Lucene search
K

1294 matches found

NVD
NVD
added 2025/08/13 9:15 p.m.6 views

CVE-2011-10017

Snort Report versions 1.3.2 contains a remote command execution vulnerability in the nmap.php and nbtscan.php scripts. These scripts fail to properly sanitize user input passed via the target GET parameter, allowing attackers to inject arbitrary shell commands. Exploitation requires no...

10CVSS0.02322EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/13 8:53 p.m.11 views

CVE-2011-10017 Snort Report nmap.php/nbtscan.php RCE

Snort Report versions 1.3.2 contains a remote command execution vulnerability in the nmap.php and nbtscan.php scripts. These scripts fail to properly sanitize user input passed via the target GET parameter, allowing attackers to inject arbitrary shell commands. Exploitation requires no...

10CVSS0.02322EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2021-47435

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm: fix mempool NULL pointer race when completing IO dmiodecpending calls endioacct first and will then dec md in-flight pending count. But if a task is swappin...

4.7CVSS6.7AI score0.00239EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-46938

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: dm rq: fix double free of blkmqtagset in dev remove after table load fails When loading a...

7.8CVSS6.2AI score0.00248EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2022-50085

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm raid: fix address sanitizer warning in raidresume There is a KASAN warning in raidresume when running the lvm test lvconvert-raid.sh. The reason for the...

7.8CVSS6.5AI score0.00166EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2025/08/10 12:31 p.m.6 views

Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft's Windows Remote Procedure Call RPC communication protocol that could be abused by an attacker to conduct spoofing attacks and impersonate a known server. The vulnerability, tracked as...

3.5CVSS6.8AI score0.01256EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-38066

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm cache: prevent BUGON by blocking retries on failed device resumes A cache device failing to resume due to mapping errors should not be retried, as the failur...

5.5CVSS6.8AI score0.00159EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49771

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dm ioctl: fix misbehavior if listversions races with module loading listversions will first estimate the required space using the...

4.7CVSS6.8AI score0.00137EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2024-23851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - copyparams in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INTMAX bytes, and crash, because of a missing...

5.5CVSS6.6AI score0.00296EPSS
Exploits0References2
Gitee
Gitee
added 2025/08/03 4:19 a.m.117 views

Dracnmap

Dracnmap is an open-source program designed to exploit networks and gather information using the help of Nmap. It is intended to simplify the process of network scanning by utilizing the script engine of Nmap and performing various automatic scanning techniques with advanced commands. Dracnmap is...

6.6AI score
Exploits0
OSV
OSV
added 2025/07/20 12:15 p.m.6 views

CVE-2025-7888

A vulnerability was found in TDuckCloud tduck-platform 5.1 and classified as critical. This issue affects the function UserFormDataMapper of the file src/main/java/com/tduck/cloud/form/mapper/UserFormDataMapper.java. The manipulation of the argument formKey leads to sql injection. The attack may ...

9.8CVSS7.5AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.2 views

webkitgtk: Heap buffer overflow in WebCore::TextureMapperLayer::setContentsLayer leading to arbitrary code execution

A heap buffer overflow vulnerability was found in WebKitGTK. The vulnerability occurs when processing or rendering HTML content in WebKit. This flaw allows a remote attacker to trick the victim into opening a specially crafted web page, triggering a heap buffer overflow error and leading to the...

7.5CVSS7.9AI score0.02158EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.4 views

webkitgtk: heap-buffer-overflow in WebCore::TextureMapperLayer::setContentsLayer

REJECTED CVE In WebKitGTK through 2.36.0 and WPE WebKit, there is a use-after-free in WebCore::TextureMapperLayer::setContentsLayer in WebCore/platform/graphics/texmap/TextureMapperLayer.cpp...

5.8AI score
Exploits0References4
Gitee
Gitee
added 2025/07/06 2:42 a.m.112 views

Exploit for Improper Access Control in Elasticsearch

欢迎各位大佬提BUG,当前版本 AssetScanV1.3 周期 初版:2019年11月28日 V1.0初版编写完成 修改1:2019年12月02日 感谢Shadow·J反馈kali下文件导入异常 修改2:2019年12月03日 V1.1发布,新增ARP存活检测(回滚,测bug) 修改3:2019年12月04日 V1.2发布,修复漏洞脚本异常,修复weblogic脚本 修改4:2019年12月05日 V1.2修改,感谢sevck提供设计思路以及代码不规范问题 修改5:2019年12月05日 V1.2修改,修复IP数据处理异常 修改6:2019年12月19日...

10CVSS7AI score0.99999EPSS
Exploits145
SUSE CVE
SUSE CVE
added 2025/07/03 11:23 p.m.5 views

SUSE CVE-2025-38141

In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...

7.8CVSS6.5AI score0.00159EPSS
Exploits0References12
OSV
OSV
added 2025/07/03 9:15 a.m.1 views

DEBIAN-CVE-2025-38141

In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...

7.8CVSS6.2AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2025/07/03 9:15 a.m.3 views

UBUNTU-CVE-2025-38141

In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...

7.8CVSS6.5AI score0.00159EPSS
Exploits0References13
Vulnrichment
Vulnrichment
added 2025/07/03 8:35 a.m.5 views

CVE-2025-38141 dm: fix dm_blk_report_zones

In the Linux kernel, the following vulnerability has been resolved: dm: fix dmblkreportzones If dmgetlivetable returned NULL, dmputlivetable was never called. Also, it is possible that md-zonerevalidatemap will change while calling this function. Only read it once, so that we are always using the...

6.5AI score0.00159EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/07/03 12:0 a.m.49 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from dm not handling partition table swapping correctly, which could lead to memory corruption...

5.5CVSS8AI score0.00137EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/06/19 3:14 a.m.4 views

SUSE CVE-2025-38063

In the Linux kernel, the following vulnerability has been resolved: dm: fix unconditional IO throttle caused by REQPREFLUSH When a bio with REQPREFLUSH is submitted to dm, sendemptyflush generates a flushbio with REQOPWRITE | REQPREFLUSH | REQSYNC, which causes the flushbio to be throttled by...

4.4CVSS6.4AI score0.00145EPSS
Exploits0References16
Rows per page
Query Builder