Lucene search
K

403 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:9 a.m.12 views

CVE-2024-2694

The Betheme theme for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 27.5.6 via deserialization of untrusted input of the 'mfn-page-items' post meta value. This makes it possible for authenticated attackers, with contributor-level access and above, to inject...

8.8CVSS7.2AI score0.00623EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/12/31 12:25 a.m.3 views

SUSE CVE-2023-54324

In the Linux kernel, the following vulnerability has been resolved: dm: fix a race condition in retrievedeps There's a race condition in the multipath target when retrievedeps races with multipathmessage calling dmgetdevice and dmputdevice. retrievedeps walks the list of open devices without...

6.3CVSS6.5AI score0.00169EPSS
Exploits0References17
Debian CVE
Debian CVE
added 2025/12/30 12:37 p.m.3 views

CVE-2023-54324

In the Linux kernel, the following vulnerability has been resolved: dm: fix a race condition in retrievedeps There's a race condition in the multipath target when retrievedeps races with multipathmessage calling dmgetdevice and dmputdevice. retrievedeps walks the list of open devices without...

6.1AI score0.00169EPSS
Exploits0
CVE
CVE
added 2025/12/30 12:37 p.m.18 views

CVE-2023-54324

CVE-2023-54324 concerns a race condition in the Linux kernel’s device-mapper multipath path. The issue arises when retrieve_deps walks the list of open devices without acquiring locks, while multipath may concurrently modify the list via dm_get_device and dm_put_device, risking memory corruption ...

6.1AI score0.00169EPSS
Exploits0References3
OSV
OSV
added 2025/12/24 10:15 p.m.4 views

DEBIAN-CVE-2025-68920

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

8.9CVSS5.6AI score0.00373EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/24 9:47 p.m.3 views

CVE-2025-68920

C-Kermit aka ckermit through 10.0 Beta.12 aka 416-beta12 before 244644d allows a remote Kermit system to overwrite files on the local system, or retrieve arbitrary files from the local system...

8.9CVSS6.5AI score0.00373EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

ckermit 安全漏洞

ckermit is an open source serial communications software from The Kermit Project. A security vulnerability exists in ckermit 10.0 Beta.12 and earlier versions, which originates from a remote Kermit system that can overwrite or retrieve local files...

8.9CVSS6.3AI score0.00373EPSS
Exploits0References4
OSV
OSV
added 2025/12/18 1:15 a.m.5 views

DEBIAN-CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS4.6AI score0.00113EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/12/18 1:15 a.m.6 views

CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS5.9AI score0.00113EPSS
Exploits0References8
EUVD
EUVD
added 2025/12/18 12:2 a.m.5 views

EUVD-2025-204021

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS6AI score0.00113EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2025/12/18 12:2 a.m.6 views

CVE-2025-14841

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS4.6AI score0.00113EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/12/18 12:2 a.m.6 views

CVE-2025-14841 OFFIS DCMTK dcmqrscp dcmqrdbi.cc startMoveRequest null pointer dereference

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS6.1AI score0.00113EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/12/18 12:2 a.m.32 views

CVE-2025-14841 OFFIS DCMTK dcmqrscp dcmqrdbi.cc startMoveRequest null pointer dereference

A flaw has been found in OFFIS DCMTK up to 3.6.9. The impacted element is the function DcmQueryRetrieveIndexDatabaseHandle::startFindRequest/DcmQueryRetrieveIndexDatabaseHandle::startMoveRequest in the library dcmqrdb/libsrc/dcmqrdbi.cc of the component dcmqrscp. This manipulation causes null...

4.8CVSS0.00113EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/12/11 2:10 p.m.11 views

CVE-2024-40593

A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0 all versions, FortiAnalyzer 6.4 all versions, FortiManager 7.4.0 through 7.4.2, FortiManager 7.2.0 through 7.2.5, FortiManager 7.0 all versions, FortiManager 6...

6CVSS6.3AI score0.00096EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.5 views

EUVD-2025-202079

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in uixthemes Sober sober allows Retrieve Embedded Sensitive Data.This issue affects Sober: from n/a through = 3.5.11...

5.3CVSS6.4AI score0.0024EPSS
Exploits0References2
CVE
CVE
added 2025/12/07 3:2 a.m.16 views

CVE-2025-14183

SGAI Space1 NAS N1211DS (≤1.0.915) is affected by CVE-2025-14183 in the gsaiagent component, specifically GET_FACTORY_INFO/GET_USER_INFO in /cgi-bin/JSONAPI. The issue enables unprotected storage of credentials and is exploitable remotely; public exploit material exists. Red Hat/EUVD/NVD entries ...

5.3CVSS6.4AI score0.00227EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.5 views

PT-2025-47986

"FOD" App uses hard-coded cryptographic keys, which may allow a local unauthenticated attacker to retrieve the cryptographic keys...

5.1CVSS6.8AI score0.0011EPSS
Exploits0References3
Hacker One
Hacker One
added 2025/10/25 9:24 p.m.10 views

Revive Adserver: Stored XSS on inventory-retrieve.php

A Cross-site Scripting XSS vulnerability was discovered on the inventory-retrieve.php and campaign-edit.php pages. The vulnerability allowed an attacker to inject malicious code that would be executed when the page was loaded...

5.4CVSS6.5AI score0.00312EPSS
Exploits1
EUVD
EUVD
added 2025/10/21 3:30 p.m.6 views

EUVD-2025-35179

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

4.8CVSS6.2AI score0.00255EPSS
Exploits1References8
Cvelist
Cvelist
added 2025/10/21 3:2 p.m.13 views

CVE-2022-4981 DCMTK dcmqrscp dcmqrcnf.cc readPeerList null pointer dereference

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...

4.8CVSS0.00255EPSS
Exploits1References5
Rows per page
Query Builder