Lucene search
K

4 matches found

EUVD
EUVD
added 2025/10/28 11:48 a.m.3 views

EUVD-2025-36491

In the Linux kernel, the following vulnerability has been resolved: fbdev: simplefb: Fix use after free in simplefbdetachgenpds The pmdomain cleanup can not be devres managed as it uses struct simplefbpar which is allocated within struct fbinfo by framebufferalloc. This allocation is explicitly...

5.9AI score0.00194EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/12/03 12:0 a.m.5 views

The vulnerability of the dsUnclaimHub command on the OvrC Pro cloud-based IT infrastructure management platform allows a hacker to gain unauthorized access to add or remove network devices.

The vulnerability of the dsUnclaimHub command on the OvrC Pro IT-infrastructure management cloud platform relates to the ability to send requests to the database without going through authentication procedures. Exploiting this vulnerability could allow a malicious actor to gain unauthorized acces...

9.4CVSS8.1AI score0.00542EPSS
Exploits0References3Affected Software1
Veracode
Veracode
added 2020/05/05 6:58 a.m.24 views

Unauthorized Postings And Removals

keycloak-services is vulnerable to unauthorized postings and removals. Posting different credential IDs can be done by using the remove devices form, subsequently possibly to perform unauthorized removal of MFA devices of other users...

4.7CVSS4.5AI score0.00654EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2020/05/04 12:0 a.m.5 views

PT-2020-12283 · Red Hat · Keycloak

Name of the Vulnerable Software and Affected Versions: Keycloak versions 8.0.2 through 9.0.0 Description: A flaw was found where a malicious user can register as oneself and then use the "remove devices" form to post different credential IDs with the hope of removing MFA devices for other users...

6.5CVSS4.7AI score0.00654EPSS
Exploits0References8
Rows per page
Query Builder