Lucene search
K

4323 matches found

Vulnrichment
Vulnrichment
added 2026/01/27 6:51 p.m.2 views

CVE-2020-36980 SAntivirus IC 10.0.21.61 - 'SAntivirusIC' Unquoted Service Path

SAntivirus IC 10.0.21.61 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to potentially execute arbitrary code. Attackers can exploit the unquoted executable path to inject malicious files in the service binary path, enabling...

8.5CVSS6.1AI score0.0013EPSS
Exploits0References3
Broadcom
Broadcom
added 2026/01/27 12:0 a.m.14 views

The allocate_structures function insufficiently checks bounds before arithmetic multiplication

sysstat is a set of system performance tools for the Linux operating system. On 32 bit systems, in versions 9.1.16 and newer but prior to 12.7.1, allocatestructures contains a sizet overflow in sacommon.c. The allocatestructures function insufficiently checks bounds before arithmetic...

7.8CVSS6AI score0.01096EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 9 : libreswan-4.12-1.el9 (AXSA:2023-6824:09)

The remote MiracleLinux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-6824:09 advisory. libreswan: Invalid IKEv2 REKEY proposal causes restart CVE-2023-38710 libreswan: Invalid IKEv1 Quick Mode ID causes restart CVE-2023-38711 libreswan...

6.5CVSS5.6AI score0.00691EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : libreswan-4.12-2.el8 (AXSA:2023-7185:10)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2023-7185:10 advisory. libreswan: Invalid IKEv2 REKEY proposal causes restart CVE-2023-38710 libreswan: Invalid IKEv1 Quick Mode ID causes restart CVE-2023-38711 libreswan...

6.5CVSS5.6AI score0.00691EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2026-1033)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS6.7AI score0.00211EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2026-1050)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.01345EPSS
Exploits9References4
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for bind (EulerOS-SA-2026-1019)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.6CVSS6.7AI score0.00509EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for unbound (EulerOS-SA-2026-1100)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.7AI score0.00311EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.9 views

MiracleLinux 8 : kernel-4.18.0-553.32.1.el8_10 (AXSA:2025-9521:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9521:01 advisory. kernel: selinux,smack: don't bypass permissions check in inodesetsecctx hook CVE-2024-46695 kernel: net: avoid potential underflow in qdiscpktlenini...

7.8CVSS7AI score0.00352EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2026/01/10 12:24 a.m.3 views

CVE-2026-22027 CryptoLib Vulnerable to Heap Buffer Overflow in MariaDB SA Hexstring Conversion

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. Prior to version 1.4.3, the converthexstringtobytearray function in th...

5.7CVSS7AI score0.00209EPSS
Exploits1References3
CVE
CVE
added 2026/01/10 12:24 a.m.14 views

CVE-2026-22027

CryptoLib (NASA’s SDLS-EP implementation) is affected prior to version 1.4.3 by a heap buffer overflow in convert_hexstring_to_byte_array() within the MariaDB SA interface. The function writes decoded bytes into a caller-provided buffer without capacity checks, which can overflow when importing S...

6CVSS7AI score0.00209EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

EulerOS 2.0 SP9 : pam (EulerOS-SA-2026-1016)

According to the versions of the pam package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A Local Privilege Escalation LPE vulnerability has been discovered in pam-config within Linux Pluggable Authentication Modules PAM. This flaw allows a...

7.8CVSS8.1AI score0.00957EPSS
Exploits13References2
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000393)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000393 advisory. Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more th...

7.5CVSS6.6AI score0.9166EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/12/31 6:8 a.m.4 views

CVE-2025-15222

A vulnerability has been found in Dromara Sa-Token up to 1.44.0. This issue affects the function ObjectInputStream.readObject of the file SaSerializerTemplateForJdkUseBase64.java. Such manipulation leads to deserialization. The attack can be executed remotely. This attack is characterized by high...

5CVSS6.4AI score0.0022EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/12/31 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2025-2606)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.7AI score0.00254EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/12/31 12:0 a.m.1 views

Huawei EulerOS: Security Advisory for avahi (EulerOS-SA-2025-2619)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.7AI score0.00681EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/12/31 12:0 a.m.3 views

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-2614)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.00611EPSS
Exploits0References3
NVD
NVD
added 2025/12/30 6:15 a.m.5 views

CVE-2025-15222

A vulnerability has been found in Dromara Sa-Token up to 1.44.0. This issue affects the function ObjectInputStream.readObject of the file SaSerializerTemplateForJdkUseBase64.java. Such manipulation leads to deserialization. The attack can be executed remotely. This attack is characterized by high...

5CVSS0.0022EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/12/30 5:32 a.m.4 views

CVE-2025-15222 Dromara Sa-Token SaSerializerTemplateForJdkUseBase64.java ObjectInputStream.readObject deserialization

A vulnerability has been found in Dromara Sa-Token up to 1.44.0. This issue affects the function ObjectInputStream.readObject of the file SaSerializerTemplateForJdkUseBase64.java. Such manipulation leads to deserialization. The attack can be executed remotely. This attack is characterized by high...

5CVSS6.3AI score0.0022EPSS
Exploits0References4
CVE
CVE
added 2025/12/30 5:32 a.m.10 views

CVE-2025-15222

CVE-2025-15222 affects Dromara Sa-Token up to 1.44.0. The vulnerability is a deserialization flaw in ObjectInputStream.readObject within SaSerializerTemplateForJdkUseBase64.java, enabling remote manipulation with high complexity and publicly disclosed exploit. Multiple connected sources (Red Hat,...

5CVSS6.3AI score0.0022EPSS
Exploits0References4
Rows per page
Query Builder