Lucene search
K

1160 matches found

Metasploit
Metasploit
added 3 days ago26 views

FTP Fetch, Bind IPv6 TCP Stager with UUID Support (Windows x86)

Fetch and execute an x86 payload from an FTP server. Listen for an IPv6 connection with UUID Support Windows x86 Module Options msf use payload/cmd/windows/ftp/x86/peinject/bindipv6tcpuuid msf payloadbindipv6tcpuuid show actions ...actions... msf payloadbindipv6tcpuuid set ACTION msf...

6.2AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:14 a.m.8 views

sctp: fix uninit-value in __sctp_rcv_asconf_lookup()

...

9.1CVSS5.8AI score0.00544EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:13 a.m.7 views

net/802/mrp: fix vector attribute parsing in mrp_pdu_parse_vecattr

...

5.5CVSS5.8AI score0.00128EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 6:12 p.m.7 views

EUVD-2026-39529

RTKLIB through 2.4.3 contains an off-by-one out-of-bounds read vulnerability in the decodessr3 function at src/rtcm3.c:1446 that allows remote attackers to trigger a global buffer overflow via crafted RTCM3 SSR messages with attacker-controlled signal mode fields. Remote attackers can exploit thi...

6.9CVSS6.2AI score0.00325EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/06/25 5:24 a.m.7 views

CVE-2026-12490

When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client certificate is needed when the request comes in over TLS over the regular tls-port and not the tls-auth-port or over over TCP over the regular...

8.2CVSS5.8AI score0.00139EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2026/06/17 1:20 p.m.9 views

CVE-2026-55706

sppppapinput in sys/net/ifspppsubr.c in OpenBSD before 076e2b1 allows authentication bypass via certain zero values for lengths...

8.3CVSS0.00211EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2026/06/12 2:42 p.m.13 views

CVE-2026-48059

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, the HAProxy PROXY protocol v2 codec in netty leaks native or heap memory on every connection when a client sends a syntactically valid header containing nest...

8.7CVSS5.5AI score0.00606EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/12 2:10 p.m.12 views

CVE-2026-45416

Netty is a network application framework for development of protocol servers and clients. Prior to versions 4.1.135.Final and 4.2.15.Final, SslClientHelloHandler.decode reads the 24-bit TLS handshake length and, when the ClientHello does not fit in the first record, eagerly allocates...

7.5CVSS5.5AI score0.00461EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/12 12:0 a.m.16 views

EulerOS Virtualization 2.13.0 : kernel (EulerOS-SA-2026-2400)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : iommu/sva: invalidate stale IOTLB entries for kernel address spaceCVE-2025-71202 iommu: disable SVA when CONFIGX86 is...

9.8CVSS6.2AI score0.96267EPSS
Exploits232References84
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.13 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS : QEMU vulnerabilities (USN-8412-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8412-1 advisory. Felipe Franciosi, Raphael Norwitz, and Peter Turschmid discovered that the iSCSI block driver in QEMU incorrectly...

8.2CVSS8.2AI score0.04018EPSS
Exploits10References40
Redos
Redos
added 2026/06/11 12:0 a.m.8 views

ROS-20260611-73-0039

The vulnerability of the Linux operating system’s network protocol implementation is related to the repeated release of memory. Exploiting this vulnerability can allow an attacker to increase their privileges and cause service interruptions...

7.8CVSS5.3AI score0.00269EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.17 views

Ubuntu 20.04 LTS : Linux kernel (Azure FIPS) vulnerabilities (USN-7939-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7939-2 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation betwee...

7.8CVSS8.1AI score0.01345EPSS
Exploits8References24
EUVD
EUVD
added 2026/06/10 12:42 p.m.12 views

EUVD-2026-36017

Ghidra before 12.1 contains a SQL injection vulnerability in BSim filter types that concatenate user-supplied values directly into SQL queries without escaping or parameterization. Remote attackers can inject arbitrary SQL via the BSim network query protocol to read, modify, or delete data in the...

8.8CVSS5.8AI score0.00309EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/10 12:42 p.m.43 views

CVE-2026-52758 Ghidra < 12.1 - SQL Injection via Unescaped Filter Values in BSim Search

Ghidra before 12.1 contains a SQL injection vulnerability in BSim filter types that concatenate user-supplied values directly into SQL queries without escaping or parameterization. Remote attackers can inject arbitrary SQL via the BSim network query protocol to read, modify, or delete data in the...

8.8CVSS0.00309EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.19 views

PT-2026-48418

Name of the Vulnerable Software and Affected Versions Ghidra versions prior to 12.1 Description BSim filter types concatenate user-supplied values directly into SQL queries without escaping or parameterization. This allows remote attackers to inject arbitrary SQL via the BSim network query protoc...

8.8CVSS5.7AI score0.00309EPSS
Exploits0References7
NVD
NVD
added 2026/06/09 5:17 p.m.10 views

CVE-2026-42915

Incorrect calculation of buffer size in Windows VMSwitch allows an authorized attacker to deny service locally...

5.5CVSS0.00383EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/09 5:6 p.m.34 views

CVE-2026-42915 Microsoft Windows VMSwitch Denial of Service Vulnerability

...

5.5CVSS0.00383EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/09 5:6 p.m.13 views

EUVD-2026-35727

Incorrect calculation of buffer size in Windows TCP/IP allows an authorized attacker to deny service over an adjacent network...

5.7CVSS5.7AI score0.00383EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/09 5:6 p.m.11 views

CVE-2026-42915 Microsoft Windows VMSwitch Denial of Service Vulnerability

...

5.5CVSS5.1AI score0.00383EPSS
Exploits0References1
OSV
OSV
added 2026/06/09 12:25 p.m.4 views

CVE-2026-46330 Revert "net/smc: Introduce TCP ULP support"

In the Linux kernel, the following vulnerability has been resolved: Revert "net/smc: Introduce TCP ULP support" This reverts commit d7cd421da9da2cc7b4d25b8537f66db5c8331c40. As reported by Al Viro, the TCP ULP support for SMC is fundamentally broken. The implementation attempts to convert an acti...

7.8CVSS6.5AI score0.00112EPSS
Exploits0References5
Rows per page
Query Builder