Lucene search
K

440 matches found

Vulnrichment
Vulnrichment
added 2026/01/13 11:7 p.m.1 views

CVE-2026-0716 Libsoup: out-of-bounds read in libsoup websocket frame processing

A flaw was found in libsoup’s WebSocket frame processing when handling incoming messages. If a non-default configuration is used where the maximum incoming payload size is unset, the library may read memory outside the intended bounds. This can cause unintended memory exposure or a crash...

4.8CVSS6.1AI score0.00257EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.21 views

CVE-2019-18935

Progress Telerik UI for ASP.NET AJAX through 2019.3.1023 contains a .NET deserialization vulnerability in the RadAsyncUpload function. This is exploitable when the encryption keys are known due to the presence of CVE-2017-11317 or CVE-2017-11357, or other means. Exploitation can result in remote...

9.8CVSS9.9AI score0.99737EPSS
Exploits20References1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-2637

Name of the Vulnerable Software and Affected Versions libsoup2.4, libsoup3 affected versions not specified Description A flaw exists in libsoup’s WebSocket frame processing when handling incoming messages. When the maximum incoming payload size is not set to a default value, the library may read...

8.6CVSS6.5AI score0.00947EPSS
Exploits3References78
Vulnrichment
Vulnrichment
added 2025/12/25 12:0 a.m.5 views

CVE-2025-66443

Pexip Infinity 35.0 through 38.1 before 39.0, in non-default configurations that use Direct Media for WebRTC, has Improper Input Validation in signalling that allows an attacker to trigger a software abort, resulting in a temporary denial of service...

7.5CVSS6.4AI score0.00268EPSS
Exploits0References1
OSV
OSV
added 2025/12/03 11:44 a.m.4 views

BIT-NGINX-AGENT-2023-1550 NGINX Agent vulnerability CVE-2023-1550

Insertion of Sensitive Information into log file vulnerability in NGINX Agent. NGINX Agent version 2.0 before 2.23.3 inserts sensitive information into a log file. An authenticated attacker with local access to read agent log files may gain access to private keys. This issue is only exposed when...

5.5CVSS6AI score0.00218EPSS
Exploits0References3
NVD
NVD
added 2025/11/04 11:15 p.m.8 views

CVE-2025-59595

CVE-2025-59595 is an internally discovered denial of service vulnerability in versions of Secure Access prior to 14.12. An attacker can send a specially crafted packet to a server in a non-default configuration and cause the server to crash...

8.2CVSS0.00329EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/04 10:46 p.m.4 views

CVE-2025-59595

CVE-2025-59595 is an internally discovered denial of service vulnerability in versions of Secure Access prior to 14.12. An attacker can send a specially crafted packet to a server in a non-default configuration and cause the server to crash...

8.2CVSS6.2AI score0.00329EPSS
Exploits0References1
CVE
CVE
added 2025/11/04 10:46 p.m.16 views

CVE-2025-59595

CVE-2025-59595 is a denial-of-service vulnerability in Secure Access versions prior to 14.12. An attacker can send a specially crafted packet to a server configured in a non-default way, causing the server to crash. Affected software/functionality: Secure Access (before 14.12). Root cause: descri...

8.2CVSS6.3AI score0.00329EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/11/04 10:46 p.m.9 views

CVE-2025-59595

CVE-2025-59595 is an internally discovered denial of service vulnerability in versions of Secure Access prior to 14.12. An attacker can send a specially crafted packet to a server in a non-default configuration and cause the server to crash...

8.2CVSS0.00329EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.11 views

PT-2025-45058

Name of the Vulnerable Software and Affected Versions Fortinet Secure Access versions prior to 14.12 Description This is a denial of service issue discovered internally. An attacker can send a specially crafted packet to a server configured in a non-default manner, leading to a server crash...

8.2CVSS6.6AI score0.00329EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.6 views

Ping Identity PingFederate 安全漏洞

Ping Identity PingFederate is a flagship software-based federation server from US-based Ping Identity, Inc. for identity management. A security vulnerability exists in Ping Identity PingFederate that stems from the HTML Form Adapter accidentally rendering authentication forms in a non-default no...

6.7AI score0.00341EPSS
Exploits0References3
CNVD
CNVD
added 2025/10/17 12:0 a.m.5 views

F5 BIG-IP TMM Denial of Service Vulnerability

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, and remote access policy management. A denial-of-service vulnerability exists in BIG-IP's TMM Traffic Management Microkernel module, which arises because specific...

8.2CVSS6.8AI score0.00324EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/15 1:55 p.m.30 views

CVE-2025-58096 BIG-IP TMM vulnerability

When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.2CVSS0.00324EPSS
Exploits0References1
CVE
CVE
added 2025/10/15 1:55 p.m.27 views

CVE-2025-58096

CVE-2025-58096 affects BIG-IP TMM: when tm.tcpudptxchecksum is configured as non-default Software-only, undisclosed traffic can terminate TMM, causing DoS on the BIG-IP device. Public sources confirm this vulnerability across BIG-IP versions and provide remediation guidance. Affected BIG-IP branc...

8.2CVSS6.4AI score0.00324EPSS
Exploits0References1Affected Software21
Vulnrichment
Vulnrichment
added 2025/10/15 1:55 p.m.4 views

CVE-2025-58096 BIG-IP TMM vulnerability

When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.2CVSS6.4AI score0.00324EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.5 views

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000156691)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156691 advisory. When the database variabletm.tcpudptxchecksumis configured as non-default valueSoftware-only...

8.2CVSS5.6AI score0.00324EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-0719

Malware in sbrugna...

4.7CVSS6.5AI score0.01189EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-16209

Malware in sbrugna...

9.1CVSS8.9AI score0.01308EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2018-17201

Malware in sbrugna...

6.3CVSS6AI score0.00602EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-15068

Malware in sbrugna...

7.5CVSS7.8AI score0.01425EPSS
Exploits0References2
Rows per page
Query Builder