Lucene search
+L

203 matches found

OSV
OSV
added 2025/08/14 6:52 p.m.4 views

MAL-2025-12646 Malicious code in @zalastax/nolb-node-rec (npm)

The package @zalastax/nolb-node-rec was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.11 views

CVE-2023-28382

Directory traversal vulnerability in ESS REC Agent Server Edition series allows an authenticated attacker to view or alter an arbitrary file on the server. Affected products and versions are as follows: ESS REC Agent Server Edition for Linux V1.0.0 to V1.4.3, ESS REC Agent Server Edition for...

8.1CVSS6.8AI score0.00908EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:58 a.m.12 views

CVE-2023-47574

An issue was discovered on Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 devices. There is a Weak SMB configuration with signing disabled...

5.9CVSS7AI score0.00492EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:45 a.m.11 views

CVE-2023-47577

An issue discovered in Relyum RELY-PCIe 22.2.1 and RELY-REC 23.1.0 allows for unauthorized password changes due to no check for current password...

9.8CVSS7.1AI score0.00706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:37 p.m.6 views

CVE-2021-25898

An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. Passwords are stored in unencrypted source-code text files. This was noted when accessing the svc-login.php file. The value is used to authenticate a high-privileged user upon authenticating with the server...

7.5CVSS6.5AI score0.00867EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:37 p.m.6 views

CVE-2021-25899

An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1...

7.5CVSS7.5AI score0.12245EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/04 5:24 p.m.13 views

CVE-2023-53075

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix invalid address access in lookuprec when index is 0 KASAN reported follow problem: BUG: KASAN: use-after-free in lookuprec Read of size 8 at addr ffff000199270ff0 by task modprobe CPU: 2 Comm: modprobe Call trace:...

5.5CVSS6.9AI score0.0017EPSS
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/11/06 11:7 a.m.5 views

Malicious code in bytedplus-rec (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 60f79f83c8af55853fc5ee2cbcd855f6799c4d5fa43cae98ddf63d0aa5f5fc23 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7.1AI score
Exploits0References1
OSV
OSV
added 2024/11/06 11:7 a.m.6 views

MAL-2024-10425 Malicious code in bytedplus-rec (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 60f79f83c8af55853fc5ee2cbcd855f6799c4d5fa43cae98ddf63d0aa5f5fc23 A campaign of probably pentest packages flooding PYPI. Installing the package or importing the module triggers reporting basic info like hostname, path and the...

7AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/05/14 3:46 a.m.3 views

SUSE CVE-2021-46019

An untrusted pointer dereference in recdbdestroy at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash...

5.5CVSS6.8AI score0.01004EPSS
Exploits1References2
vulnersOsv
vulnersOsv
added 2024/03/23 9:30 p.m.4 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-1603 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-16...

8.2CVSS7.1AI score0.00564EPSS
Exploits1
Fedora
Fedora
added 2024/03/07 10:33 p.m.20 views

[SECURITY] Fedora 40 Update: jaxb-fi-2.1.1-5.fc40

Fast Infoset Project, an Open Source implementation of the Fast Infoset Standard for Binary XML. The Fast Infoset specification ITU-T Rec. X.891 | ISO/IEC 24824-1 describes an open, standards-based "binary XML" format that is based on the XML Information Set...

8.8CVSS6.9AI score0.02578EPSS
Exploits3
vulnersOsv
vulnersOsv
added 2024/03/07 3:30 p.m.5 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-0818 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-08...

9.1CVSS7.2AI score0.01048EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/03/07 9:30 a.m.3 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-0917 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-09...

9.8CVSS7.2AI score0.01638EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/03/07 6:30 a.m.5 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-0815 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-08...

9.3CVSS7.2AI score0.01132EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/03/07 3:30 a.m.4 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-0817 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-08...

9.3CVSS7.1AI score0.01166EPSS
Exploits1
VulnCheck KEV
VulnCheck KEV
added 2024/01/22 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-25899

An issue was discovered in svc-login.php in Void Aural Rec Monitor 9.0.0.1. An unauthenticated attacker can send a crafted HTTP request to perform a blind time-based SQL Injection. The vulnerable parameter is param1...

7.5CVSS7.2AI score0.12245EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/01/20 9:30 p.m.4 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2024-0521 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves: CVE-2024-05...

9.3CVSS7.1AI score0.00456EPSS
Exploits1
vulnersOsv
vulnersOsv
added 2024/01/03 9:30 a.m.7 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2023-52307 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves:...

9.8CVSS7.2AI score0.00529EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/01/03 9:30 a.m.3 views

paddle-ner (=0.1.0), paddle-quantum (>=1.1.1 <=2.2.1) +3 more potentially affected by CVE-2023-52314 via paddlepaddle (=1.8.5)

paddlepaddle PYPI version =1.8.5 is affected by a known vulnerability. The following packages have a transitive dependency on paddlepaddle and may be impacted: - paddle-ner =0.1.0 - paddle-quantum =1.1.1, =1.8.5.0, =1.8.5.1 - paddle-tokenizer =0.1.0 - pyunit-ner =2021.8.2 Source cves:...

9.8CVSS7.2AI score0.01172EPSS
Exploits0
Rows per page
Query Builder