-59504

Heap-based buffer overflow in Azure Monitor Agent allows an unauthorized attacker to execute code locally...

7.3CVSS6.3AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-60714

Heap-based buffer overflow in Windows OLE allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00543EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62200

Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.7AI score0.00457EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62201

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS6.1AI score0.00457EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62199

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS5.8AI score0.00716EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62203

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00481EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.2 views

CVE-2025-62216

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.0041EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.2 views

CVE-2025-62214

Improper neutralization of special elements used in a command 'command injection' in Visual Studio allows an authorized attacker to execute code locally...

6.7CVSS5.9AI score0.00978EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 6:1 p.m.3 views

CVE-2025-62205

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00391EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 5:7 p.m.4 views

CVE-2025-27246

Incorrect default permissions for the IntelR Processor Identification Utility before version 8.0.43 within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a high complexity attack may enable local code execution...

6.7CVSS7.1AI score0.00096EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/12 5:7 p.m.3 views

CVE-2025-24327

Insecure inherited permissions for some IntelR Rapid Storage Technology Application before version 20.0.1021 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable local co...

6.7CVSS7.1AI score0.00096EPSS
Exploits0References1
Rows per page
Query Builder