Lucene search
K

69 matches found

RedHat Linux
RedHat Linux
added 2026/06/04 4:16 p.m.21 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.91 bug fix and security update

Red Hat OpenShift Container Platform release 4.12.91 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

9.1CVSS5.8AI score0.01557EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.12 views

PT-2026-43499

Name of the Vulnerable Software and Affected Versions My Email Shortcode versions prior to 0.92 Description The plugin is subject to Stored Cross-Site Scripting, a flaw where malicious scripts are permanently stored on the target server. This occurs due to insufficient input sanitization and outp...

6.4CVSS6AI score0.00187EPSS
Exploits0References6
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Firefox and Thunderbird

Through the use of reportValidity and window.open, a plain-text validation message could be displayed on another origin, potentially causing confusion for users and allowing for spoofing attacks. This vulnerability affects Firefox 93, Thunderbird 91.2, and Firefox ESR 91.2...

6.5CVSS6.8AI score0.00531EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Firefox and Thunderbird

If an attacker could control the contents of an iframe that was sandboxed using allow-popups but not allow-scripts, they could create a link that, when clicked, would cause JavaScript execution, violating the sandboxing rules. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbi...

9.6CVSS6.7AI score0.00931EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.13 views

PT-2026-37989

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

2.5CVSS6.5AI score0.00303EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/02/25 9:16 p.m.5 views

CVE-2026-1725

GitLab has remediated an issue in GitLab CE/EE affecting versions from 18.9 before 18.9.1 that could have under certain conditions, allowed an unauthenticated user to cause denial of service by sending specially crafted requests to a CI jobs API endpoint...

7.5CVSS5.9AI score0.0035EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.12 views

GitLab CE/EE 安全漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of the American company GitLab. GitLab Enterprise Edition is a content management system. GitLab Community Edition is a community version of GitLab. Versions of GitLab CE/EE prior to 18.9.1 contained a security...

7.5CVSS5.8AI score0.0035EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : thunderbird-91.2.0-1.el8.ML.1 (AXSA:2021-2482:19)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2482:19 advisory. Mozilla: Use-after-free in MessageTask CVE-2021-38496 Mozilla: Memory safety bugs fixed in Firefox 93, Firefox ESR 78.15, and Firefox ESR 91.2...

9.8CVSS8.3AI score0.01923EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/31 8:7 p.m.25 views

CVE-2025-47566 WordPress ZoomSounds plugin <= 6.91 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ZoomSounds allows Reflected XSS.This issue affects ZoomSounds: from n/a through 6.91...

7.1CVSS0.00149EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2021-29987

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - After requesting multiple permissions, and closing the first permission panel, subsequent permission panels will be displayed in a different position but still...

6.5CVSS7.6AI score0.00945EPSS
Exploits0References2
CVE
CVE
added 2025/06/18 11:3 a.m.83 views

CVE-2022-50191

CVE-2022-50191 affects the Linux kernel regulator subsystem (of:), describing a refcount leak in the handling of of_get_regulation_constraints(). The remedy is a fixed lifecycle management: call of_node_put() on the reference returned by of_get_child_by_name() which had its refcount increased. Co...

5.5CVSS6.5AI score0.0021EPSS
Exploits0References8Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.10 views

CVE-2024-42552

Hotel Management System commit 91caab8 was discovered to contain a SQL injection vulnerability via the bookid parameter at adminroomhistory.php...

8.6CVSS8.3AI score0.00529EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:20 a.m.4 views

SUSE CVE-2018-21008

An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsimac80211detach in the file drivers/net/wireless/rsi/rsi91xmac80211.c...

5.6CVSS7.1AI score0.00566EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:42 a.m.3 views

SUSE CVE-2021-29983

Firefox for Android could get stuck in fullscreen mode and not exit it even after normal interactions that should cause it to exit. Note: This issue only affected Firefox for Android. Other operating systems are unaffected.. This vulnerability affects Firefox 91...

6.5CVSS8.4AI score0.00685EPSS
Exploits0References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:42 a.m.3 views

SUSE CVE-2021-29985

A use-after-free vulnerability in media channels could have led to memory corruption and a potentially exploitable crash. This vulnerability affects Thunderbird 78.13, Thunderbird 91, Firefox ESR 78.13, and Firefox 91...

6.1CVSS9.3AI score0.01451EPSS
Exploits1References21
SUSE CVE
SUSE CVE
added 2023/02/15 3:42 a.m.4 views

SUSE CVE-2021-29990

Mozilla developers and community members reported memory safety bugs present in Firefox 90. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox 91...

8.8CVSS9.4AI score0.01009EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2023/02/15 3:38 a.m.4 views

SUSE CVE-2021-38493

Mozilla developers reported memory safety bugs present in Firefox 91 and Firefox ESR 78.13. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR 78.14,...

7.5CVSS9.5AI score0.01205EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 3:26 a.m.4 views

SUSE CVE-2022-29917

Mozilla developers Andrew McCreight, Gabriele Svelto, Tom Ritter and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 99 and Firefox ESR 91.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been...

7.5CVSS9.6AI score0.01005EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.1 views

PT-2023-35145 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue is related to a potential security vulnerability in the Linux Kernel. It was introduced in version v2.6.28 and fixed in version v5.15.91. The actual impact and attack plausibility...

7.2AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.3 views

PT-2023-35136 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.91 Description: The issue concerns a potential Spectre v1 gadget in the netlink component. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions pri...

7.2AI score
Exploits0References1
Rows per page
Query Builder