Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/26 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-2227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control in the runner jobs API in GitLab CE/EE affecting all versions prior to 14.10.5, 15.0 prior to 15.0.4, and 15.1 prior to 15.1.1 allows a...

4.3CVSS5AI score0.00732EPSS
Exploits0References2
OSV
OSV
added 2025/07/15 9:15 p.m.6 views

AZL-65333 CVE-2025-53906 affecting package vim for versions less than 9.1.1552-1

Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim’s zip.vim plugin can allow overwriting of arbitrary files when opening specially crafted zip archives. Impact is low because this exploit requires direct user interaction. However, successful...

4.1CVSS7AI score0.00731EPSS
Exploits1References1
OSV
OSV
added 2025/03/13 5:15 p.m.4 views

ALPINE-CVE-2025-29768

Vim, a text editor, is vulnerable to potential data loss with zip.vim and special crafted zip files in versions prior to 9.1.1198. The impact is medium because a user must be made to view such an archive with Vim and then press 'x' on such a strange filename. The issue has been fixed as of Vim...

4.4CVSS6.8AI score0.00342EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/15 12:0 a.m.9 views

PT-2025-4699

Name of the Vulnerable Software and Affected Versions ComMotion Course Booking System versions prior to 6.0.5 Description The issue is related to the improper neutralization of special elements used in an SQL command, allowing SQL injection. This enables unauthorized access to the system...

9.3CVSS7.5AI score0.02847EPSS
Exploits1References7
GithubExploit
GithubExploit
added 2024/09/01 10:59 a.m.138 views

Exploit for CVE-2024-7954

Description The porteplume plugin used by SPIP before 4.30-...

9.8CVSS8.4AI score0.89947EPSS
Exploits10
OSV
OSV
added 2024/04/23 12:0 a.m.5 views

UBUNTU-CVE-2024-32459

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. No known workarounds are available...

9.8CVSS7.3AI score0.0375EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2022/02/08 12:0 a.m.4 views

PT-2022-7070 · Unknown · Linuxasmcallgraph

Name of the Vulnerable Software and Affected Versions: LinuxASMCallGraph versions prior to commit 20dba06bd1a3cf260612d4f21547c25002121cd5 Description: The issue is related to incorrect filtering rules of uploaded files, allowing attackers to cause remote code execution on the server side via...

9.8CVSS9.7AI score0.00927EPSS
Exploits0References9
CNVD
CNVD
added 2020/06/04 12:0 a.m.3 views

Cisco Identity Services Engine Denial of Service Vulnerability (CNVD-2020-36263)

Cisco Identity Services Engine ISE is an identity-based environment awareness platform ISE Identity Services Engine from Cisco. The platform collects real-time information from the network, users and devices, and develops and enforces policies to regulate the network. A denial of service...

5.9CVSS6.5AI score0.0076EPSS
Exploits0References1
OSV
OSV
added 2018/03/12 5:29 p.m.4 views

CVE-2018-1206

Dell EMC Data Protection Advisor versions prior to 6.3 Patch 159 and Dell EMC Data Protection Advisor versions prior to 6.4 Patch 110 contain a hardcoded database account with administrative privileges. The affected account is "apollosuperuser." An attacker with local access to the server where D...

7.8CVSS5.8AI score0.00359EPSS
Exploits0References3
OSV
OSV
added 2017/11/22 7:29 p.m.7 views

CVE-2017-8208

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has...

7.8CVSS6.3AI score0.01001EPSS
Exploits0References1
OSV
OSV
added 2016/10/21 5:59 p.m.4 views

CVE-2016-0236

IBM Security Guardium Database Activity Monitor 8.2 before p310, 9.x through 9.5 before p700, and 10.x through 10.1 before p100 allows remote authenticated users to execute arbitrary commands with root privileges via the search field...

8.8CVSS6AI score0.0255EPSS
Exploits0References2
Rows per page
Query Builder