Lucene search
K

35 matches found

NVD
NVD
added 3 days ago5 views

CVE-2026-44268

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.6, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an incorrect permission Assignment for critical resource vulnerability. A hi...

4.4CVSS0.00104EPSS
Exploits0References1
Cvelist
Cvelist
added 3 days ago31 views

CVE-2026-46468

Dell PowerProtect Data Domain, versions 7.7.1.0 through 8.7, LTS2026 release version 8.6.1.0 through 8.6.1.10, LTS2025 release version 8.3.1.0 through 8.3.1.30, LTS2024 release versions 7.13.1.0 through 7.13.1.70 contain an improper link resolution before file access 'Link following' vulnerabilit...

4.4CVSS0.00133EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/12 9:38 a.m.9 views

CVE-2026-47166

A flaw was found in ImageMagick, a widely used software for image editing. An attacker with high privileges and local access could exploit a vulnerability in the magick -distribute-cache service. By causing a heap buffer over-read, this could lead to the disclosure of sensitive information and...

6CVSS5.3AI score0.00093EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/05/21 7:34 a.m.10 views

CVE-2026-44069 Integer underflow in volxlate

An integer underflow in the volxlate function in Netatalk 3.0.0 through 4.4.2 allows a local privileged user to obtain limited information, modify limited data, or cause a minor service disruption via crafted volume translation input...

3.9CVSS5.8AI score0.00094EPSS
Exploits0References1
NVD
NVD
added 2026/04/16 7:16 p.m.5 views

CVE-2025-54510

A missing lock verification in AMD Secure Processor ASP firmware may permit a locally authenticated attacker with administrative privileges to alter MMIO routing on some Zen 5-based products, potentially compromising guest system integrity...

5.9CVSS0.00108EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/04/16 6:44 p.m.21 views

CVE-2025-54510

A missing lock verification in AMD Secure Processor ASP firmware may permit a locally authenticated attacker with administrative privileges to alter MMIO routing on some Zen 5-based products, potentially compromising guest system integrity...

5.9CVSS0.00108EPSS
Exploits1References1
CVE
CVE
added 2026/04/16 6:44 p.m.108 views

CVE-2025-54510

The connected documents confirm CVE-2025-54510 affects AMD Zen 5 (and related platforms) via a missing lock verification in the AMD Secure Processor (ASP) firmware that can allow a locally authenticated, high-privilege attacker to alter MMIO routing during boot/init, potentially compromising gues...

5.9CVSS5.8AI score0.00108EPSS
Exploits1References1
NVD
NVD
added 2026/03/25 4:16 p.m.6 views

CVE-2026-20104

A vulnerability in the bootloader of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches, Cisco Catalyst ESS9300 Embedded Series Switches, Cisco Catalyst IE9310 and IE9320 Rugged Series Switches, and Cisco IE3500 and IE3505 Rugged Series Switches could allow an authenticated, local...

6.1CVSS0.00162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.6 views

CVE-2025-27708

Out-of-bounds read in the firmware for some IntelR Converged Security and Management Engine CSME Firmware FW within Ring 0: Kernel may allow an information disclosure. System software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

5.6CVSS5.4AI score0.00099EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.11 views

CVE-2025-27243

Out-of-bounds write in the firmware for some IntelR Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This result m...

6.7CVSS0.00113EPSS
Exploits0References1
NVD
NVD
added 2026/02/10 5:16 p.m.12 views

CVE-2025-27708

Out-of-bounds read in the firmware for some IntelR Converged Security and Management Engine CSME Firmware FW within Ring 0: Kernel may allow an information disclosure. System software adversary with a privileged user combined with a low complexity attack may enable data exposure. This result may...

5.6CVSS0.00099EPSS
Exploits0References1
NVD
NVD
added 2026/01/30 9:15 a.m.11 views

CVE-2026-22277

Dell UnityVSA, versions 5.4 and prior, contains an Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to arbitrary command execution with root...

7.8CVSS0.00599EPSS
Exploits0References1
NVD
NVD
added 2025/11/05 6:15 a.m.7 views

CVE-2025-21071

Out-of-bounds write in handling opcode in fingerprint trustlet prior to SMR Nov-2025 Release 1 allows local privileged attackers to write out-of-bounds memory...

5.7CVSS0.00112EPSS
Exploits0References1
OSV
OSV
added 2025/10/07 7:15 p.m.6 views

CVE-2025-45375

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2025 release version 8.3.1.0, LTS2024 release versions 7.13.1.0 through 7.13.1.30, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain a Stack-based Buffer...

4.4CVSS5.8AI score0.0012EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24531

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.0012EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-13698

Malicious code in bioql PyPI...

5.5CVSS6.6AI score0.0012EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/15 2:36 a.m.5 views

CVE-2025-4410

A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local privileged access can exploit this vulnerability by executeing arbitrary code...

7.5CVSS7.5AI score0.0012EPSS
Exploits0References1
NVD
NVD
added 2025/08/13 3:15 a.m.8 views

CVE-2025-4410

A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local privileged access can exploit this vulnerability by executeing arbitrary code...

7.5CVSS0.0012EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/13 1:49 a.m.10 views

CVE-2025-4410 SetupUtility: A buffer overflow vulnerability leads to arbitrary code execution.

A buffer overflow vulnerability exists in the module SetupUtility. An attacker with local privileged access can exploit this vulnerability by executeing arbitrary code...

7.5CVSS0.0012EPSS
Exploits0References1
CVE
CVE
added 2025/08/13 1:49 a.m.22 views

CVE-2025-4410

CVE-2025-4410 describes a buffer overflow in the SetupUtility module. Multiple sources (NVD/NVD-derived records, Red Hat advisory, CVE lists, and related enrichment) indicate a local-privilege path to arbitrary code execution: an attacker with local high privileges can exploit the issue to run co...

7.5CVSS7.5AI score0.0012EPSS
Exploits0References1
Rows per page
Query Builder