Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-5032

Malicious code in bioql PyPI...

8CVSS7.7AI score0.01677EPSS
Exploits0References8
Packet Storm News
Packet Storm News
added 2025/05/24 12:0 a.m.8 views

MADCAT: Combating Malware Detection under Concept Drift with Test-Time Adaptation

We present MADCAT, a self-supervised approach designed to address the concept drift problem in malware detection. MADCAT employs an encoder-decoder architecture and works by test-time training of the encoder on a small, balanced subset of the test-time data using a self-supervised objective. Duri...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2024/05/17 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from old data overwriting new data...

7.1CVSS6.4AI score0.0023EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/05/17 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from marking a page as dirty even if CMPXCHG fails because old data is written back on failure, i.e. the page is...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References8
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.4 views

SUSE CVE-2018-16862

A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation removal. The new file created with the same inode may contain leftover pages from cleancache and the old file data instead of the new one...

5.3CVSS6.2AI score0.0053EPSS
Exploits0References13
OSV
OSV
added 2022/05/24 5:39 p.m.2 views

GHSA-QV6F-RCV6-6Q3X Improper handling of REST API XML deserialization errors in Jenkins

Jenkins provides XML REST APIs to configure views, jobs, and other items. When deserialization fails because of invalid data, Jenkins 2.274 and earlier, LTS 2.263.1 and earlier stores invalid object references created through these endpoints in the Old Data Monitor. If an administrator discards t...

8CVSS7.1AI score0.01677EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2022/05/24 5:39 p.m.24 views

Improper handling of REST API XML deserialization errors in Jenkins

Jenkins provides XML REST APIs to configure views, jobs, and other items. When deserialization fails because of invalid data, Jenkins 2.274 and earlier, LTS 2.263.1 and earlier stores invalid object references created through these endpoints in the Old Data Monitor. If an administrator discards t...

8CVSS2.6AI score0.01677EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2021/11/09 5:15 p.m.1 views

UBUNTU-CVE-2021-43173

In NLnet Labs Routinator prior to 0.10.2, a validation run can be delayed significantly by an RRDP repository by not answering but slowly drip-feeding bytes to keep the connection alive. This can be used to effectively stall validation. While Routinator has a configurable time-out value for RRDP...

7.5CVSS7.1AI score0.01434EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/07/22 12:0 a.m.4 views

Open-xchange OX App Suite 跨站脚本漏洞

Open-xchange OX App Suite is a set of Web-based cloud desktop environments from Open-Xchange Open-xchange USA. The environment allows users to more intuitively manage email, tasks, files, and more. A cross-site scripting vulnerability exists in OX App Suite, which stems from an XSS vulnerability...

6.1CVSS5.9AI score0.00792EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2021/03/03 12:28 p.m.6 views

jenkins: Improper handling of REST API XML deserialization errors

A flaw was found in jenkins. An attacker with permission to create or configure various objects to inject crafted content into Old Data Monitor can cause the instantiation of potentially unsafe objects once discarded by an administrator. The highest threat from this vulnerability is to data...

8CVSS5.8AI score0.01677EPSS
Exploits0References4
Veracode
Veracode
added 2021/01/14 4:24 p.m.9 views

Authorization Bypass

jenkins is vulnerable to authorization bypass. The vulnerability allows users permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

8CVSS6.4AI score0.01677EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2021/01/13 4:15 p.m.20 views

CVE-2021-21604

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

8CVSS6.4AI score
Exploits0References1
Prion
Prion
added 2021/01/13 4:15 p.m.16 views

Design/Logic Flaw

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

6CVSS7.5AI score0.01677EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/01/13 3:55 p.m.17 views

CVE-2021-21604

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

7.8AI score0.01677EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2021/01/13 3:55 p.m.32 views

CVE-2021-21604

Jenkins 2.274 and earlier, LTS 2.263.1 and earlier allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor that results in the instantiation of potentially unsafe objects once discarded by an administrator...

8CVSS7.7AI score0.01677EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/01/13 12:0 a.m.4 views

PT-2021-14647 · Jenkins · Jenkins

Name of the Vulnerable Software and Affected Versions: Jenkins versions 2.274 and earlier, LTS versions 2.263.1 and earlier Description: The issue allows attackers with permission to create or configure various objects to inject crafted content into Old Data Monitor, resulting in the instantiatio...

8CVSS7.6AI score0.01677EPSS
Exploits0References10
CISA
CISA
added 2019/07/31 12:0 a.m.12 views

CIS Releases Newsletter on Cleaning Up Data and Devices

The Center for Internet Security CIS July Newsletter reminds users to properly dispose of old or unused data and devices. Without careful management of online accounts, cloud storage, physical storage, and electronic devices, users could inadvertently disclose sensitive information that can be...

6.3AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2019/07/02 12:0 a.m.5 views

PT-2019-16921 · Ibm · Ibm Spectrum Protect +1

Name of the Vulnerable Software and Affected Versions: IBM Tivoli Storage Manager Server IBM Spectrum Protect versions 7.1 through 8.1 Description: The issue allows a local user to replace existing databases by restoring old data. Recommendations: For versions 7.1 through 8.1, update to a version...

7.1CVSS6.2AI score0.00309EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2018/11/26 7:29 p.m.5 views

CVE-2018-16862

A security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation removal. The new file created with the same inode may contain leftover pages from cleancache and the old file data instead of the new one...

5.5CVSS6.4AI score0.0053EPSS
Exploits0References17
Rows per page
Query Builder