Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-40773

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2025/03/04 2:15 p.m.2 views

DEBIAN-CVE-2025-1936

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

7.3CVSS7.2AI score0.00413EPSS
Exploits0References1
OSV
OSV
added 2025/03/04 2:15 p.m.2 views

UBUNTU-CVE-2025-1936

jar: URLs retrieve local file content packaged in a ZIP archive. The null and everything after it was ignored when retrieving the content from the archive, but the fake extension after the null was used to determine the type of content. This could have been used to hide code in a web extension...

7.3CVSS6.7AI score0.00413EPSS
Exploits0References11
Cvelist
Cvelist
added 2023/07/19 9:57 p.m.29 views

CVE-2023-36853 Keysight Geolocation Server Exposed Dangerous Method or Function

​In Keysight Geolocation Server v2.4.2 and prior, a low privileged attacker could create a local ZIP file containing a malicious script in any location. The attacker could abuse this to load a DLL with SYSTEM privileges...

7.8CVSS7.5AI score0.002EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/07/19 9:57 p.m.13 views

CVE-2023-36853 Keysight Geolocation Server Exposed Dangerous Method or Function

​In Keysight Geolocation Server v2.4.2 and prior, a low privileged attacker could create a local ZIP file containing a malicious script in any location. The attacker could abuse this to load a DLL with SYSTEM privileges...

7.8CVSS6.4AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2019/08/21 6:15 p.m.3 views

CVE-2019-11897

A Server-Side Request Forgery SSRF vulnerability in the backup & restore functionality in earlier versions than ProSyst mBS SDK 8.2.6 and Bosch IoT Gateway Software 9.3.0 allows a remote attacker to forge GET requests to arbitrary URLs. In addition, this could potentially allow an attacker to rea...

8.6CVSS7.4AI score0.01782EPSS
Exploits0References1
Rows per page
Query Builder