Lucene search
+L

318 matches found

CVE
CVE
added 2025/05/06 8:31 a.m.87 views

CVE-2025-4341

D-Link DIR-880L up to firmware 104WWb01 contains a command-injection vulnerability in the Request Header Handler’s /htdocs/ssdpcgi, specifically the sub_16570 function. Input arguments HTTP_ST/REMOTE_ADDR/REMOTE_PORT/SERVER_ID can be manipulated to achieve remote code execution; the exploit has b...

9.8CVSS7AI score0.17961EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2025/04/16 5:15 p.m.13 views

CVE-2025-3735

Vulnerability in Drupal Panelizer obsolete.This issue affects Panelizer obsolete:...

5.9CVSS0.00297EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/16 4:31 p.m.51 views

CVE-2025-3735 Panelizer (obsolete) - Critical - Unsupported - SA-CONTRIB-2025-036

Vulnerability in Drupal Panelizer obsolete.This issue affects Panelizer obsolete:...

0.00297EPSS
Exploits0References1
CVE
CVE
added 2025/03/05 9:32 p.m.59 views

CVE-2025-27508

Emissary (CVE-2025-27508) uses a ChecksumCalculator that defaults to weak cryptographic algorithms (SHA-1, CRC32, SSDEEP). The issue may undermine cryptographic guarantees in contexts requiring strong integrity, with potential collision risks or tampering awareness. The problem is documented acro...

7.5CVSS7AI score0.00194EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/01 12:0 a.m.43 views

Oracle Linux 9 : emacs (ELSA-2025-1915)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-1915 advisory. 1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025 Tenable has extracted the...

8.8CVSS7.9AI score0.0256EPSS
Exploits0References2
OSV
OSV
added 2025/02/28 4:38 p.m.9 views

SUSE-SU-2025:0756-1 Security update for python

This update for python fixes the following issues: - Reference to no longer used 'bracketedhost' variable in the fix for CVE-2025-0938 bsc1236705, bsc1223694...

6.3CVSS6.6AI score0.01499EPSS
Exploits0References4
Oracle linux
Oracle linux
added 2025/02/28 12:0 a.m.105 views

emacs security update

1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025...

8.8CVSS9.3AI score0.0256EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a dereference to an obsolete list iterator after a loop body in f2fs...

5.5CVSS5.3AI score0.00247EPSS
Exploits0References8
Rockylinux
Rockylinux
added 2025/02/13 8:34 p.m.25 views

curl bug fix update

An update is available for curl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The curl packages provide the libcurl library and the curl utility for downloadi...

7.2AI score
Exploits0
UbuntuCve
UbuntuCve
added 2025/02/02 1:15 a.m.7 views

CVE-2024-0131

NVIDIA GPU kernel driver for Windows and Linux contains a vulnerability where a potential user-mode attacker could read a buffer with an incorrect length. A successful exploit of this vulnerability might lead to denial of service...

4.4CVSS6AI score0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.9 views

PT-2025-1182 · Sap · Sap Netweaver Application Server Abap

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP affected versions not specified Description: The issue is related to an obsolete functionality in SAP NetWeaver Application Server ABAP that did not perform necessary authorization checks. This allows an...

4.3CVSS6.7AI score0.00265EPSS
Exploits0References9
CVE
CVE
added 2024/11/27 2:35 p.m.69 views

CVE-2024-11862

CVE-2024-11862 affects Devolutions.XTS.NET (versions 2024.11.19 and earlier). The issue is a non-constant-time cryptographic operation in the Galois Field multiplications used by XTS mode, which can enable timing attacks that render half of the encryption key obsolete and downgrade security towar...

5.1CVSS7AI score0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/27 2:35 p.m.16 views

CVE-2024-11862

Non constant time cryptographic operation in Devolutions.XTS.NET 2024.11.19 and earlier allows an attacker to render half of the encryption key obsolete via a timing attacks...

5.1CVSS0.0014EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/11/12 9:11 a.m.4 views

kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...

5.3CVSS7.2AI score0.01028EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/30 12:39 a.m.3 views

kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...

5.3CVSS7.2AI score0.01028EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/30 12:15 a.m.2 views

kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...

5.3CVSS7.2AI score0.01028EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/16 1:8 a.m.4 views

kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...

5.5CVSS7.2AI score0.00241EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/16 12:28 a.m.3 views

kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...

5.5CVSS7.2AI score0.00241EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/10/16 12:12 a.m.6 views

kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field

A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...

5.5CVSS7.2AI score0.00241EPSS
Exploits0References5
OSV
OSV
added 2024/09/30 7:15 a.m.5 views

CVE-2024-8452

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially...

7.5CVSS5.8AI score0.00176EPSS
Exploits0References2
Rows per page
Query Builder