Lucene search
K

239 matches found

Vulnrichment
Vulnrichment
added 2025/02/04 2:19 a.m.9 views

CVE-2025-22475

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...

3.7CVSS4.2AI score0.00222EPSS
Exploits0References1
CVE
CVE
added 2025/02/04 2:19 a.m.72 views

CVE-2025-22475

The CVE-2025-22475 entry describes a vulnerability in Dell PowerProtect DD where, in versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10, a use of a cryptographic primitive with a risky implementation could allow a remote attacker to tamper information. A Dell security update (DSA-2025-022) ...

7.5CVSS6.9AI score0.00222EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/02/04 2:19 a.m.25 views

CVE-2025-22475

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...

3.7CVSS0.00222EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.5 views

PT-2025-3838 · Apple · Swift Asn.1

Name of the Vulnerable Software and Affected Versions: Swift ASN.1 affected versions not specified Description: The issue is caused by a confusion in the ASN.1 library, which assumes that certain objects can only be provided in either constructed or primitive forms. This can trigger a...

7.5CVSS6.9AI score0.00319EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/12/18 12:0 a.m.4 views

PT-2024-41059 · Google · Gson

Name of the Vulnerable Software and Affected Versions: Gson affected versions not specified Description: A security exception occurs due to a crash in the com.google.gson.internal.bind.TypeAdapters$28.write function, which is related to the com.google.gson.JsonElement.isJsonPrimitive and...

7AI score
Exploits0References2
CVE
CVE
added 2024/10/31 12:0 a.m.130 views

CVE-2024-39719

CVE-2024-39719 affects Ollama up to version 0.3.14. The vulnerability arises in the /api/create CreateModel path handling, where querying a non-existent path triggers server error messages that disclose file existence, enabling an attacker to probe for files on the server. Public documentation ac...

7.5CVSS6.8AI score0.04237EPSS
Exploits2References1Affected Software1
GithubExploit
GithubExploit
added 2024/10/27 11:14 p.m.530 views

Exploit for Incorrect Conversion between Numeric Types in Linux Linux_Kernel

CVE-2022-2639 using pipe primitive CVE-2022-2639https://...

7.8CVSS5.5AI score0.00812EPSS
Exploits5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/10/16 1:12 p.m.1 views

Malicious code in primitive-ivory-sole (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/10/16 1:12 p.m.5 views

MAL-2024-9779 Malicious code in primitive-ivory-sole (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSV
OSV
added 2024/08/06 1:56 a.m.8 views

MAL-2024-7904 Malicious code in @bingads-webui-react/primitive-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff052dbe83f6d9ca607174f02e7041d3d73e86c4e7bc0fe7c885c34f3011ab72 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/08/06 1:56 a.m.6 views

Malicious code in @bingads-webui-react/primitive-utilities (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ff052dbe83f6d9ca607174f02e7041d3d73e86c4e7bc0fe7c885c34f3011ab72 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
OSV
OSV
added 2024/06/28 2:15 a.m.4 views

CVE-2024-37137

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References1
NVD
NVD
added 2024/06/28 2:15 a.m.18 views

CVE-2024-37137

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...

5.5CVSS0.00117EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/28 1:33 a.m.43 views

CVE-2024-37137

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...

3.8CVSS0.00117EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/06/28 1:33 a.m.12 views

CVE-2024-37137

Dell Key Trust Platform, v3.0.6 and prior, contains Use of a Cryptographic Primitive with a Risky Implementation vulnerability. A local privileged attacker could potentially exploit this vulnerability, leading to privileged information disclosure...

3.8CVSS6.3AI score0.00117EPSS
Exploits0References1
CVE
CVE
added 2024/06/28 1:33 a.m.66 views

CVE-2024-37137

Dell Key Trust Platform, v3.0.6 and earlier, contains a vulnerability described as Use of a Cryptographic Primitive with a Risky Implementation. The CVE-2024-37137 entry indicates a local privileged attacker could potentially obtain privileged information due to this insecure cryptographic usage....

5.5CVSS6.3AI score0.00117EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2024/03/06 11:15 a.m.30 views

BIT-TENSORFLOW-2022-23566 Out of bounds write in Tensorflow

Tensorflow is an Open Source Machine Learning Framework. TensorFlow is vulnerable to a heap OOB write in Grappler. The setoutput function writes to an array at the specified index. Hence, this gives a malicious user a write primitive. The fix will be included in TensorFlow 2.8.0. We will also...

8.8CVSS8.5AI score0.00924EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2023/12/11 12:0 a.m.37 views

Atlassian Jira Service Management Data Center and Server 4.20.x < 4.20.27 / 5.4.x < 5.4.11 (JSDSERVER-14751)

The version of Atlassian Jira Service Management Data Center and Server Jira Service Desk running on the remote host is affected by a vulnerability as referenced in the JSDSERVER-14751 advisory. - In FasterXML jackson-databind before 2.14.0-rc1, resource exhaustion can occur because of a lack of ...

7.5CVSS6.7AI score0.02824EPSS
Exploits2References2
Code423n4
Code423n4
added 2023/12/08 12:0 a.m.7 views

Limited functionality due to Primitive's balance being decreased before it is called

Lines of code Vulnerability details Impact In the current implementation, the balance of a primitive is decreased burned before it is called. This requires the primitive to hold outputAmount of outputToken before a transaction, which severely restricts the functionality it can provide and has no...

7.1AI score
Exploits0
OSV
OSV
added 2023/11/09 2:33 a.m.3 views

SUSE-SU-2023:4386-1 Security update for salt

This update for salt fixes the following issues: Security issues fixed: - CVE-2023-34049: arbitrary code execution via symlink attack bsc1215157 Bugs fixed: - Fix optimizationorder opt to prevent testsuite fails - Improve salt.utils.json.findjson to avoid fails bsc1213293 - Use salt-call from sal...

6.7CVSS6.9AI score0.00187EPSS
Exploits0References6
Rows per page
Query Builder