Lucene search
+L

251 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-39007

Malicious code in bioql PyPI...

5.3CVSS6.4AI score0.01185EPSS
Exploits0References11
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.11 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: nvkm: The available space of the GSP cmdq buffer is calculated correctly. r535gspcmdqpush waits for an available page in the GSP cmdq buffer when handling a large RPC request. When it encounters at least one available page in...

5.5CVSS6.5AI score0.0018EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 4:23 a.m.10 views

CVE-2023-48886

A deserialization vulnerability in NettyRpc v1.2 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS7.8AI score0.0136EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 1:49 a.m.9 views

CVE-2023-48887

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS7.7AI score0.01552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:34 p.m.10 views

CVE-2020-9496

XML-RPC request are vulnerable to unsafe deserialization and Cross-Site Scripting issues in Apache OFBiz 17.12.03...

6.1CVSS6.5AI score0.98926EPSS
Exploits16References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:11 a.m.8 views

CVE-2018-15631

Improper access control in the Discuss App of Odoo Community 12.0 and earlier, and Odoo Enterprise 12.0 and earlier allows remote authenticated attackers to e-mail themselves arbitrary files from the database, via a crafted RPC request...

6.5CVSS6.7AI score0.01399EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/04/11 9:54 a.m.5 views

SUSE CVE-2012-6534

Novell Sentinel Log Manager before 1.2.0.3 allows remote attackers to create data retention policies via a crafted text/x-gwt-rpc request to novelllogmanager/datastorageservice.rpc, and allows remote authenticated Report Administrators to create data retention policies via a search-results "Save...

4.3CVSS6.8AI score0.04486EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-58018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvkm: correctly calculate the available space of the GSP cmdq buffer r535gspcmdqpush waits for the available page in the GSP cmdq buffer when handling a large R...

5.5CVSS6.9AI score0.0018EPSS
Exploits0References2
NVD
NVD
added 2025/02/27 3:15 a.m.12 views

CVE-2024-58018

In the Linux kernel, the following vulnerability has been resolved: nvkm: correctly calculate the available space of the GSP cmdq buffer r535gspcmdqpush waits for the available page in the GSP cmdq buffer when handling a large RPC request. When it sees at least one available page in the cmdq, it...

5.5CVSS0.0018EPSS
Exploits0References3
CVE
CVE
added 2025/02/27 2:12 a.m.105 views

CVE-2024-58018

The CVE-2024-58018 issue affects the Linux kernel’s GSP command queue path within the Nouveau nvkm/GSP code. The root cause is in r535_gsp_cmdq_push/r535_gsp_msgq_wait logic: when handling large RPCs, the code treats the available pages as (write pointer, buf_size) and exits the wait prematurely,...

5.5CVSS6.7AI score0.0018EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/02/27 2:12 a.m.6 views

CVE-2024-58018 nvkm: correctly calculate the available space of the GSP cmdq buffer

In the Linux kernel, the following vulnerability has been resolved: nvkm: correctly calculate the available space of the GSP cmdq buffer r535gspcmdqpush waits for the available page in the GSP cmdq buffer when handling a large RPC request. When it sees at least one available page in the cmdq, it...

5.5CVSS6.2AI score0.0018EPSS
Exploits0References6
Wallarm Lab
Wallarm Lab
added 2024/04/13 9:57 p.m.109 views

How to track and stop CVE-2024-3400: Palo Alto Networks API Exploit Causing Critical Infrastructure and Enterprise Epidemics

On Friday April 12, Palo Alto disclosed that some versions of PAN-OS are not only vulnerable to remote code execution, but that the vulnerability has been actively exploited to install backdoors on Palo Alto firewalls. A patch is expected to be available on April 14th. The advisory from Palo Alto...

10CVSS10AI score0.99999EPSS
Exploits43
Github Security Blog
Github Security Blog
added 2023/12/02 12:31 a.m.63 views

Jupiter allows attackers to execute arbitrary commands via sending a crafted RPC request

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS7.7AI score0.01552EPSS
Exploits1References5Affected Software1
NVD
NVD
added 2023/12/01 11:15 p.m.30 views

CVE-2023-48887

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS0.01552EPSS
Exploits1References3
NVD
NVD
added 2023/12/01 11:15 p.m.21 views

CVE-2023-48886

A deserialization vulnerability in NettyRpc v1.2 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS0.0136EPSS
Exploits1References2
Prion
Prion
added 2023/12/01 11:15 p.m.19 views

Deserialization of untrusted data

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

7.5CVSS8AI score0.01552EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/12/01 11:15 p.m.23 views

Deserialization of untrusted data

A deserialization vulnerability in NettyRpc v1.2 allows attackers to execute arbitrary commands via sending a crafted RPC request...

7.5CVSS8AI score0.0136EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2023/12/01 12:0 a.m.61 views

CVE-2023-48887

CVE-2023-48887 applies to Jupiter v1.3.1 and describes a deserialization vulnerability that allows an attacker to execute arbitrary commands by sending a crafted RPC request. The issue is categorized as a high/critical remote code execution risk (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Mu...

9.8CVSS9.7AI score0.01552EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/12/01 12:0 a.m.34 views

CVE-2023-48887

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.9AI score0.01552EPSS
Exploits1References3
OSV
OSV
added 2023/12/01 12:0 a.m.11 views

CVE-2023-48887

A deserialization vulnerability in Jupiter v1.3.1 allows attackers to execute arbitrary commands via sending a crafted RPC request...

9.8CVSS9.7AI score0.01552EPSS
Exploits1References5
Rows per page
Query Builder