Lucene search
+L

232 matches found

CNNVD
CNNVD
added 2023/04/18 12:0 a.m.7 views

Oracle WebLogic Server 安全漏洞

Oracle WebLogic Server is an application service middleware for cloud and traditional environments from Oracle Corporation USA that provides a modern lightweight development platform that supports the entire lifecycle management of applications from development to production and simplifies...

7.5CVSS7.5AI score0.82262EPSS
Exploits3References4
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.54 views

K35205264: Linux kernel vulnerability CVE-2018-10938

Security Advisory Description A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipsov4optptr function in net/ipv4/cipsoipv4.c leading to a denial-of-servic...

7.1CVSS6.1AI score0.04997EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 6:54 p.m.53 views

K02354867: Kernel vulnerability CVE-2020-10711

Security Advisory Description A NULL pointer dereference flaw was found in the Linux kernel's SELinux subsystem in versions before 5.7. This flaw occurs while importing the Commercial IP Security Option CIPSO protocol's category bitmap into the SELinux extensible bitmap via the'...

5.9CVSS6.1AI score0.03097EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 4:18 a.m.3 views

SUSE CVE-2019-2910

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 5.6.45 and prior and 5.7.27 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4.3CVSS4.4AI score0.01716EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:29 a.m.4 views

SUSE CVE-2022-21348

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of thi...

4.9CVSS5AI score0.0136EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.4 views

SUSE CVE-2022-36314

When opening a Windows shortcut from the local filesystem, an attacker could supply a remote path that would lead to unexpected network requests from the operating system.This bug only affects Firefox for Windows. Other operating systems are unaffected.. This vulnerability affects Firefox ESR...

6.1CVSS8.4AI score0.00216EPSS
Exploits0References8
Microsoft KB
Microsoft KB
added 2022/12/13 8:0 a.m.64 views

December 13, 2022—KB5021234 (OS Build 22000.1335)

None None...

8.5CVSS6.8AI score0.76106EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2022/11/15 12:0 a.m.9 views

PT-2022-25843 · Tenda · Tenda Ac1200 Router

Name of the Vulnerable Software and Affected Versions: Tenda AC1200 Router Model W15Ev2 version V15.11.0.101576 Description: The issue concerns multiple command injection vulnerabilities found in the function setIPsecTunnelList. These vulnerabilities can be exploited via the IPsecLocalNet and...

7.8CVSS8AI score0.01377EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2022/09/26 3:41 p.m.10 views

Mozilla: An iframe element in an HTML email could trigger a network request

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of sending a request to the remote document when receiving an HTML email that specified to load an iframe element from a remote location. However, Thunderbird didn't display the document...

4.3CVSS7.3AI score0.00529EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2022/09/26 3:37 p.m.5 views

Mozilla: An iframe element in an HTML email could trigger a network request

A flaw was found in Mozilla. The Mozilla Foundation Security Advisory describes the issue of sending a request to the remote document when receiving an HTML email that specified to load an iframe element from a remote location. However, Thunderbird didn't display the document...

4.3CVSS7.3AI score0.00529EPSS
Exploits0References6
OSV
OSV
added 2022/08/05 10:15 p.m.6 views

CVE-2022-28664

A memory corruption vulnerability exists in the httpd unescape functionality of FreshTomato 2022.1. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.The freshtomato-mips has a vulnerable URL-decoding feature that...

9.8CVSS6.3AI score0.01399EPSS
Exploits1References1
OSV
OSV
added 2022/07/19 10:15 p.m.12 views

UBUNTU-CVE-2022-21527

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

5.5CVSS6.6AI score0.01467EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/07/06 12:0 a.m.25 views

IBM App Connect Enterprise 信任管理问题漏洞

IBM App Connect Enterprise is an operating system from IBM Corporation of the U.S.A. IBM App Connect Enterprise combines existing industry-trusted IBM Integration Bus technology with IBM App Connect Professional and new cloud-native technologies to IBM App Connect Enterprise combines existing...

6.5CVSS7AI score0.0044EPSS
Exploits1References4
CNVD
CNVD
added 2022/06/15 12:0 a.m.16 views

Siemens SINEMA Remote Connect Server Parameter Handling Error Vulnerability

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A parameter handling error vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from ...

7.5CVSS2AI score0.00671EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.27 views

Siemens SINEMA Remote Connect Server命令注入漏洞

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunneled connections VPN between headquarters, service technicians, and installed machines or plants.A command injection vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from the fa...

9.8CVSS3AI score0.02416EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.38 views

Siemens SINEMA Remote Connect Server User Management Error Vulnerability

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunneled connections VPNs between headquarters, service technicians, and installed machines or plants.A user management error vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from t...

9.8CVSS3.3AI score0.00717EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.23 views

Siemens SINEMA Remote Connect Server has an unspecified vulnerability (CNVD-2022-45222)

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.A security vulnerability exists in Siemens SINEMA Remote Connect Server, which stems from a system image...

6.5CVSS1.2AI score0.00597EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.6 views

Siemens SINEMA Remote Connect Server 输入验证错误漏洞

SINEMA Remote Connect is a remote network management platform that makes it easy to manage tunnel connections VPNs between headquarters, service technicians, and installed machines or plants.Siemens SINEMA Remote Connect Server input validation error vulnerability, which could be exploited by an...

7.5CVSS5.7AI score0.00571EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/03/16 12:0 a.m.7 views

The vulnerability of the application software interface of TP-Link Omada SDN software controllers, related to errors in processing authentication requests, allows a intruder to gain access to the protected network.

The vulnerability of the application software interface of TP-Link Omada SDN software controllers is related to errors in processing authentication requests. Exploiting this vulnerability can allow a remote attacker to gain access to the protected network...

7.8CVSS7.3AI score0.01764EPSS
Exploits1References4Affected Software1
Microsoft CVE
Microsoft CVE
added 2022/03/01 8:0 a.m.12 views

An issue was discovered in drivers/usb/gadget/function/rndis.c in the Linux kernel before 5.16.10. The RNDIS USB gadget lacks validation of the size of the RNDIS_MSG_SET command. Attackers can obtain sensitive information from kernel memory.

...

5.5CVSS7.1AI score0.01054EPSS
Exploits1
Rows per page
Query Builder