CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2025/06/18 10:15 a.m.•2 views

CVE-2025-38066

In the Linux kernel, the following vulnerability has been resolved: dm cache: prevent BUGON by blocking retries on failed device resumes A cache device failing to resume due to mapping errors should not be retried, as the failure leaves a partially initialized policy object. Repeating the resume...

5.5CVSS0.00079EPSS

Exploits0References10

Cvelist•added 2025/06/18 9:33 a.m.•5 views

CVE-2025-38066 dm cache: prevent BUG_ON by blocking retries on failed device resumes

0.00079EPSS

Exploits0References8

Securelist•added 2025/01/31 10:0 a.m.•8 views

One policy to rule them all

Windows group policies are a powerful management tool that allows administrators to define and control user and computer settings within a domain environment in a centralized manner. While group policies offer functionality and utility, they are unfortunately a prime target for attackers. In...

Pen Test Partners Blog•added 2024/09/12 5:16 a.m.•11 views

Living off the land, GPO style

TL;DR The ability to edit Group Policy Object GPOs from non-domain joined computers using the native Group Policy editor has been on my list for a long time. This blog post takes a deep dive into what steps were taken to find out why domain joined machines are needed in the first place and what...

7.4AI score

NVD•added 2024/06/20 5:15 p.m.•25 views

CVE-2024-37344

There is a cross-site scripting vulnerability in the Policy management UI of Absolute Secure Access prior to version 13.06. Attackers with system administrator permissions can interfere with another system administrator’s use of the policy management UI when the administrators are editing the sam...

4.5CVSS0.00186EPSS

OSV•added 2024/06/20 5:15 p.m.•1 views

CVE-2024-37344

3.4CVSS5.7AI score0.00186EPSS

Cvelist•added 2024/06/20 4:38 p.m.•14 views

CVE-2024-37344 Cross-site scripting vulnerability in the Absolute Secure Access administrative console prior to 13.06

4.5CVSS0.00186EPSS

Vulnrichment•added 2024/06/20 4:38 p.m.•14 views

CVE-2024-37344 Cross-site scripting vulnerability in the Absolute Secure Access administrative console prior to 13.06

4.5CVSS6.2AI score0.00186EPSS

Positive Technologies•added 2024/06/20 12:0 a.m.•2 views

PT-2024-27487 · Absolute · Absolute Secure Access

Name of the Vulnerable Software and Affected Versions: Absolute Secure Access versions prior to 13.06 Description: The issue is a cross-site scripting vulnerability in the Policy management UI of Absolute Secure Access. Attackers with system administrator permissions can interfere with another...

4.5CVSS6.4AI score0.00186EPSS

Exploits0References7

Citrix•added 2023/04/21 12:0 a.m.•4 views

Unable to import GPO into Workspace Environment Management service - Invalid Zip file

When trying to import a GPO into WEM console in Citrix Cloud Web console, users get an error stating "Invalid ZIP file. Replace your file and try again"...

6.9AI score

OpenVAS•added 2022/01/28 12:0 a.m.•25 views

Mageia: Security Advisory (MGASA-2014-0536)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.5CVSS6.8AI score0.00548EPSS

Exploits0References4

Citrix•added 2021/07/29 12:0 a.m.•5 views

How to Customize App Shortcuts with Receiver for Windows

As a Receiver administrator, you can configure Receiver for Windows 4.2.100 to automatically place application and desktop shortcuts directly in the Start menu or on the desktop in a similar way that Receiver for Windows 3.4 Enterprise places them. The new shortcut only mode provides a seamless...

6.7AI score

Securelist•added 2021/07/08 5:0 a.m.•3870 views

Quick look at CVE-2021-1675 & CVE-2021-34527 (aka PrintNightmare)

Summary Last week Microsoft warned Windows users about vulnerabilities in the Windows Print Spooler service – CVE-2021-1675 and CVE-2021-34527 also known as PrintNightmare. Both vulnerabilities can be used by an attacker with a regular user account to take control of a vulnerable server or client...

9.3CVSS0.7AI score0.94314EPSS

Exploits75

Citrix•added 2021/05/12 12:0 a.m.•9 views

Citrix Workspace App - Duplicate published app icons showing up in the endpoints

The customer recently deployed CWA through all company’s workstations and created a GPO to push the Store to CWA in the machines He noticed after the deployment that the endpoints and CWA show a duplicate of each published app Also, CWA shows two stores of the same name...

Kitploit•added 2021/04/03 11:30 a.m.•74 views

SharpGPOAbuse - Tool To Take Advantage Of A User'S Edit Rights On A Group Policy Object (GPO) In Order To Compromise The Objects That Are Controlled By That GPO

SharpGPOAbuse is a .NET application written in C that can be used to take advantage of a user's edit rights on a Group Policy Object GPO in order to compromise the objects that are controlled by that GPO. More details can be found at the following blog post:...

Microsoft Malware Protection•added 2021/01/21 5:0 p.m.•60 views

The dynamic duo: How to build a red and blue team to strengthen your cybersecurity, Part 2

The security community is continuously changing, growing, and learning from each other to better position the world against cyber threats. In the first post of our new Voice of the Community blog series, Microsoft Product Marketing Manager Natalia Godyla talks with Jake Williams, Founder of...