Lucene search
K

7 matches found

OSV
OSV
added 2026/06/26 8:17 p.m.3 views

UBUNTU-CVE-2026-53307

In the Linux kernel, the following vulnerability has been resolved: pinctrl: pinconf-generic: Fully validate 'pinmux' property The pinconfgenericparsedtpinmux assumes that the 'pinmux' property is not empty when present. This might be not true. With that, the allocator will give a special value i...

5.5CVSS5.7AI score0.00154EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/05 7:29 p.m.10 views

CVE-2026-46721

The create and edit flows do not restrict which user properties may be submitted and do not enforce access control on the frontend user group assignment. As a result, an attacker can assign an arbitrary frontend user group to a newly registered or edited account, gaining unauthorized access to...

6.9CVSS5.6AI score0.00352EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/11 12:19 a.m.3 views

CVE-2025-42895 Code Injection vulnerability in SAP HANA JDBC Client

Due to insufficient validation of connection property values, the SAP HANA JDBC Client allows a high-privilege locally authenticated user to supply crafted parameters that lead to unauthorized code loading, resulting in low impact on confidentiality and integrity and high impact on availability o...

6.9CVSS6.3AI score0.00138EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/07/07 2:35 a.m.5 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Integer Overflow in X Resize, Rotate and Reflect (RandR) Extension

A flaw was found in the RandR extension, where the RRChangeProviderProperty function does not properly validate input. This issue leads to an integer overflow when computing the total size to allocate...

7.8CVSS6AI score0.00273EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/01/15 6:30 p.m.15 views

Mattermost fails to properly validate post props

Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...

6.5CVSS6.8AI score0.0054EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2023/08/19 12:30 a.m.52 views

Apache NiFi Insufficient Property Validation vulnerability

Apache NiFi 1.21.0 through 1.23.0 support JDBC and JNDI JMS access in several Processors and Controller Services with connection URL validation that does not provide sufficient protection against crafted inputs. An authenticated and authorized user can bypass connection URL validation using custo...

6.5CVSS6.3AI score0.01536EPSS
Exploits0References8Affected Software4
Mageia
Mageia
added 2014/12/09 8:12 p.m.48 views

Updated iceape package fixes security vulnerabilities

When the oxygen-gtk was active and iceape tried to draw a menu for example after a mouse down event on the menu bar, a segmentation fault was triggered causing iceape to crash. The oxygen-gtk theme engine contains a solution for this problem, this is now enabled for iceape. MGA 12978 Mozilla...

6.8CVSS8.1AI score0.04052EPSS
Exploits0References10
Rows per page
Query Builder