Lucene search
K

147 matches found

Cvelist
Cvelist
added 2024/12/24 11:28 a.m.21 views

CVE-2024-53150 ALSA: usb-audio: Fix out of bounds reads when finding clock sources

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix out of bounds reads when finding clock sources The current USB-audio driver code doesn't check bLength of each descriptor at traversing for clock descriptors. That is, when a device provides a bogus descripto...

0.01325EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/12/19 1:39 a.m.19 views

CVE-2022-27595 QVPN Device Client

An insecure library loading vulnerability has been reported to affect QVPN Device Client. If exploited, the vulnerability could allow local attackers who have gained user access to execute unauthorized code or commands. We have already fixed the vulnerability in the following versions: QVPN Windo...

7.8CVSS7.1AI score0.00163EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/12/12 6:53 p.m.15 views

CVE-2024-55663 XWiki Platform has an SQL injection in getdocuments.vm with sort parameter

XWiki Platform is a generic wiki platform. Starting in version 6.3-milestone-2 and prior to versions 13.10.5 and 14.3-rc-1, in getdocument.vm; the ordering of the returned documents is defined from an unsanitized request parameter request.sort and can allow any user to inject HQL. Depending on th...

8.6CVSS6.4AI score0.00732EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2024/11/25 12:0 a.m.280 views

pam:1.5.1 security update

1.5.1-22.0.1 - pamaccess: clean up the remote host matching code Orabug: 36771903 - pamlimits: fix use after free in pamsmopensession Orabug: 36406534 1.5.1-22 - pamaccess: rework resolving of tokens as hostname. Resolves: CVE-2024-10963 and RHEL-66245 1.5.1-21 - pamunix: always run the helper to...

7.4CVSS7.8AI score0.00798EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/25 12:0 a.m.17 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2024-2929)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : RDMA/ibsrp: Fix a deadlockCVE-2022-48930 netfilter: fix use-after-free in nfregisternethookCVE-2022-48912 protect the fetch of -fdfd in dodup2 fro...

8.4CVSS7.1AI score0.0032EPSS
Exploits1References44
Oracle linux
Oracle linux
added 2024/10/14 12:0 a.m.45 views

Unbreakable Enterprise kernel-container security update

5.4.17-2136.336.5.1 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37138988 5.4.17-2136.336.5 - uek-rpm: Add skxedaccommon.ko to nanomodules Sherry Yang Orabug: 37030127 - EDAC, i10nm: make skxcommon.o a separate module Arnd Bergmann Orabug: 37030127 - uek-rpm:...

7.8CVSS8.3AI score0.00398EPSS
Exploits4
Patchstack
Patchstack
added 2024/09/25 11:6 a.m.4 views

WordPress Bit Form plugin <= 2.13.10 - Arbitrary File Upload vulnerability

Arbitrary File Upload vulnerability discovered by Minh Giang & Christopher Houk Patchstack Alliance in WordPress Plugin Bit Form versions = 2.13.10...

8CVSS7AI score0.00426EPSS
Exploits0Affected Software1
Openbugbounty
Openbugbounty
added 2024/04/26 2:15 p.m.7 views

linkedinformed.libsyn.com Cross Site Scripting vulnerability OBB-3922042

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/04/11 3:26 p.m.8 views

stichtingkoryo.nl Cross Site Scripting vulnerability OBB-3916806

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2024/03/29 9:13 a.m.12 views

CVE-2023-52629 sh: push-switch: Reorder cleanup operations to avoid use-after-free bug

In the Linux kernel, the following vulnerability has been resolved: sh: push-switch: Reorder cleanup operations to avoid use-after-free bug The original code puts flushwork before timershutdownsync in switchdrvremove. Although we use flushwork to stop the worker, it could be rescheduled in...

8.4CVSS6.2AI score0.00242EPSS
Exploits0References5
Openbugbounty
Openbugbounty
added 2023/12/20 5:6 p.m.6 views

kdsystem.de Improper Access Control vulnerability OBB-3819184

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/11/10 10:25 p.m.8 views

nolting-eckhardt.de Improper Access Control vulnerability OBB-3776932

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.9AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/09/20 11:52 a.m.11 views

nancylucina.com Cross Site Scripting vulnerability OBB-3699576

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/07/21 8:5 a.m.18 views

rentreplica.se Cross Site Scripting vulnerability OBB-3534393

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/07/14 8:58 a.m.21 views

evishine.dk Cross Site Scripting vulnerability OBB-3515910

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/06/21 12:47 a.m.11 views

test-hi.hawk.de Cross Site Scripting vulnerability OBB-3451353

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

10AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/05/17 12:58 a.m.7 views

webutations.org Cross Site Scripting vulnerability OBB-3346092

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/05/15 12:1 a.m.11 views

ufvinternational.com Cross Site Scripting vulnerability OBB-3335519

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.3 views

PT-2025-26019 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc3-00004-g0e862838f290 Description: A vulnerability in the Linux kernel has been resolved, which could lead to invalid memory access via node onlineNUMA NO NODE. The issue occurs when pxm to node returns...

8.8CVSS5.9AI score0.12746EPSS
Exploits32References1115
Openbugbounty
Openbugbounty
added 2023/03/15 5:38 a.m.14 views

wiki.merionet.ru Cross Site Scripting vulnerability OBB-3222955

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Rows per page
Query Builder