Lucene search
K

264 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.13 views

EUVD-2023-50901

Malicious code in bioql PyPI...

8.8CVSS7.5AI score0.00638EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-31068

Malicious code in bioql PyPI...

9.1CVSS9.1AI score0.08573EPSS
Exploits3References3
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-51723

Malicious code in bioql PyPI...

6.8CVSS6.5AI score0.00343EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-27411

Malicious code in bioql PyPI...

7.7CVSS7.2AI score0.00122EPSS
Exploits0References1
cvelist
cvelist
added 2025/10/01 10:48 a.m.14 views

CVE-2025-10847 DX UIM Probe Improper ACL Handling RCE

DX Unified Infrastructure Management Nimsoft/UIM and below contains an improper ACL handling vulnerability in the robot controller component. A remote attacker can execute commands, read from, or write to the target system...

8.4CVSS0.00441EPSS
Exploits0References1
cvelist
cvelist
added 2025/09/19 12:0 a.m.11 views

CVE-2025-56869

Directory traversal vulnerability in Sync In server thru 1.1.1 allowing authenticated attackers to gain read and write access to the system via FilesManager.saveMultipart function in backend/src/applications/files/services/files-manager.service.ts, and FilesManager.compress function in...

0.00691EPSS
Exploits0References3
rosalinux
rosalinux
added 2025/09/09 10:33 a.m.5 views

Advisory ROSA-SA-2025-2977

software: chromium-browser-stable 138.0.7204.92 WASP: ROSA-CHROME unaffected versions = chromium-browser-stable-138.0.7204.92-1 affected versions chromium-browser-stable-138.0.7204.92-1 CVE-ID: CVE-2025-6554 BDU-ID: 2025-07783 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability in the JavaScript scrip...

8.1CVSS7.4AI score0.06564EPSS
Exploits5
nessus
nessus
added 2025/09/09 12:0 a.m.3 views

Wago CODESYS V2 Runtime Toolkit Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2021-34595)

A crafted request with invalid offsets may cause an out-of-bounds read or write access in CODESYS V2 Runtime Toolkit 32 Bit full and PLCWinNT prior to versions V2.4.7.56, resulting in a denial-of-service condition or local memory overwrite. This plugin only works with Tenable.ot. Please visit...

8.1CVSS7.7AI score0.00851EPSS
Exploits0References2
nessus
nessus
added 2025/08/25 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2016-10746

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libvirt-domain.c in libvirt before 1.3.1 supports virDomainGetTime API calls by guest agents with an RO connection, even though an RW connection was supposed to...

7.5CVSS6.5AI score0.02051EPSS
Exploits0References2
cvelist
cvelist
added 2025/08/18 4:21 p.m.13 views

CVE-2025-55201 Copier safe template has arbitrary filesystem read/write access

Copier library and CLI app for rendering project templates. Prior to 9.9.1, a safe template can currently read and write arbitrary files because Copier exposes a few pathlib.Path objects in the Jinja context which have unconstrained I/O methods. This effectively renders the security model w.r.t...

8.5CVSS0.0024EPSS
Exploits0References2
nessus
nessus
added 2025/08/12 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-38110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of- bounds clause 45 read/write access When using publicly...

7.1CVSS6.2AI score0.00161EPSS
Exploits0References3
nessus
nessus
added 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2017-12154

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The preparevmcs02 function in arch/x86/kvm/vmx.c in the Linux kernel through 4.13.3 does not ensure that the CR8-load exiting and CR8-store exiting L0 vmcs02...

7.1CVSS6.6AI score0.00512EPSS
Exploits0References2
redhat
redhat
added 2025/07/28 8:32 a.m.14 views

kernel: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via C45 clause 45 mdiobus, there is no verificati...

7.1CVSS6.8AI score0.00161EPSS
Exploits0References5
osv
osv
added 2025/07/08 7:15 a.m.3 views

CVE-2025-25268

An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting in read and write access due to missing authentication...

8.8CVSS5.8AI score0.00299EPSS
Exploits0References1
cnnvd
cnnvd
added 2025/07/08 12:0 a.m.4 views

PHOENIX CONTACT CHARX SEC-3xxx 访问控制错误漏洞

PHOENIX CONTACT CHARX SEC-3000 etc. are products of PHOENIX CONTACT, Germany.PHOENIX CONTACT CHARX SEC-3000 is an AC Charge Controller.PHOENIX CONTACT CHARX SEC-3050 is an AC Charge Controller.PHOENIX CONTACT CHARX SEC-3100 is an AC Charge Controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charg...

8.8CVSS6.6AI score0.00299EPSS
Exploits0References1
susecve
susecve
added 2025/07/03 11:23 p.m.3 views

SUSE CVE-2025-38111

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via mdiobus, there is no verification of parameters passed ...

7CVSS6.4AI score0.00179EPSS
Exploits0References59
cvelist
cvelist
added 2025/07/03 8:35 a.m.7 views

CVE-2025-38110 net/mdiobus: Fix potential out-of-bounds clause 45 read/write access

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via C45 clause 45 mdiobus, there is no verificati...

0.00161EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2025/06/19 12:0 a.m.7 views

The vulnerability in the ZendTo web application for transferring files involves an incorrect restriction on the path to the restricted directory. This allows a malicious actor to gain read and write access to data, or cause a service failure.

The vulnerability in the web application for transferring files via ZendTo is related to an incorrect restriction on the path to the restricted directory during the processing of the tmpname parameter. Exploiting this vulnerability can allow an attacker to gain read and modify access to data, or...

6.5CVSS8AI score0.6424EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2025/06/10 12:0 a.m.6 views

Keyoti SearchUnit 安全漏洞

Keyoti SearchUnit is a web search engine from Keyoti Canada. A security vulnerability exists in Keyoti SearchUnit versions prior to 9.0.0, which stems from a server-side request forgery issue that could result in configuration and log files being read or written...

5.4CVSS6.4AI score0.00208EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/05/23 9:12 a.m.4 views

CVE-2024-21021

Vulnerability in the Oracle Complex Maintenance, Repair, and Overhaul product of Oracle E-Business Suite component: LOV. Supported versions that are affected are 12.2.3-12.2.13. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

6.1CVSS5.8AI score0.00395EPSS
Exploits0References1
Rows per page
Query Builder