Lucene search
K

504 matches found

ATTACKERKB
ATTACKERKB
added 2026/03/20 12:0 a.m.4 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.8AI score0.00156EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/20 12:0 a.m.22 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

0.00156EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/20 12:0 a.m.4 views

CVE-2025-63260

SyncFusion 30.1.37 is vulnerable to Cross Site Scripting XSS via the Document-Editor reply to comment field and Chat-UI Chat message...

5.8AI score0.00156EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/03/17 7:42 p.m.3 views

CVE-2026-4359 Heap-buffer-over-read in _mongoc_http_send via strstr on non-null-terminated buffer

A compromised third party cloud server or man-in-the-middle attacker could send a malformed HTTP response and cause a crash in applications using the MongoDB C driver...

2CVSS5.8AI score0.00187EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/03/12 9:1 p.m.3 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS7.2AI score0.00632EPSS
Exploits1References8
AstraLinux
AstraLinux
added 2026/03/03 9:29 a.m.4 views

Astra Linux – Vulnerability in libmodbus

A stack-based buffer overflow vulnerability exists in libmodbus v3.1.10; it allows for the overflow of the buffer allocated for Modbus responses if the function attempts to respond to a Modbus request with an unexpected length...

9.8CVSS6.3AI score0.00394EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.3 views

openSUSE 15 Security Update : redis7 (SUSE-SU-2026:0667-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:0667-1 advisory. This update for redis7 fixes the following issue: - a user can manipulate data read by a connection by injecting sequences into a Redis error reply bsc125870...

6AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/03/02 12:0 a.m.4 views

openSUSE 15 Security Update : redis (SUSE-SU-2026:0650-1)

The remote openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2026:0650-1 advisory. This update for redis fixes the following issue: - a user can manipulate data read by a connection by injecting sequences into a Redis error reply bsc1258706...

6AI score
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/02 12:0 a.m.4 views

openSUSE Security Advisory (SUSE-SU-2026:0667-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6AI score
Exploits0References4
SUSE Linux
SUSE Linux
added 2026/02/26 3:19 p.m.3 views

Security update for redis7

This update for redis7 fixes the following issue: a user can manipulate data read by a connection by injecting sequences into a Redis error reply bsc1258706. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...

5.4AI score
Exploits0References2
Snyk
Snyk
added 2026/01/26 7:49 p.m.6 views

Allocation of Resources Without Limits or Throttling

Overview @modern-js/utils is a progressive web framework based on React. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the decoding reply functions of React Flight protocol. An attacker can cause server crashes, out-of-memory exception...

8.7CVSS7.2AI score0.65592EPSS
Exploits10References2
Snyk
Snyk
added 2026/01/26 7:49 p.m.8 views

Allocation of Resources Without Limits or Throttling

Overview react-server-dom-parcel is a React Server Components bindings for DOM using Parcel. This is intended to be integrated into meta-frameworks. It is not intended to be imported directly. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling...

8.7CVSS5.9AI score0.65592EPSS
Exploits10References2
RedHat Linux
RedHat Linux
added 2026/01/19 2:20 a.m.6 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS7.2AI score0.00632EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 7 : dnsmasq-2.76-16.el7.1 (AXSA:2021-1266:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1266:01 advisory. dnsmasq: loose address/port check in replyquery makes forging replies easier for an off-path attacker CVE-2020-25684 dnsmasq: loose query name check...

4.3CVSS6.9AI score0.04873EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 4 : dnsmasq-2.48-18.0.1.AXS4 (AXSA:2021-1429:04)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1429:04 advisory. dnsmasq: loose address/port check in replyquery makes forging replies easier for an off-path attacker CVE-2020-25684 dnsmasq: loose query name check...

4.3CVSS6.9AI score0.04873EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.4 views

MiracleLinux 4 : dnsmasq-2.48-18.AXS4 (AXSA:2017-2307:01)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2017-2307:01 advisory. A heap buffer overflow was found in dnsmasq in the code responsible for building DNS replies. An attacker could send crafted DNS packets to dnsmasq which wou...

9.8CVSS8.4AI score0.84925EPSS
Exploits6References2
NVD
NVD
added 2025/12/30 1:16 p.m.3 views

CVE-2022-50861

In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...

0.002EPSS
Exploits0References5
NVD
NVD
added 2025/10/30 10:15 a.m.3 views

CVE-2025-40099

In the Linux kernel, the following vulnerability has been resolved: cifs: parsedfsreferrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTLDFSGETREFERRALS - reply smaller than sizeofstruct getdfsreferralrsp - reply with number of referrals smaller than...

0.00183EPSS
Exploits0References5
OSV
OSV
added 2025/10/30 9:48 a.m.4 views

CVE-2025-40099 cifs: parse_dfs_referrals: prevent oob on malformed input

In the Linux kernel, the following vulnerability has been resolved: cifs: parsedfsreferrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTLDFSGETREFERRALS - reply smaller than sizeofstruct getdfsreferralrsp - reply with number of referrals smaller than...

6.5AI score0.00183EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/10/30 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2025-40099

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cifs: parsedfsreferrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTLDFSGETREFERRALS - reply smaller than sizeofstruct...

6.2AI score0.00183EPSS
Exploits0References4
Rows per page
Query Builder