Lucene search
+L

72 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-5002

Malware in sbrugna...

9.8CVSS9.5AI score0.01205EPSS
Exploits0References2
NVD
NVD
added 2025/08/07 10:15 a.m.9 views

CVE-2025-8533

A vulnerability was identified in the XPC services of Fantastical. The services failed to implement proper client authorization checks in its listener:shouldAcceptNewConnection method, unconditionally accepting requests from any local process. As a result, any local, unprivileged process could...

6.9CVSS0.00391EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/06/30 5:44 p.m.8 views

File Browser: Command Execution not Limited to Scope

!NOTE This feature has been disabled by default for all installations from v2.33.8 onwards, including for existent installations. To exploit this vulnerability, the instance administrator must turn on a feature and ignore all the warnings about known vulnerabilities. We're publishing this new...

8CVSS6.3AI score0.00885EPSS
Exploits1References8Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/06 12:0 a.m.5 views

PT-2025-27291

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists between huge pmd unshare and GUP-fast in the Linux kernel. The huge pmd unshare function drops a reference on a page table that may have been shared across...

5.7CVSS6.6AI score0.00111EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:35 p.m.6 views

CVE-2021-3283

HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3...

7.5CVSS6.7AI score0.01453EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/02/06 12:0 a.m.8 views

PT-2025-5806 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: Defense Platform Home Edition versions 3.9.51.x and earlier Description: A NULL pointer dereference issue exists, allowing an attacker to cause a denial-of-service DoS condition by providing specially crafted data to a specific process of the...

6.5CVSS6.8AI score0.0015EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/02/06 12:0 a.m.11 views

PT-2025-5803

Name of the Vulnerable Software and Affected Versions: Defense Platform Home Edition versions 3.9.51.x and earlier Description: The issue exists due to an unprotected Windows messaging channel, also known as 'Shatter'. If an attacker sends a specially crafted message to the specific process of th...

8.8CVSS5.8AI score0.0015EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.8 views

PT-2025-23285

Name of the Vulnerable Software and Affected Versions systemd-coredump affected versions not specified systemd versions prior to 252.38-1deb12u1 Description A flaw in systemd-coredump allows an attacker to force a SUID process to crash and replace it with a non-SUID binary, giving access to the...

4.7CVSS6.7AI score0.0066EPSS
Exploits1References155
SUSE CVE
SUSE CVE
added 2023/02/15 5:41 a.m.4 views

SUSE CVE-2013-0831

Directory traversal vulnerability in Google Chrome before 24.0.1312.52 allows remote attackers to have an unspecified impact by leveraging access to an extension process...

7.5CVSS9.2AI score0.01285EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-8994

An issue was discovered in PHP 5.x and 7.x, when the configuration uses apache2handler/modphp or php-fpm with OpCache enabled. With 5.x after 5.6.28 or 7.x after 7.0.13, the issue is resolved in a non-default configuration with the opcache.validatepermission=1 setting. The vulnerability details a...

7.5CVSS9.4AI score0.02937EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 3:53 a.m.7 views

SUSE CVE-2020-26278

Weave Net is open source software which creates a virtual network that connects Docker containers across multiple hosts and enables their automatic discovery. Weave Net before version 2.8.0 has a vulnerability in which can allow an attacker to take over any host in the cluster. Weave Net is...

8CVSS8.1AI score0.00736EPSS
Exploits0References3
OSV
OSV
added 2021/02/06 1:15 a.m.5 views

CVE-2021-22300

There is an information leak vulnerability in eCNS280TD versions V100R005C00 and V100R005C10. A command does not have timeout exit mechanism. Temporary file contains sensitive information. This allows attackers to obtain information by inter-process access that requires other methods...

4.1CVSS5.8AI score0.00146EPSS
Exploits0References1
NVD
NVD
added 2021/02/06 1:15 a.m.29 views

CVE-2021-22300

There is an information leak vulnerability in eCNS280TD versions V100R005C00 and V100R005C10. A command does not have timeout exit mechanism. Temporary file contains sensitive information. This allows attackers to obtain information by inter-process access that requires other methods...

4.1CVSS0.00146EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/02/06 12:38 a.m.27 views

CVE-2021-22300

There is an information leak vulnerability in eCNS280TD versions V100R005C00 and V100R005C10. A command does not have timeout exit mechanism. Temporary file contains sensitive information. This allows attackers to obtain information by inter-process access that requires other methods...

4.6AI score0.00146EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/02/05 12:0 a.m.21 views

Huawei eCNS280 安全漏洞

Huawei eCNS280 is the core network equipment of Huawei's wireless broadband trunking system. In addition to providing the network functions of a traditional core network, it also virtualizes the functions of network elements and shares standardized hardware resources among multiple network elemen...

4.1CVSS5.8AI score0.00146EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2021/02/01 4:15 p.m.3 views

CVE-2021-3283

HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3...

7.5CVSS7AI score0.01453EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2021/02/01 3:36 p.m.53 views

CVE-2021-3283

HashiCorp Nomad and Nomad Enterprise up to 0.12.9 exec and java task drivers can access processes associated with other tasks on the same node. Fixed in 0.12.10, and 1.0.3...

7.5CVSS7.5AI score0.01453EPSS
Exploits0
Debian CVE
Debian CVE
added 2021/02/01 3:36 p.m.53 views

CVE-2021-3283

Removed by vendor...

7.5CVSS7.5AI score0.01453EPSS
Exploits0
OSV
OSV
added 2019/06/25 12:15 p.m.6 views

DEBIAN-CVE-2019-12817

arch/powerpc/mm/mmucontextbook3s64.c in the Linux kernel before 5.1.15 for powerpc has a bug where unrelated processes may be able to read/write to one another's virtual memory under certain conditions via an mmap above 512 TB. Only a subset of powerpc systems are affected...

7CVSS7.1AI score0.00386EPSS
Exploits0References1
Veracode
Veracode
added 2019/05/02 4:52 a.m.34 views

Arbitrary File Write

hplip is vulnerable to arbitrary file write. A local attacker could use these flaws to perform a symbolic link attack, overwriting arbitrary files accessible to a process using HPLIP...

1.9CVSS5.9AI score0.00379EPSS
Exploits0References49Affected Software1
Rows per page
Query Builder