Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-12567

Malware in sbrugna...

7.8CVSS6.2AI score0.0046EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-20543

Malware in sbrugna...

7.8CVSS6.7AI score0.02685EPSS
Exploits2References11
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-18192

Malware in sbrugna...

7.8CVSS7.6AI score0.00525EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-28523

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00234EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-46526

Malicious code in bioql PyPI...

8.8CVSS7.4AI score0.00652EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/02/05 3:8 a.m.5 views

CVE-2024-6984

An issue was discovered in Juju that resulted in the leak of the sensitive context ID, which allows a local unprivileged attacker to access other sensitive data or relation accessible to the local charm...

8.8CVSS6.4AI score0.00379EPSS
Exploits1References1
NVD
NVD
added 2024/08/13 5:15 p.m.26 views

CVE-2024-6619

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service...

8.5CVSS0.00143EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/13 4:41 p.m.35 views

CVE-2024-6619 Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service...

8.5CVSS0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 4:41 p.m.11 views

CVE-2024-6619 Incorrect Permission Assignment for Critical Resource in Ocean Data Systems Dream Report

In Ocean Data Systems Dream Report, an incorrect permission vulnerability could allow a local unprivileged attacker to escalate their privileges and could cause a denial-of-service...

8.5CVSS6.9AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2024/07/29 3:30 p.m.9 views

GHSA-8C64-Q78Q-87R6 Duplicate Advisory: Juju leaks of the sensitive context ID

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-6vjm-54vp-mxhx. This link has been maintained to preserve external references. Original Description An issue was discovered in Juju that resulted in the leak of the sensitive context ID, which allows a local...

8.8CVSS8.4AI score0.00379EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:34 a.m.2 views

SUSE CVE-2022-1016

A flaw was found in the Linux kernel in net/netfilter/nftablescore.c:nftdochain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker...

5.5CVSS6.2AI score0.00416EPSS
Exploits11References49
OSV
OSV
added 2022/08/29 3:15 p.m.5 views

DEBIAN-CVE-2022-1016

A flaw was found in the Linux kernel in net/netfilter/nftablescore.c:nftdochain, which can cause a use-after-free. This issue needs to handle 'return' with proper preconditions, as it can lead to a kernel information leak problem caused by a local, unprivileged attacker...

5.5CVSS6.3AI score0.00416EPSS
Exploits11References1
NVD
NVD
added 2021/11/30 2:15 p.m.25 views

CVE-2021-25987

Hexo versions 0.0.1 to 5.4.0 are vulnerable against stored XSS. The post “body” and “tags” don’t sanitize malicious javascript during web page generation. Local unprivileged attacker can inject arbitrary code...

5CVSS0.00328EPSS
Exploits0References2
NVD
NVD
added 2021/05/27 1:15 p.m.24 views

CVE-2021-31153

please before 0.4 allows a local unprivileged attacker to gain knowledge about the existence of files or directories in privileged locations via the searchpath function, the --check option, or the -d option...

3.3CVSS0.00426EPSS
Exploits1References2
Cvelist
Cvelist
added 2021/05/27 12:8 p.m.27 views

CVE-2021-31153

please before 0.4 allows a local unprivileged attacker to gain knowledge about the existence of files or directories in privileged locations via the searchpath function, the --check option, or the -d option...

4.5AI score0.00426EPSS
Exploits1References2
NVD
NVD
added 2020/12/28 8:15 p.m.22 views

CVE-2020-25507

An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions 0777...

7.8CVSS7.8AI score0.00525EPSS
Exploits1References7
Prion
Prion
added 2020/12/28 8:15 p.m.17 views

Code injection

An incorrect permission assignment during the installation script of TeamworkCloud 18.0 thru 19.0 allows a local unprivileged attacker to execute arbitrary code as root. During installation, the user is instructed to set the system enviroment file with world writable permissions 0777...

7.2CVSS7.8AI score0.00525EPSS
Exploits1References7Affected Software1
Prion
Prion
added 2020/11/10 6:15 p.m.30 views

Design/Logic Flaw

A vulnerability in the TCL Android Smart TV series V8-R851T02-LF1 V295 and below and V8-T658T01-LF1 V373 and below by TCL Technology Group Corporation allows a local unprivileged attacker, such as a malicious App, to read & write to the /data/vendor/tcl, /data/vendor/upgrade, and...

7.2CVSS7.2AI score0.02685EPSS
Exploits2References10Affected Software7
Positive Technologies
Positive Technologies
added 2020/11/10 12:0 a.m.5 views

PT-2020-16915

Name of the Vulnerable Software and Affected Versions TCL Android Smart TV series V8-R851T02-LF1 versions V295 and below TCL Android Smart TV series V8-T658T01-LF1 versions V373 and below Description A local unprivileged attacker, such as a malicious App, can read and write to the /data/vendor/tc...

7.8CVSS5.5AI score0.02685EPSS
Exploits2References13
NVD
NVD
added 2020/03/31 5:15 p.m.32 views

CVE-2020-1712

A heap use-after-free vulnerability was found in systemd before version v245-rc1, where asynchronous Polkit queries are performed while handling dbus messages. A local unprivileged attacker can abuse this flaw to crash systemd services or potentially execute code and elevate their privileges, by...

7.8CVSS7.7AI score0.0046EPSS
Exploits0References7
Rows per page
Query Builder