Lucene search
+L

650 matches found

susecve
susecve
added 2026/01/06 12:23 a.m.4 views

SUSE CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.9AI score0.00241EPSS
Exploits0References3
redhatcve
redhatcve
added 2026/01/01 11:40 a.m.5 views

CVE-2025-69412

A flaw was found in messagelib. This vulnerability allows a remote attacker to spoof threat data by exploiting the component's failure to properly validate SSL certificates when communicating with the Google Safe Browsing Lookup API. This could lead to malicious content bypassing security checks...

3.4CVSS6.4AI score0.00241EPSS
Exploits0References2
euvd
euvd
added 2026/01/01 12:31 a.m.7 views

EUVD-2025-206095

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.3AI score0.00241EPSS
Exploits0References5
osv
osv
added 2026/01/01 12:15 a.m.6 views

DEBIAN-CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.2AI score0.00241EPSS
Exploits0References1
nvd
nvd
added 2026/01/01 12:15 a.m.11 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS0.00241EPSS
Exploits0References4
ubuntucve
ubuntucve
added 2026/01/01 12:15 a.m.5 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.8AI score0.00241EPSS
Exploits0References6
osv
osv
added 2026/01/01 12:15 a.m.3 views

UBUNTU-CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.8AI score0.00241EPSS
Exploits0References7
cnnvd
cnnvd
added 2026/01/01 12:0 a.m.5 views

messagelib 信任管理问题漏洞

messagelib is a KDE open source application. A small C library for Linux. A trust management issue vulnerability exists in versions prior to messagelib 25.11.90, which stems from an SSL error that ignores the Google Safe Browsing Lookup API, which could lead to threat data spoofing...

3.4CVSS6.3AI score0.00241EPSS
Exploits0References4
nessus
nessus
added 2026/01/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-69412

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of...

3.4CVSS6AI score0.00241EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/12/31 11:20 p.m.3 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.5AI score0.00241EPSS
Exploits0References4
debiancve
debiancve
added 2025/12/31 11:20 p.m.6 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS5.2AI score0.00241EPSS
Exploits0
cve
cve
added 2025/12/31 11:20 p.m.260 views

CVE-2025-69412

KDE messagelib vulnerable before version 25.11.90 due to ignoring SSL errors for threatMatches:find in the Google Safe Browsing Lookup API, potentially allowing spoofed threat data. The issue is mitigated by updating to KDE messagelib 25.11.90 or applying the vendor security patch described in th...

3.4CVSS6.5AI score0.00241EPSS
Exploits0References4
osv
osv
added 2025/12/31 11:20 p.m.11 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.8AI score0.00241EPSS
Exploits0References6
alpinelinux
alpinelinux
added 2025/12/31 11:20 p.m.16 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS6.9AI score0.00241EPSS
Exploits0References4
cvelist
cvelist
added 2025/12/31 11:20 p.m.29 views

CVE-2025-69412

KDE messagelib before 25.11.90 ignores SSL errors for threatMatches:find in the Google Safe Browsing Lookup API aka phishing API, which might allow spoofing of threat data. NOTE: this Lookup API is not contacted in the messagelib default configuration...

3.4CVSS0.00241EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2025/12/31 12:0 a.m.3 views

PT-2025-54472

Name of the Vulnerable Software and Affected Versions KDE messagelib versions prior to 25.11.90 Description The software does not properly handle SSL errors when using the Google Safe Browsing Lookup API, potentially allowing for spoofing of threat data. This issue affects the find function withi...

3.4CVSS6.6AI score0.00241EPSS
Exploits0References13
hivepro
hivepro
added 2025/12/08 9:49 p.m.8 views

Chrome Zero-Day Vulnerability: Risks & Protection

Your team knows the drill: a security alert goes out, and everyone scrambles to patch. But what happens in the critical window before a fix is available for a new Chrome zero-day vulnerability? Relying on a reactive cycle of patching leaves your organization dangerously exposed. Attackers thrive ...

8.1AI score
Exploits0
nessus
nessus
added 2025/11/20 12:0 a.m.4 views

TencentOS Server 3: thunderbird (TSSA-2023:0054)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0054 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

8.8CVSS7.7AI score0.01185EPSS
Exploits0References12
redos
redos
added 2025/11/13 12:0 a.m.6 views

ROS-20251113-01

A vulnerability in the Omnibox component of the Google Chrome and Microsoft Edge browsers is related to writing outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges A vulnerability in the Safe Browsing compone...

8.8CVSS9.7AI score0.03638EPSS
Exploits1
redhatcve
redhatcve
added 2025/11/11 1:57 p.m.3 views

CVE-2025-11756

Use after free in Safe Browsing in Google Chrome prior to 141.0.7390.107 allowed a remote attacker who had compromised the renderer process to potentially perform out of bounds memory access via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.8AI score0.00419EPSS
Exploits0References5
Rows per page
Query Builder