2173 matches found
CVE-2025-50164
Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...
CVE-2025-24999
Improper access control in SQL Server allows an authorized attacker to elevate privileges over a network...
CVE-2025-53144
CVE-2025-53144 is a Windows Message Queuing (MSMQ) remote code execution vulnerability caused by a type confusion flaw in MSMQ. The issue allows an attacker to execute code over the network on a affected Windows host when MSMQ is reachable; CVSSv3.1 indicates AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H w...
Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an authorized attacker to execute code over a network...
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...
PT-2025-32800
Name of the Vulnerable Software and Affected Versions: Windows versions affected versions not specified Description: A race condition exists due to improper synchronization when using shared resources within the Windows Win32K - GRFX component. This allows an authorized attacker to elevate...
PT-2025-32771 · Microsoft · Windows Nt Rras +1
Name of the Vulnerable Software and Affected Versions: Windows Routing and Remote Access Service RRAS affected versions not specified Description: A heap-based buffer overflow exists in Windows Routing and Remote Access Service RRAS. This issue allows an unauthorized attacker to execute code over...
Linux Distros Unpatched Vulnerability : CVE-2025-21536
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.39 and prior, 8.4.2 and pri...
PT-2025-32742 · Microsoft · Exchange Server
Name of the Vulnerable Software and Affected Versions: Microsoft Exchange Server affected versions not specified Description: Improper validation of syntactic correctness of input allows an unauthorized attacker to perform spoofing over a network. Recommendations: At the moment, there is no...
PT-2025-32759 · Microsoft · Sql Server
Name of the Vulnerable Software and Affected Versions: SQL Server affected versions not specified Description: The software contains an improper neutralization of special elements used in an SQL command, leading to a potential SQL injection issue. This allows an authorized attacker to elevate...
PT-2025-32795 · Microsoft · Windows Directx +1
Name of the Vulnerable Software and Affected Versions: Windows DirectX affected versions not specified Description: Allocation of resources without limits or throttling in Windows DirectX allows an authorized attacker to deny service over a network. Recommendations: At the moment, there is no...
Linux Distros Unpatched Vulnerability : CVE-2022-21423
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.28 and prior. Easily exploitable...
Linux Distros Unpatched Vulnerability : CVE-2021-2020
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily...
Linux Distros Unpatched Vulnerability : CVE-2022-21462
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily...
CVE-2025-52586
The MOD3 command traffic between the monitoring application and the inverter is transmitted in plaintext without encryption or obfuscation. This vulnerability may allow an attacker with access to a local network to intercept, manipulate, replay, or forge critical data, including read/write...
CVE-2025-52586 EG4 Electronics EG4 Inverters Cleartext Transmission of Sensitive Information
The MOD3 command traffic between the monitoring application and the inverter is transmitted in plaintext without encryption or obfuscation. This vulnerability may allow an attacker with access to a local network to intercept, manipulate, replay, or forge critical data, including read/write...
Linux Distros Unpatched Vulnerability : CVE-2024-21238
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Thread Pooling. Supported versions that are affected are 8.0.39 and prior, 8.4.1 an...
Linux Distros Unpatched Vulnerability : CVE-2025-30682
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and...
Linux Distros Unpatched Vulnerability : CVE-2021-35635
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily...