Lucene search
K

10 matches found

Rosalinux
Rosalinux
added 2025/09/09 10:16 a.m.4 views

Advisory ROSA-SA-2025-2969

software: ghostscript 9.56.1 OS: ROSA-CHROME unaffected versions = ghostscript-9.56.1-3 affected versions ghostscript-9.56.1-3 CVE-ID: CVE-2024-33870 BDU-ID: 2024-05063 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the Ghostscript document processing, conversion, and generation software suite...

6.3CVSS7.4AI score0.00515EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/27 12:0 a.m.10 views

The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing lies in errors in the processing of the relative path to the catalog. This allows attackers to execute arbitrary code.

The vulnerability of NVIDIA NeMo’s integrated platform for training and applying neural networks in speech processing and natural language processing is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow attackers to execute arbitrary code...

7.1CVSS5.8AI score
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/11/07 12:0 a.m.4 views

The vulnerability of the CI/CD application integration and delivery system provided by JetBrains TeamCity lies in errors in processing the relative path to the directory. This allows attackers to write backup files to arbitrary directories.

The vulnerability of the Continuous Integration and Deployment Application Delivery system CI/CD of JetBrains TeamCity is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a malicious actor to write backup files to arbitrary directories...

6.8CVSS5.6AI score0.22898EPSS
Exploits0References3Affected Software1
RedHat Linux
RedHat Linux
added 2024/09/09 1:35 a.m.5 views

ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths

A flaw was found in Ghostscript. When the gpvalidatepathlen function validates a path, it distinguishes between absolute and relative paths. In the case of relative paths, it will check the path with and without the current-directory-prefix "foo" and "./foo". This does not take into account paths...

6.3CVSS5.8AI score0.00515EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/07/10 12:0 a.m.9 views

The vulnerability of Ollama’s system for running and managing large language models lies in errors in processing the relative path to the catalog. This allows a malicious actor to gain access to arbitrary files within the vulnerable system.

The vulnerability of Ollama’s system for running and managing large language models is related to errors in processing the relative path to the catalog. Exploiting this vulnerability can allow a malicious actor to gain access to arbitrary files within the vulnerable system...

6.4CVSS7.4AI score0.89633EPSS
Exploits4References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/01/17 12:0 a.m.6 views

The software for deploying and executing AI models, NVIDIA Triton Inference Server (previously TensorRT Inference Server), has vulnerabilities that allow attackers to gain unauthorized access to protected information, enhance their privileges, execute arbitrary code, or cause service failures.

The vulnerability of the NVIDIA Triton Inference Server previously known as TensorRT Inference Server software for deploying and executing artificial intelligence models is related to errors in processing the relative path to the catalog during model loading. Exploiting this vulnerability can all...

7.5CVSS7.9AI score0.00853EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/19 12:0 a.m.5 views

PT-2023-8256 · Nvidia · Nvidia Triton Inference Server

Name of the Vulnerable Software and Affected Versions: NVIDIA Triton Inference Server affected versions not specified Description: The issue is related to errors in processing relative paths to directories during model loading in NVIDIA Triton Inference Server. This can allow a remote attacker to...

8.8CVSS9.1AI score0.00853EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2023/07/06 12:0 a.m.6 views

The vulnerability of the eXchange Layer component in the application development environment for programmable logic controllers ISaGRAF Runtime Rockwell Automation allows a hacker to execute arbitrary code.

The vulnerability of the eXchange Layer component in the application development environment for ISaGRAF Runtime Rockwell Automation relates to errors in processing the relative path to the restricted-access directory. Exploiting this vulnerability may allow a remote attacker to execute arbitrary...

10CVSS8.1AI score0.06062EPSS
Exploits0References7Affected Software17
BDU FSTEC
BDU FSTEC
added 2022/08/01 12:0 a.m.7 views

The vulnerability in the implementation of the UserFirmwareRequestHandler class in the microprogramming software for sensors for monitoring the Keysight N6841A, as well as the microprogramming software for geolocation servers from Keysight, N6854A, allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the UserFirmwareRequestHandler class implementation in the microprogramming software for sensors monitoring the Keysight N6841A spectrum, as well as the microprogramming software for geolocation servers from Keysight, the N6854A, is related to errors in processing the relativ...

7.8CVSS7.2AI score0.1506EPSS
Exploits0References7Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/12/17 12:0 a.m.6 views

The vulnerability of the TwinCAT OPC UA Server lies in errors in processing the relative path to the directory. This allows attackers to create and delete arbitrary files within the system.

The vulnerability of the TwinCAT OPC UA Server is related to errors in processing the relative path to the directory. Exploiting this vulnerability allows a malicious actor to create and delete arbitrary files within the system...

7.7CVSS6.7AI score0.0109EPSS
Exploits0References3Affected Software3
Rows per page
Query Builder