Lucene search
K

502 matches found

EUVD
EUVD
added 2026/01/10 12:31 a.m.6 views

EUVD-2026-1888

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, CryptoLib’s KMC crypto service integration is...

7.5CVSS7.5AI score0.00453EPSS
Exploits1References2
OSV
OSV
added 2026/01/10 12:24 a.m.5 views

CVE-2026-22027 CryptoLib Vulnerable to Heap Buffer Overflow in MariaDB SA Hexstring Conversion

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the converthexstringtobytearray function in th...

5.7CVSS7.2AI score0.00209EPSS
Exploits1References5
EUVD
EUVD
added 2026/01/10 12:22 a.m.6 views

EUVD-2026-1890

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the libcurl writecallback function in the KMC...

8.2CVSS6.6AI score0.00539EPSS
Exploits1References3
OSV
OSV
added 2026/01/10 12:20 a.m.6 views

CVE-2026-22025 CryptoLib Memory Leak on HTTP Error Response in KMC Client

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, when the KMC server returns a non-200 HTTP...

6.3CVSS6.8AI score0.00497EPSS
Exploits1References5
OSV
OSV
added 2026/01/10 12:10 a.m.6 views

CVE-2026-21898 CryptoLib Has Out-of-bounds Read in Crypto_AOS_ProcessSecurity

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the CryptoAOSProcessSecurity function reads...

8.2CVSS6.8AI score0.00414EPSS
Exploits1References4
NVD
NVD
added 2025/12/02 9:15 p.m.10 views

CVE-2025-62575

NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures...

8.8CVSS0.00367EPSS
Exploits0References1
CVE
CVE
added 2025/12/02 9:11 p.m.8 views

CVE-2025-62575

CVE-2025-62575 concerns NMIS/BioDose software (V22.02 and earlier) that relies on a Microsoft SQL Server database. The root cause is that the default SQL account nmdbuser (and other created accounts) has the sysadmin role, enabling potential remote code execution through certain built‑in stored p...

8.8CVSS8AI score0.00367EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2025/12/02 9:4 a.m.9 views

RLSA-2025:16046 Moderate: mysql:8.4 security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: mysqldump unspecified vulnerability CPU Apr 2025 CVE-2025-30722 mysql: Optimizer unspecified vulnerability CPU Apr 2025...

6.5CVSS7.6AI score0.00908EPSS
Exploits1References52
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.8 views

PT-2025-48778

NMIS/BioDose V22.02 and previous versions rely on a Microsoft SQL Server database. The SQL user account 'nmdbuser' and other created accounts by default have the sysadmin role. This can lead to remote code execution through the use of certain built-in stored procedures...

8.7CVSS8.3AI score0.00367EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/11/20 12:0 a.m.4 views

CISA: Safe Handling Considerations for Downed Unmanned Aircraft Systems

Safe Handling Considerations for Downed Unmanned Aircraft Systems provides information on how to prepare for and respond to downed unmanned aircraft systems UAS that may pose a safety or security concern...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/09 12:0 a.m.8 views

Inside LockBit: Technical, Behavioral, and Financial Anatomy of a Ransomware Empire

LockBit has evolved from an obscure Ransomware-as-a-Service newcomer in 2019 to the most prolific ransomware franchise of 2024. Leveraging a recently leaked MySQL dump of the gang's management panel, this study offers an end-to-end reconstruction of LockBit's technical, behavioral, and financial...

7AI score
Exploits0
ICS
ICS
added 2025/11/04 7:0 a.m.5 views

IDIS ICM Viewer

RISK EVALUATION Successful exploitation of this vulnerability could result in an attacker executing arbitrary code. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such as: Minimize network exposure for all...

8.8CVSS7.9AI score0.00454EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/10/31 5:14 p.m.8 views

CVE-2025-64096

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to 1.4.2, there is a missing bounds check in CryptoKeyupdate...

8.8CVSS8.9AI score0.00464EPSS
Exploits1References1
CVE
CVE
added 2025/10/30 5:9 p.m.16 views

CVE-2025-64096

CryptoLib (NASA open source SDLS-EP implementation) before version 1.4.2 is affected by a stack-based buffer overflow in Crypto_Key_update() (crypto_key_mgmt.c). An attacker-controlled TLV length field (pdu_len) can drive the calculation of the number of keys beyond the static kblk[98] array, cau...

8.8CVSS8.8AI score0.00464EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2025/10/10 5:50 a.m.5 views

RLSA-2025:16086 Moderate: mysql security update

MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and libraries. Security Fixes: mysql: mysqldump unspecified vulnerability CPU Apr 2025 CVE-2025-30722 mysql: Optimizer unspecified vulnerability CPU Apr 2025...

6.5CVSS7.1AI score0.00908EPSS
Exploits1References52
Packet Storm News
Packet Storm News
added 2025/10/10 12:0 a.m.20 views

Exploiting Web Search Tools of AI Agents for Data Exfiltration

Large language models LLMs are now routinely used to autonomously execute complex tasks, from natural language processing to dynamic workflows like web searches. The usage of tool-calling and Retrieval Augmented Generation RAG allows LLMs to process and retrieve sensitive corporate data, amplifyi...

7.2AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-1363

Malware in sbrugna...

7.5CVSS6.3AI score0.03329EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2003-0030

Malware in sbrugna...

10CVSS6.4AI score0.04751EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-25354

Malware in sbrugna...

9.4CVSS7.7AI score0.01476EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2013-5716

Malware in sbrugna...

6.8CVSS6AI score0.0334EPSS
Exploits0References8
Rows per page
Query Builder