Lucene search
K

12 matches found

NVD
NVD
added 2026/05/06 11:16 a.m.53 views

CVE-2025-59851

HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and exploit publicly known security vulnerabilities to gain unauthorized access or compromise the...

9.8CVSS0.00206EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/12/07 2:23 p.m.30 views

CVE-2023-39171 SENEC Storage Box V1,V2 and V3 accidentially expose a management interface

SENEC Storage Box V1,V2 and V3 accidentially expose a management UI accessible with publicly known admin credentials...

7.2CVSS7.2AI score0.01077EPSS
Exploits2References1
Schneier on Security
Schneier on Security
added 2022/08/22 11:38 a.m.25 views

Hyundai Uses Example Keys for Encryption System

This is a dumb crypto mistake I had not previously encountered: A developer says it was possible to run their own software on the car infotainment hardware after discovering the vehicles manufacturer had secured its system using keys that were not only publicly known but had been lifted from...

0.2AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/21 8:41 a.m.225 views

Atlassian Rolls Out Security Patch for Critical Confluence Vulnerability

Atlassian has rolled out fixes to remediate a critical security vulnerability pertaining to the use of hard-coded credentials affecting the Questions For Confluence app for Confluence Server and Confluence Data Center. The flaw, tracked as CVE-2022-26138, arises when the app in question is enable...

1AI score0.9817EPSS
Exploits1
The Hacker News
The Hacker News
added 2021/08/11 5:31 a.m.1022 views

Microsoft Releases Windows Updates to Patch Actively Exploited Vulnerability

Microsoft on Tuesday rolled out security updates to address a total of 44 security issues affecting its software products and services, one of which it says is an actively exploited zero-day in the wild. The update, which is the smallest release since December 2019, squashes seven Critical and 37...

9.9CVSS0.66023EPSS
Exploits5
The Hacker News
The Hacker News
added 2021/07/29 8:21 a.m.2145 views

Top 30 Critical Security Vulnerabilities Most Exploited by Hackers

Intelligence agencies in Australia, the U.K., and the U.S. issued a joint advisory on Wednesday detailing the most exploited vulnerabilities in 2020 and 2021, once again demonstrating how threat actors are able to swiftly weaponize publicly disclosed flaws to their advantage. "Cyber actors contin...

10CVSS1.8AI score0.99999EPSS
Exploits499
CISA
CISA
added 2020/10/20 12:0 a.m.9 views

NSA Releases Advisory on Chinese State-Sponsored Actors Exploiting Publicly Known Vulnerabilities

The National Security Agency NSA has released a cybersecurity advisory on Chinese state-sponsored malicious cyber activity. This advisory provides 25 Common Vulnerabilities and Exposures CVEs known to be recently leveraged, or scanned-for, by Chinese state-sponsored cyber actors to enable...

6.7AI score
Exploits0References4
The Hacker News
The Hacker News
added 2019/09/10 6:16 p.m.3 views

Latest Microsoft Updates Patch 4 Critical Flaws In Windows RDP Client

Get your update caps on. Microsoft today released its monthly Patch Tuesday update for September 2019, patching a total of 79 security vulnerabilities in its software, of which 17 are rated critical, 61 as important, and one moderate in severity. Two of the security vulnerabilities patched by the...

9.3CVSS7.1AI score0.18982EPSS
Exploits0
ThreatPost
ThreatPost
added 2018/09/11 9:4 p.m.66 views

Microsoft Patches Actively Exploited Bug as Part of Patch Tuesday

UPDATE Microsoft has patched an elevation-of-privilege vulnerability it said is actively being exploited by hackers. The fix was part of Microsoft’s scheduled September Patch Tuesday release, which also included fixes for two other bugs found being used in the wild, including the zero-day found i...

9.3CVSS0.3AI score0.23044EPSS
Exploits7References11
Tenable Nessus
Tenable Nessus
added 2015/11/23 12:0 a.m.56 views

Dell eDellRoot / DSDTestProvider Root CA Certificates Installed

The remote Windows host is affected by a man-in-the-middle MitM vulnerability due to the installation of a non-authorized root CA certificate into the Windows trusted system certificate store. The private keys for many of these root CAs are publicly known. Furthermore, websites that use specially...

5.7AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/08/07 12:0 a.m.40 views

SSL Certificate Signed with the Publicly Known Cyberoam Key

The X.509 certificate of the remote host was signed by a certificate belonging to a Certificate Authority CA found in Cyberoam devices. The private key corresponding to the CA was discovered and publicly disclosed, meaning that the remote host's X.509 certificate cannot be trusted. TRUSTED...

7.4CVSS5.8AI score0.00938EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2009/04/14 5:56 p.m.158 views

Microsoft plugs gaping holes in IE, Excel, Windows

Microsoft today released its April batch of security patches: 8 bulletins with patches for at least 20 documented holes in popular software products. The most serious of the flaws could lead to remote code execution attacks that give a malicious hacker complete ownership of a vulnerable machine...

9.3CVSS7.5AI score0.43063EPSS
Exploits14References13
Rows per page
Query Builder