Lucene search
K

155 matches found

Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.13 views

PT-2026-49902

Name of the Vulnerable Software and Affected Versions Oracle VM VirtualBox version 7.2.8 Description An issue exists in the VMSVGA device component of Oracle VM VirtualBox. A high-privileged attacker with access to the infrastructure where the software executes can compromise the system. This may...

6CVSS5.8AI score0.0015EPSS
Exploits0References4
CVE
CVE
added 2026/06/15 8:7 a.m.18 views

CVE-2026-50100

CVE-2026-50100 concerns privilege-escalation in printer drivers from Ricoh Company, Ltd. and KONICA MINOLTA JAPAN, INC. Affected software consists of multiple printer drivers; exploitation would allow an attacker who can log in to a host running an affected driver to elevate privileges by using a...

8.5CVSS7.4AI score0.00131EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/19 12:0 a.m.10 views

PT-2026-42008

Name of the Vulnerable Software and Affected Versions Innoshop version 0.6.0 Description An authorization issue allows an attacker who has logged into the frontend to directly access backend application interfaces, which can lead to the execution of dangerous operations. Recommendations At the...

7.3CVSS5.9AI score0.00248EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37787

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle GraalVM for JDK: 17.0.9, 21.0.1; Oracle GraalVM...

4.7CVSS6.8AI score0.00411EPSS
Exploits0References6
OSV
OSV
added 2026/04/23 8:45 a.m.3 views

BIT-MYSQL-SHELL-2026-34319

Vulnerability in the MySQL Shell product of Oracle MySQL component: Shell: Core Client. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where MySQL Shell executes t...

5CVSS7.2AI score0.00153EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/21 8:35 p.m.4 views

CVE-2026-35247

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle V...

6CVSS7.4AI score0.00124EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/04/21 8:35 p.m.5 views

CVE-2026-35230

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...

7.5CVSS7.5AI score0.00197EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/12 1:43 p.m.6 views

CVE-2025-62853

A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

7.2CVSS5.5AI score0.00598EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/12 1:42 p.m.4 views

CVE-2026-22894

A path traversal vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: File Station 5...

6.5CVSS5.5AI score0.00537EPSS
Exploits0References1
OSV
OSV
added 2026/02/11 1:15 p.m.5 views

CVE-2025-52869

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 2026/01/20 and...

8.1CVSS6AI score0.00398EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 1:15 p.m.4 views

CVE-2025-48723

A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to modify memory or crash processes. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4 2026/01/20 and...

8.1CVSS0.00378EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/11 12:20 p.m.22 views

CVE-2025-30266 Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4...

2.3CVSS0.00391EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/11 12:19 p.m.4 views

CVE-2025-48722 Qsync Central

A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the following version: Qsync Central 5.0.0.4...

5.3CVSS5.5AI score0.00391EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/11 12:18 p.m.5 views

CVE-2025-54152

A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read sensitive portions of memory. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.5AI score0.00373EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/11 12:18 p.m.4 views

CVE-2025-54152 Qsync Central

A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read sensitive portions of memory. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.6AI score0.00373EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/11 12:17 p.m.3 views

CVE-2025-57708 Qsync Central

An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to prevent other systems, applications, or processes from accessing the same type of resource. We hav...

6.3CVSS5.6AI score0.00448EPSS
Exploits0References1
CVE
CVE
added 2026/02/11 12:17 p.m.12 views

CVE-2025-57708

CVE-2025-57708 is an allocation of resources without limits or throttling affecting Qsync Central . The root cause is resource exhaustion that can be triggered when a remote attacker gains a user account, enabling them to prevent other systems, applications, or processes from accessing the same t...

6.5CVSS5.6AI score0.00448EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2026/02/11 12:16 p.m.16 views

CVE-2025-62853

A path traversal vulnerability in File Station 5 allows an attacker with a user account to read contents of files and system data. Affected: File Station 5; root cause: path traversal. Impact (per metrics): confidentiality LOW, integrity HIGH, availability HIGH; exploitation requires network acce...

7.2CVSS5.5AI score0.00598EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/11 12:15 p.m.3 views

CVE-2025-68406

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: Qsync Central...

5.3CVSS5.5AI score0.00537EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-21990

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily...

8.2CVSS7.1AI score0.00196EPSS
Exploits0References2
Rows per page
Query Builder