Lucene search
K

403 matches found

Positive Technologies
Positive Technologies
added 2026/06/06 12:0 a.m.14 views

PT-2026-47129

Name of the Vulnerable Software and Affected Versions LearnPress – Backup & Migration Tool versions prior to 4.1.5 Description The plugin is susceptible to PHP Object Injection due to the deserialization of untrusted input. This allows authenticated attackers with administrator-level access or...

6.6CVSS5.8AI score0.0045EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/06/05 7:25 p.m.7 views

CVE-2026-44423

ShellHub is a centralized SSH gateway. Prior to 0.24.2, GET /api/sessions/:uid returns the full session object for any authenticated caller, without scoping by the caller's tenant. An authenticated user can read session records SSH username, device UID, remote IP, terminal type, authenticated fla...

6.5CVSS5.5AI score0.00246EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/31 4:30 p.m.11 views

CVE-2026-10194

A weakness has been identified in OFFIS DCMTK 3.7.0. This affects the function DcmQueryRetrieveIndexDatabaseHandle::deleteOldestImages of the file dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. Executing a manipulation can lead to heap-based buffer overflow. The attack may be launched...

6.5CVSS6.8AI score0.00247EPSS
Exploits0References6Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/21 8:21 a.m.9 views

CVE-2026-27349

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in WPFunnels Team Mail Mint allows Retrieve Embedded Sensitive Data. This issue affects Mail Mint: from n/a through 1.19.5...

4.3CVSS5.8AI score0.00171EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/19 4:43 a.m.10 views

CVE-2026-32994

The /api/v1/autotranslate.translateMessage endpoint in versions 8.5.0, 8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.6, 7.13.8, and 7.10.12 allows any authenticated user to retrieve the full content of any message from any room private groups, direct messages, channels by simply providing the target message ID...

5.3CVSS6.1AI score0.00252EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/15 1:58 a.m.7 views

SUSE CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/14 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-43489

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempt...

5.5CVSS5.5AI score0.00102EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/13 6:30 p.m.23 views

EUVD-2026-30025

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/13 5:9 p.m.7 views

CVE-2026-43489

A flaw was found in the Linux kernel's liveupdate mechanism. When a retrieve operation fails, the system does not properly record the failure status. This allows a local attacker to repeatedly attempt the operation, potentially leading to attempts to access or free already freed data structures...

5.8AI score0.00102EPSS
Exploits0References4
NVD
NVD
added 2026/05/13 4:16 p.m.30 views

CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.5CVSS0.00102EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/13 4:16 p.m.9 views

CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References2
OSV
OSV
added 2026/05/13 4:16 p.m.3 views

UBUNTU-CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.5CVSS5.5AI score0.00102EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/13 3:8 p.m.6 views

CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/13 3:8 p.m.58 views

CVE-2026-43489 liveupdate: luo_file: remember retrieve() status

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

0.00102EPSS
Exploits0References2
CVE
CVE
added 2026/05/13 3:8 p.m.24 views

CVE-2026-43489

The CVE-2026-43489 issue concerns the Linux kernel liveupdate code path for LUO files, specifically luo_file.retrieve_status. The bug arises because on a failed retrieve, luo_retrieve_file() returns an error without recording that a retrieve was attempted or its error code. This can cause an erro...

5.5CVSS5.6AI score0.00102EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/13 3:8 p.m.8 views

CVE-2026-43489

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luofile: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.5CVSS5.6AI score0.00102EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/13 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the luoretrievefile function. When retrieval fails, this function does not record the attempt...

5.8AI score0.00102EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/13 12:0 a.m.11 views

PT-2026-40696

In the Linux kernel, the following vulnerability has been resolved: liveupdate: luo file: remember retrieve status LUO keeps track of successful retrieve attempts on a LUO file. It does so to avoid multiple retrievals of the same file. Multiple retrievals cause problems because once the file is...

5.6AI score0.00102EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/06 12:0 a.m.7 views

Directory Traversal

Overview org.springframework.cloud:spring-cloud-config-server is a library that provides an HTTP resource-based API for external configuration. Affected versions of this package are vulnerable to Directory Traversal via the retrieve and binary methods in ResourceController. An attacker can read...

9.1CVSS6.3AI score0.00727EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/05 3:0 p.m.4 views

CVE-2026-7844

A vulnerability was detected in chatchat-space Langchain-Chatchat up to 0.3.1.3. This vulnerability affects the function files/listfiles/retrievefile/retrievefilecontent/deletefile of the file libs/chatchat-server/chatchat/server/apiserver/openairoutes.py of the component Compatible File Service...

6.3CVSS6.4AI score0.00322EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder