Lucene search
K

140 matches found

CVE
CVE
added yesterday5 views

CVE-2026-58459

gpsd (through release-3.27.5) contains a command-injection in gpsprof when processing the GPS device subtype value. The subtype is written into a generated gnuplot program via a set title statement with only quotes escaped, enabling arbitrary shell commands to execute as the user running gnuplot ...

8.4CVSS6.3AI score
Exploits0References5
NVD
NVD
added 2026/07/01 4:16 p.m.8 views

CVE-2026-58025

Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Import/WikiImporter.Php, includes/Import/WikiRevision.Php, includes/Logging/LogEntryBase.Php. This issue affects MediaWiki: from before 1.46.0, 1.45.4,...

9.8CVSS0.00342EPSS
Exploits0References1
CVE
CVE
added 2026/07/01 3:23 p.m.15 views

CVE-2026-58025

CVE-2026-58025 describes a deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki (affected components: includes/Import/WikiImporter.php, includes/Import/WikiRevision.php, includes/Logging/LogEntryBase.php) that affects MediaWiki releases prior to 1.46.0, including 1.45...

9.8CVSS5.8AI score0.00342EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2026/07/01 3:23 p.m.5 views

CVE-2026-58025

Deserialization of untrusted data vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/Import/WikiImporter.Php, includes/Import/WikiRevision.Php, includes/Logging/LogEntryBase.Php. This issue affects MediaWiki: from before 1.46.0, 1.45.4,...

9.8CVSS5.8AI score0.00342EPSS
Exploits0
OSV
OSV
added 2026/07/01 12:0 a.m.4 views

UBUNTU-CVE-2026-58025

Safely unserialize log entry parameters...

5.9CVSS5.8AI score0.00342EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerability in the 389-DS-base

A heap overflow flaw was discovered in 389-ds-base. This issue causes a denial of service when writing a value larger than 256 characters in logentryattr...

5.5CVSS6.1AI score0.00304EPSS
Exploits0References2
EUVD
EUVD
added 2026/03/25 6:31 p.m.4 views

EUVD-2026-15443

A vulnerability in the web-based Cisco IOx application hosting environment management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a carriage return line feed CRLF injection attack against a user. This vulnerability is due to insufficient validatio...

5.3CVSS5.8AI score0.0029EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/25 4:8 p.m.26 views

CVE-2026-20113

A vulnerability in the web-based Cisco IOx application hosting environment management interface of Cisco IOS XE Software could allow an unauthenticated, remote attacker to perform a carriage return line feed CRLF injection attack against a user. This vulnerability is due to insufficient validatio...

5.3CVSS0.0029EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/03/05 8:54 p.m.7 views

OliveTin has crash on NPE by calling APIs with invalid bindings or log references

Summary An unauthenticated attacker can trigger server-side panics by first creating an execution log entry with a nil binding via StartActionByGet invalid action ID, then calling KillAction or RestartAction on that tracking ID. This causes a nil-pointer dereference in API handlers and results in...

6.2AI score
Exploits0References4Affected Software1
OSV
OSV
added 2026/02/11 11:16 p.m.5 views

CVE-2026-20681

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Tahoe 26.3. An app may be able to access information about a user's contacts...

3.3CVSS5.8AI score
Exploits0References1
Cvelist
Cvelist
added 2026/02/02 11:48 p.m.27 views

CVE-2025-61639 Suppressed blocked IP is visible in Special:BlockList, RC, and other places

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/logging/ManualLogEntry.Php, includes/recentchanges/RecentChangeFactory.Php, includes/recentchanges/RecentChangeStore.Php. This...

6.3CVSS0.0022EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2026/02/02 11:48 p.m.5 views

CVE-2025-61639

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/logging/ManualLogEntry.Php, includes/recentchanges/RecentChangeFactory.Php, includes/recentchanges/RecentChangeStore.Php. This...

6.3CVSS5.2AI score0.0022EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : 389-ds:1.4 (AXSA:2024-8413:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8413:01 advisory. 389-ds-base: a heap overflow leading to denail-of-servce while writing a value larger than 256 chars in logentryattr CVE-2024-1062 Tenable has extracted the...

5.5CVSS5.7AI score0.00304EPSS
Exploits0References2
CVE
CVE
added 2025/12/28 7:2 p.m.13 views

CVE-2025-15150

CVE-2025-15150 affects PX4 PX4-Autopilot up to version 1.16.0. The vulnerability resides in MavlinkLogHandler::state_listing and MavlinkLogHandler::log_entry_from_id within src/modules/mavlink/mavlink_log_handler.cpp, causing a stack-based buffer overflow. Exploitation is limited to local access....

7.8CVSS5.5AI score0.00214EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2025/12/12 9:15 p.m.3 views

CVE-2025-43517

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Tahoe 26.2, macOS Sequoia 15.7.3, macOS Sonoma 14.8.3. An app may be able to access protected user data...

3.3CVSS5.7AI score0.0017EPSS
Exploits0References3
NVD
NVD
added 2025/12/12 9:15 p.m.4 views

CVE-2025-43517

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7.3, macOS Sonoma 14.8.3, macOS Tahoe 26.2. An app may be able to access protected user data...

3.3CVSS0.0017EPSS
Exploits0References3
NVD
NVD
added 2025/11/04 2:15 a.m.3 views

CVE-2025-43477

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. An app may be able to access sensitive user data...

5.5CVSS0.0018EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-2758

Malware in sbrugna...

2.1CVSS6.1AI score0.00685EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-5039

Malware in sbrugna...

1.9CVSS6.4AI score0.0027EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4236

Malware in sbrugna...

6.5CVSS6.6AI score0.01452EPSS
Exploits0References3
Rows per page
Query Builder