Lucene search
K

10 matches found

Cvelist
Cvelist
•added 2026/06/22 2:0 a.m.•31 views

CVE-2026-8918

A permissive list of allowed inputs in ASUS Armoury Crate allows a local administrator to perform arbitrary memory read/write operations or cause a system crash BSOD by bypassing the validation mechanism.Refer to the ' Security Update for Armoury Crate App ' section on the ASUS Security Advisory...

7.1CVSS0.00224EPSS
Exploits0References1
Positive Technologies
Positive Technologies
•added 2026/06/22 12:0 a.m.•13 views

PT-2026-51273

Name of the Vulnerable Software and Affected Versions ASUS Armoury Crate affected versions not specified Description A permissive list of allowed inputs allows a local administrator to bypass the validation mechanism. This can lead to arbitrary memory read/write operations or cause a system crash...

7.1CVSS5.9AI score0.00224EPSS
Exploits0References9
Snyk
Snyk
•added 2026/04/03 3:46 a.m.•6 views

Permissive List of Allowed Inputs

Overview dompurify is a DOM-only XSS sanitizer for HTML, MathML and SVG. Affected versions of this package are vulnerable to Permissive List of Allowed Inputs in the ADDATTR predicate function via EXTRAELEMENTHANDLING.attributeCheck. An attacker can inject and execute malicious scripts in the DOM...

6.1CVSS6AI score
Exploits0References2
Snyk
Snyk
•added 2026/04/03 3:46 a.m.•6 views

Permissive List of Allowed Inputs

Overview org.webjars.npm:dompurify is a DOM-only XSS sanitizer for HTML, MathML and SVG. Affected versions of this package are vulnerable to Permissive List of Allowed Inputs in the ADDATTR predicate function via EXTRAELEMENTHANDLING.attributeCheck. An attacker can inject and execute malicious...

6.1CVSS6AI score
Exploits0References2
Snyk
Snyk
•added 2026/03/27 5:56 p.m.•3 views

Permissive List of Allowed Inputs

Overview express-xss-sanitizer is an Express 4.x middleware which sanitizes user input data in req.body, req.query, req.headers and req.params to prevent Cross Site Scripting XSS attack. Affected versions of this package are vulnerable to Permissive List of Allowed Inputs through the...

8.8CVSS5.9AI score0.00382EPSS
Exploits1References3
Snyk
Snyk
•added 2026/03/05 12:12 a.m.•4 views

Permissive List of Allowed Inputs

Overview @backstage/plugin-techdocs-node is a Common node.js functionalities for TechDocs, to be shared between techdocs-backend plugin and techdocs-cli Affected versions of this package are vulnerable to Permissive List of Allowed Inputs via the processing of the mkdocs.yml configuration file...

9.8CVSS6AI score0.00782EPSS
Exploits0References2
ICS
ICS
•added 2024/10/08 12:0 a.m.•33 views

Siemens SINEC Security Monitor

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

9.9CVSS8.2AI score0.0083EPSS
Exploits0References10
OSV
OSV
•added 2023/04/11 5:15 p.m.•1 views

CVE-2022-42469

A permissive list of allowed inputs vulnerability CWE-183 in FortiGate version 7.2.3 and below, version 7.0.9 and below Policy-based NGFW Mode may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal...

4.3CVSS5.8AI score0.00437EPSS
Exploits0References1
Prion
Prion
•added 2023/04/11 5:15 p.m.•16 views

Code injection

A permissive list of allowed inputs vulnerability CWE-183 in FortiGate version 7.2.3 and below, version 7.0.9 and below Policy-based NGFW Mode may allow an authenticated SSL-VPN user to bypass the policy via bookmarks in the web portal...

4CVSS4.5AI score0.00437EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
•added 2022/10/06 6:32 p.m.•4 views

dpdk: DoS when a Vhost header crosses more than two descriptors and exhausts all mbufs

A permissive list of allowed inputs flaw was found in DPDK. This issue allows a remote attacker to cause a denial of service triggered by sending a crafted Vhost header to DPDK...

8.6CVSS7.1AI score0.01772EPSS
Exploits1References5
Rows per page
Query Builder