Lucene search
K

11 matches found

NVD
NVD
added 2026/03/05 4:16 p.m.10 views

CVE-2026-30785

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...

8.2CVSS0.00083EPSS
Exploits1References4
CVE
CVE
added 2026/03/05 4:4 p.m.24 views

CVE-2026-30785

RustDesk Client (through version 1.4.5) is affected by CVE-2026-30785 due to a vulnerability described as Prototype Pollution and weak password hashing in the password_security, config, and machine-uid-related code paths (hbb_common and related modules). The issue can allow Retrieve Embedded Sens...

8.2CVSS6AI score0.00083EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/03/05 4:4 p.m.28 views

CVE-2026-30785 RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305)

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...

8.2CVSS0.00083EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/05 4:4 p.m.5 views

CVE-2026-30785 RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305)

Improperly Controlled Modification of Object Prototype Attributes 'Prototype Pollution', Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbbcommon on Windows, MacOS, Linux Password security module, config encryption, machine U...

8.2CVSS5.8AI score0.00083EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-59828

Malicious code in bioql PyPI...

6.3AI score0.00136EPSS
Exploits0References5
OSV
OSV
added 2025/09/15 3:15 p.m.4 views

UBUNTU-CVE-2023-53256

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and...

5.5CVSS5.7AI score0.00136EPSS
Exploits0References7
CVE
CVE
added 2025/09/15 2:46 p.m.22 views

CVE-2023-53256

CVE-2023-53256 resolves a Linux kernel issue in the firmware/arm_ffa path where device names for logical partitions could collide. The root cause was that the device name used by FFA partitions included only the VM ID, while UUIDs were kept in partition info, causing sysfs errors like “cannot cre...

5.5CVSS5.7AI score0.00136EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.3 views

PT-2025-37697

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The Linux kernel contains a flaw in the arm ffa firmware where the device naming scheme for logical partitions fails to uniquely identify multiple services within a physical partition...

6.1AI score0.00136EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/01/14 12:0 a.m.5 views

PT-2023-18548 · Netdata +4 · Netdata +4

Name of the Vulnerable Software and Affected Versions: Netdata agent versions prior to 1.37 Netdata agent versions prior to 1.36.0-409 nightly Description: The issue affects Netdata Agents that expose their services to non-trusted users, particularly when the streaming feature is enabled, allowin...

9.8CVSS7AI score0.36171EPSS
Exploits9References35
RedHat Linux
RedHat Linux
added 2016/10/20 2:14 p.m.3 views

CFME: bypass authorization by altering VM ID

It was found that the CloudForms did not properly apply permissions controls to VM IDs passed by users. A remote, authenticated attacker could use this flaw to execute arbitrary VMs on systems managed by CloudForms if they know the ID of the VM...

9CVSS6AI score0.02197EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2014/04/17 11:30 a.m.8 views

OpenJDK: Unique VMIDs (Libraries, 8001033)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 21 and earlier, 6 Update 45 and earlier, and 5.0 Update 45 and earlier, and OpenJDK 7, allows remote attackers to affect confidentiality via unknown vectors related to Libraries, a different...

5CVSS6.8AI score0.04326EPSS
Exploits0References5
Rows per page
Query Builder