Lucene search
K

18 matches found

Microsoft CVE
Microsoft CVE
added 6 days ago5 views

hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf

...

7.5CVSS5.8AI score0.0053EPSS
Exploits0
OSV
OSV
added 2026/06/25 9:16 a.m.2 views

UBUNTU-CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS5.9AI score0.0053EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.3 views

CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS5.9AI score0.0053EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/25 8:39 a.m.6 views

CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

5.9AI score0.0053EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/06/25 8:39 a.m.25 views

CVE-2026-53199 hv_netvsc: use kmap_local_page in netvsc_copy_to_send_buf

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS0.0053EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2026/03/04 1:56 a.m.5 views

CVE-2026-28403

Textream is a free macOS teleprompter app. Prior to version 1.5.1, the DirectorServer WebSocket server ws://127.0.0.1: accepts connections from any origin without validating the HTTP Origin header during the WebSocket handshake. A malicious web page visited in the same browser session can silentl...

7.6CVSS6AI score0.00136EPSS
Exploits1References1
OSV
OSV
added 2026/03/02 3:45 p.m.7 views

CVE-2026-28403 Textream Cross-Site WebSocket Hijacking (CSWSH) vulnerability

Textream is a free macOS teleprompter app. Prior to version 1.5.1, the DirectorServer WebSocket server ws://127.0.0.1: accepts connections from any origin without validating the HTTP Origin header during the WebSocket handshake. A malicious web page visited in the same browser session can silentl...

7.6CVSS6AI score0.00136EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38102

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - VMCI: fix race between vmcihostsetupnotify and vmcictxunsetnotify During our test, it is found that a warning can be trigger in trygrabfolio as follow:...

7CVSS6.5AI score0.00129EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.2 views

SUSE CVE-2018-6110

Parsing documents as HTML in Downloads in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to cause Chrome to execute scripts via a local non-HTML page...

5.4CVSS8.7AI score0.01247EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:26 a.m.4 views

SUSE CVE-2018-12397

A WebExtension can request access to local files without the warning prompt stating that the extension will "Access your data for all websites" being displayed to the user. This allows extensions to run content scripts in local pages without permission warnings when a local file is opened. This...

6.1CVSS8AI score0.00368EPSS
Exploits0References9
CNNVD
CNNVD
added 2022/07/11 12:0 a.m.6 views

IBM Security SiteProtector System 安全漏洞

IBM Security SiteProtector System is a centralized management system from IBM USA. It is used for unified management and analysis of network, server and desktop endpoint security agents and small networks or devices. A security vulnerability exists in the IBM Security SiteProtector System version...

5.5CVSS5.6AI score0.00226EPSS
Exploits0References4
OSV
OSV
added 2020/08/27 1:15 p.m.2 views

CVE-2020-4171

IBM Security Guardium Insights 2.0.1 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 174407...

4.3CVSS6AI score0.01003EPSS
Exploits0References2
OSV
OSV
added 2020/03/03 2:15 p.m.2 views

CVE-2020-4197

IBM Tivoli Netcool/OMNIbusGUI 8.1.0 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 174908...

2.4CVSS5.8AI score0.0034EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2019/01/09 7:29 p.m.14 views

CVE-2018-6110

Parsing documents as HTML in Downloads in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to cause Chrome to execute scripts via a local non-HTML page...

5.8CVSS7AI score0.01247EPSS
Exploits0References2
OSV
OSV
added 2019/01/09 7:29 p.m.2 views

UBUNTU-CVE-2018-6110

Parsing documents as HTML in Downloads in Google Chrome prior to 66.0.3359.117 allowed a remote attacker to cause Chrome to execute scripts via a local non-HTML page...

5.4CVSS7.4AI score0.01247EPSS
Exploits0References3
CNVD
CNVD
added 2018/01/15 12:0 a.m.2 views

IBM Security Access Manager Information Disclosure Vulnerability (CNVD-2018-01027)

IBM Security Access Manager is a product for information security management applications from IBM, USA. The product enables access management control through integrated devices for web, mobile and cloud computing. A security vulnerability exists in IBM Security Access Manager versions 9.0 throug...

3.3CVSS6.1AI score0.00392EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2017/02/01 8:59 p.m.2 views

CVE-2016-3024

IBM Security Access Manager for Web allows web pages to be stored locally which can be read by another user on the system...

4CVSS5.5AI score0.0032EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2008/10/01 3:33 p.m.7 views

recource: bypass

Directory traversal vulnerability in Mozilla Firefox before 2.0.0.17 and 3.x before 3.0.2, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass "restrictions imposed on local HTML files," and obtain sensitive information and prompt users to write this...

7.8CVSS5.8AI score0.04166EPSS
Exploits1References4
Rows per page
Query Builder