Lucene search
K

430 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-59904

Malicious code in bioql PyPI...

6.3AI score0.00145EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-27685

Malicious code in bioql PyPI...

7.5CVSS8.9AI score0.00663EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-24579

Malicious code in bioql PyPI...

6.3CVSS6.3AI score0.00371EPSS
Exploits0References1
NVD
NVD
added 2025/09/06 7:15 p.m.11 views

CVE-2025-0034

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRVSOCCMDIDSRIOVSPATIALPART and cause read or write past the end of allocated arrays, potentially resulting in a loss of platform integrity or denial of service...

4.7CVSS0.00118EPSS
Exploits0References1
Snyk
Snyk
added 2025/09/05 4:10 p.m.1 views

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow. An attacker can access sensitive information by triggering a specially crafted input that causes the process to read beyond the intended memory boundaries. Remediation Upgrade libxml2 to version 2.14.0 or higher...

6.8CVSS6.6AI score0.00076EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/05 5:27 a.m.12 views

CVE-2023-21477

Access of Memory Location After End of Buffer vulnerability in TIGERF trustlet prior to SMR Apr-2023 Release 1 allows local attackers to access protected data...

7.9CVSS6.5AI score0.00133EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/09/01 12:0 a.m.3 views

The vulnerability of the dwc3_check_event_buf function in the Linux operating system, which allows a hacker to compromise the confidentiality of the protected information

The vulnerability of the dwc3checkeventbuf function in the Linux operating system is related to reading memory beyond the boundaries of the allocated buffer. Exploiting this vulnerability can allow an attacker to compromise the confidentiality of the protected information...

2.6CVSS6.7AI score0.0019EPSS
Exploits0References17Affected Software10
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-16748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In wolfSSL through 4.1.0, there is a missing sanity check of memory accesses in parsing ASN.1 certificate data while handshaking. Specifically, there is a...

9.8CVSS8.4AI score0.01154EPSS
Exploits0References2
OSV
OSV
added 2025/08/29 11:18 a.m.6 views

OESA-2025-2089 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication...

6.3CVSS7.3AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2025/08/29 11:18 a.m.4 views

OESA-2025-2088 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication...

6.3CVSS7.3AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2025/08/29 11:18 a.m.7 views

OESA-2025-2087 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication...

6.3CVSS7.3AI score0.00371EPSS
Exploits0References2
OSV
OSV
added 2025/08/29 11:18 a.m.5 views

OESA-2025-2086 nginx security update

NGINX is a free, open-source, high-performance HTTP server and reverse proxy, as well as an IMAP/POP3 proxy server. Security Fixes: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication...

6.3CVSS7.3AI score0.00371EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-20234

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability in Universal Disk Format UDF processing of ClamAV could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on ...

7.5CVSS7.4AI score0.00663EPSS
Exploits0References2
OSV
OSV
added 2025/08/18 8:7 a.m.55 views

BIT-NGINX-2025-53859 NGINX ngx_mail_smtp_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS7.5AI score0.00371EPSS
Exploits0References3
Amazon
Amazon
added 2025/08/18 12:0 a.m.4 views

Low: nginx

Issue Overview: NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server...

6.3CVSS7.2AI score0.00371EPSS
Exploits0
OSV
OSV
added 2025/08/13 3:15 p.m.6 views

CVE-2025-53859

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS7.5AI score
Exploits0References2
OSV
OSV
added 2025/08/13 3:15 p.m.6 views

AZL-66311 CVE-2025-53859 affecting package nginx for versions less than 1.25.4-5

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS5.9AI score0.00371EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 3:15 p.m.4 views

DEBIAN-CVE-2025-53859

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS5.7AI score0.00371EPSS
Exploits0References1
OSV
OSV
added 2025/08/13 3:15 p.m.5 views

ALPINE-CVE-2025-53859

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS5.5AI score0.00371EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/13 2:46 p.m.5 views

CVE-2025-53859 NGINX ngx_mail_smtp_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxmailsmtpmodule that might allow an unauthenticated attacker to over-read NGINX SMTP authentication process memory; as a result, the server side may leak arbitrary bytes sent in a request to the authentication server. This issue happe...

6.3CVSS7.5AI score0.00371EPSS
Exploits0References1
Rows per page
Query Builder