Lucene search
K

243 matches found

NVD
NVD
added 2025/10/18 4:15 p.m.5 views

CVE-2025-47410

Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...

8.8CVSS0.00325EPSS
Exploits0References2
Snyk
Snyk
added 2025/10/18 3:44 p.m.3 views

Cross-site Request Forgery (CSRF)

Overview Affected versions of this package are vulnerable to Cross-site Request Forgery CSRF via the Management and Monitoring REST API when processing GET requests. An attacker can execute arbitrary commands on the target system by tricking an authenticated user into submitting malicious request...

8.8CVSS7.5AI score0.00325EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/18 3:15 p.m.2 views

CVE-2025-47410 Apache Geode: CSRF attacks through GET requests to the Management and Monitoring REST API that can execute gfsh commands on the target system

Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...

6.7AI score0.00325EPSS
Exploits0References1
CVE
CVE
added 2025/10/18 3:15 p.m.28 views

CVE-2025-47410

Apache Geode CVE-2025-47410: CSRF via GET requests to the Management and Monitoring REST API can allow an attacker to trick a logged-in user into submitting commands on behalf of that user. Affected versions are 1.10–1.15.1; remediation is to upgrade to 1.15.2. Public references corroborate the i...

8.8CVSS6.7AI score0.00325EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-1224

Malware in sbrugna...

7.8CVSS6.2AI score0.0133EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0538

Malware in sbrugna...

7.7CVSS7.5AI score0.01539EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-10427

Malware in sbrugna...

5.3CVSS5.5AI score0.00525EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-34429

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00288EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-19754

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.01315EPSS
Exploits2References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-18107

Malicious code in bioql PyPI...

6.1CVSS6.5AI score0.00389EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27715

Malicious code in bioql PyPI...

9.3CVSS9.3AI score0.00445EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-13918

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00348EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-9182

Malicious code in bioql PyPI...

7.5CVSS7.8AI score0.01602EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-16746

Malicious code in bioql PyPI...

6.5CVSS6.4AI score0.00655EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22434

Malicious code in bioql PyPI...

9.8CVSS6.4AI score0.0068EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10068

Malicious code in bioql PyPI...

4.3CVSS6.6AI score0.00283EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-2995

Malicious code in bioql PyPI...

5.3CVSS5.5AI score0.00673EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10387

Malicious code in bioql PyPI...

8.8CVSS6.3AI score0.00542EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/25 12:0 a.m.6 views

PT-2025-39424

Name of the Vulnerable Software and Affected Versions O-RAN Near Realtime RIC versions affected versions not specified Description An issue exists in the O-RAN Near Realtime RIC ric-plt-submgr component within the J-Release environment. This allows remote attackers to cause a denial of service Do...

7.5CVSS6.5AI score0.00395EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/07/25 9:29 a.m.11 views

CVE-2025-41687

An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to gain full access on the affected devices...

9.8CVSS8.2AI score0.0068EPSS
Exploits0References1
Rows per page
Query Builder