Lucene search
K

35 matches found

Redos
Redos
added 2026/05/26 12:0 a.m.16 views

ROS-20260526-73-0022

Vulnerability in poetry related to incorrect path name restriction to a restricted directory. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

7.1CVSS5.8AI score0.00468EPSS
Exploits1
Redos
Redos
added 2026/01/13 12:0 a.m.5 views

ROS-20260113-7321

A vulnerability in the f2fssetattr function of the fs/f2fs/file.c module of the Linux kernel's F2FS file system support is related to improper control of resource identifiers "resource injection". Exploitation of the vulnerability may allow a remote intruder to affect the integrity of protected...

6.5CVSS6.6AI score0.00822EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-12103

Malware in sbrugna...

9CVSS8.8AI score0.01873EPSS
Exploits0References3
Redos
Redos
added 2025/08/08 12:0 a.m.6 views

ROS-20250808-02

A vulnerability in the Networking component of the Oracle Java SE software platform and Oracle Virtual Machine GraalVM Enterprise Edition is related to access control weaknesses. Exploitation of the vulnerability could allow a remote intruder to gain unauthorized access to protected information...

8.6CVSS7.1AI score0.00501EPSS
Exploits0
Redos
Redos
added 2025/08/08 12:0 a.m.8 views

ROS-20250808-03

A vulnerability in the Networking component of the Oracle Java SE software platform and Oracle Virtual Machine GraalVM Enterprise Edition is related to access control weaknesses. Exploitation of the vulnerability could allow a remote intruder to gain unauthorized access to protected information...

8.6CVSS7.1AI score0.00501EPSS
Exploits0
Redos
Redos
added 2025/03/26 12:0 a.m.10 views

ROS-20250326-02

A vulnerability in the document-oriented MongoDB database management system is related to the lack of authorization checks. authorization checks. Exploitation of the vulnerability could allow a remote intruder gain unauthorized access to protected information...

6.5CVSS7AI score0.00376EPSS
Exploits0
Redos
Redos
added 2024/10/08 12:0 a.m.28 views

ROS-20241008-07

Vulnerability in DecodeConfig component of Golang programming language is related to uncontrolled consumption of resources. resources. The vulnerability can be exploited by the GLPI system of requests, incidents and inventory of computer equipment. GLPI computer hardware vulnerability is related ...

9.8CVSS8.2AI score0.67107EPSS
Exploits0
Redos
Redos
added 2024/08/20 12:0 a.m.24 views

ROS-20240820-02

Vulnerability of certstorestats and getcacerts functions of ssl module of programming language interpreter Python CPython is related to synchronization errors when using a shared resource. Exploitation The exploitation of the vulnerability may allow a remote intruder to gain unauthorized access t...

7.4CVSS6.9AI score0.00804EPSS
Exploits0
Redos
Redos
added 2024/08/20 12:0 a.m.13 views

ROS-20240820-07

Vulnerability of subselect component of MariaDB database management system is related to the operation exceeding the buffer boundaries in memory. Exploitation of the vulnerability could allow a remote intruder, affect confidentiality, integrity, availability of protected information Vulnerability...

7.5CVSS6.9AI score0.02082EPSS
Exploits2
Redos
Redos
added 2024/08/14 12:0 a.m.29 views

ROS-20240814-05

A vulnerability in the "Save As" function of Mozilla Firefox, Firefox ESR and Thunderbird email client on Windows operating systems is related to insufficient input data validation. Thunderbird email client of Windows operating systems is related to insufficient input data validation. Exploitatio...

8.1CVSS8.6AI score0.0107EPSS
Exploits3
Redos
Redos
added 2024/07/30 12:0 a.m.32 views

ROS-20240730-09

Vulnerability of NTLM New Technology LAN Manager protocol implementation in Exim mail server is related to operation exceeding buffer boundaries in memory when processing requests. Exploitation of the vulnerability could allow a remote intruder to gain unauthorized access to protected information...

5.3CVSS7.1AI score0.28084EPSS
Exploits0
Redos
Redos
added 2024/04/09 12:0 a.m.23 views

ROS-20240409-16

MariaDB spiderdbmbase::printwarnings function vulnerability is related to pointer dereferencing errors. pointer dereferencing errors. Exploitation of the vulnerability allows a remote intruder to cause a denial of service. service...

6.5CVSS7.2AI score0.01486EPSS
Exploits0
Redos
Redos
added 2024/04/04 12:0 a.m.21 views

ROS-20240403-04

Vulnerability of onstreamio and dnsstreamcomplete functions of the subsystem of initialization and management of services Systemd is related to not incrementing the reference count for the DnsStream object. Exploitation of the vulnerability could allow a remote intruder to violate the integrity a...

9.8CVSS6.8AI score0.01052EPSS
Exploits0
Redos
Redos
added 2023/02/13 12:0 a.m.30 views

ROS-20230213-01

A vulnerability in the ImageMagick graphical editor is related to errors in input data processing. Exploitation of the vulnerability may allow a remote intruder to gain access to protected information using the profile parameter. information using the profile parameter Vulnerability of ImageMagic...

6.5CVSS6.8AI score0.89855EPSS
Exploits31
Redos
Redos
added 2022/11/22 12:0 a.m.29 views

ROS-20221122-01

Vulnerability of muttdecodeuuencoded function implementation in Mutt mail client is related to operation overflow out of memory buffer boundaries. Exploitation of the vulnerability could allow a remote intruder gain unauthorized access to protected information or cause a denial of service...

5.3CVSS6.1AI score0.01711EPSS
Exploits2
hivepro
hivepro
added 2022/11/11 2:19 p.m.14 views

Citrix Addresses Auth bypass Flaws Affecting ADC and Gateway Products

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Citrix has addressed bugs in Citrix ADC and Citrix Gateway. A remote intruder could exploit either of these flaws to obtain control of a susceptible system. To successfully exploit the vulnerabili...

2.5AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2022/09/22 3:2 a.m.27 views

Security Bulletin: IBM Maximo Asset Management installs with a default administrator account that a remote intruder could use to gain administrator access to the system. (CVE-2015-4966)

Summary IBM Maximo Asset Management installs with a default administrator account that a remote intruder could use to gain administrator access to the system. Vulnerability Details CVEID: CVE-2015-4966 DESCRIPTION: IBM Maximo Asset Management installs with a default administrator account that a...

6.5CVSS8.6AI score0.01527EPSS
Exploits0Affected Software15
Redos
Redos
added 2022/05/16 12:0 a.m.64 views

ROS-20220516-04

Vulnerability of QuerySet.explain function of Django web application software platform is related to failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow an attacker, acting remotely, to affect the confidentiality, integrity and availability o...

9.8CVSS9.2AI score0.18516EPSS
Exploits3
NVD
NVD
added 2018/08/03 3:29 p.m.19 views

CVE-2018-1524

IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116...

9CVSS8.6AI score0.01873EPSS
Exploits0References2
Prion
Prion
added 2018/08/03 3:29 p.m.17 views

Design/Logic Flaw

IBM Maximo Asset Management 7.6 through 7.6.3 installs with a default administrator account that a remote intruder could use to gain administrator access to the system. This vulnerability is due to an incomplete fix for CVE-2015-4966. IBM X-Force ID: 142116...

9CVSS8.4AI score0.01873EPSS
Exploits0References2Affected Software8
Rows per page
Query Builder