Lucene search
+L

150 matches found

RedhatCVE
RedhatCVE
added 2025/07/10 1:30 a.m.7 views

CVE-2025-42978

The widely used component that establishes outbound TLS connections in SAP NetWeaver Application Server Java does not reliably match the hostname that is used for the connection against the wildcard hostname defined in the received certificate of remote TLS server. This might lead to the outbound...

3.5CVSS7.6AI score0.00119EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 4:58 p.m.9 views

CVE-2025-49727 Win32k Elevation of Privilege Vulnerability

...

7CVSS0.00348EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/08 4:57 p.m.8 views

CVE-2025-49760 Windows Storage Spoofing Vulnerability

...

3.5CVSS0.01256EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/10 5:2 p.m.15 views

CVE-2025-47977 Nuance Digital Engagement Platform Spoofing Vulnerability

...

8.2CVSS0.00513EPSS
Exploits0References1
CVE
CVE
added 2025/06/10 5:2 p.m.107 views

CVE-2025-29828

CVE-2025-29828 (Windows Schannel Remote Code Execution) affects Windows Cryptographic Services. Description confirms missing release of memory after effective lifetime, enabling a remote attacker to execute code over a network. CVSS 3.1/3.1.0 base 8.1 (High) with network vector, no user interacti...

8.1CVSS8.2AI score0.01112EPSS
Exploits0References1Affected Software6
Debian CVE
Debian CVE
added 2025/05/27 12:29 p.m.11 views

CVE-2025-5267

A clickjacking vulnerability could have been used to trick a user into leaking saved payment card details to a malicious page. This vulnerability was fixed in Firefox 139, Firefox ESR 128.11, Thunderbird 139, and Thunderbird 128.11...

5.4CVSS6.2AI score0.00227EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:11 a.m.7 views

CVE-2024-32097

Cross-Site Request Forgery CSRF vulnerability in Eyal Fitoussi GEO my WordPress.This issue affects GEO my WordPress: from n/a through 4.1...

5.4CVSS5.1AI score0.00209EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:36 a.m.16 views

CVE-2024-32822

Missing Authorization vulnerability in impleCode Reviews Plus.This issue affects Reviews Plus: from n/a through 1.3.4...

4.3CVSS5.1AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:54 a.m.10 views

CVE-2024-0710

The GP Unique ID plugin for WordPress is vulnerable to Unique ID Modification in all versions up to, and including, 1.5.5. This is due to insufficient input validation. This makes it possible for unauthenticated attackers to tamper with the generation of a unique ID on a form submission and repla...

5.3CVSS6.8AI score0.0103EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:8 a.m.6 views

CVE-2023-38544

A logged in user can modify specific files that may lead to unauthorized changes in system-wide configuration settings. This vulnerability could be exploited to compromise the integrity and security of the network on the affected system...

5.5CVSS6.8AI score0.00374EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:24 a.m.6 views

CVE-2019-10928

A vulnerability has been identified in SCALANCE SC-600 V2.0. An authenticated attacker with access to port 22/tcp as well as physical access to an affected device may trigger the device to allow execution of arbitrary commands. The security vulnerability could be exploited by an authenticated...

6.6CVSS6.8AI score0.00408EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/08 10:17 p.m.92 views

CVE-2025-29813 Azure DevOps Elevation of Privilege Vulnerability

...

10CVSS0.01533EPSS
Exploits0References1
CVE
CVE
added 2025/04/15 8:30 p.m.99 views

CVE-2025-21581

CVE-2025-21581 affects Oracle MySQL Server (component: Server: Optimizer). Affected versions are 8.0.0–8.0.41, 8.4.0–8.4.4, and 9.0.0–9.2.0. The vulnerability is exploitable over the network with high privileges and can cause a hang or a frequently repeating crash (complete DoS) of MySQL Server. ...

4.9CVSS4.4AI score0.00816EPSS
Exploits0References2Affected Software1
Chainguard
Chainguard
added 2025/03/23 4:19 p.m.25 views

GHSA-FMJ5-WV96-R2CH vulnerabilities

Vulnerabilities for packages: hadoop-fips...

7.5AI score
Exploits0
Hacker One
Hacker One
added 2025/03/18 11:38 p.m.5 views

curl: Double free caused by mqtt_doing()

mqttdoing lib/mqtt.c causes a double free under certain conditions. The conditions are 1 an mqttsend is unable to send its entire buffer at one time; and 2 the next call to mqttsend fails. The bug arises because mqttdoing frees the pointer mq-sendleftovers without nulling it line 755. Source belo...

6.7AI score
Exploits0
CVE
CVE
added 2025/03/14 12:53 p.m.55 views

CVE-2025-27595

CVE-2025-27595 concerns SICK DL100-2xxxxxxx devices where a weak password hash algorithm is used. The vulnerability allows an attacker to derive a matching password due to the weak hashing, impacting confidentiality, integrity, and availability. The CVSS 3.1 score is 9.8 (Network attack, no user ...

9.8CVSS9.5AI score0.00518EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/03/13 6:14 p.m.8 views

CVE-2025-25244

SAP Business Warehouse Process Chains allows an attacker to manipulate the process execution due to missing authorization check. An attacker with display authorization for the process chain object could set one or all processes to be skipped. This means corresponding activities, such as data...

5.7CVSS6.8AI score0.00205EPSS
Exploits0References1
OSV
OSV
added 2025/03/08 12:0 a.m.8 views

DLA-4079-1 openvpn - security update

Bulletin has no description...

9.8CVSS6.7AI score0.03519EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2012-3143

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and...

10CVSS8.1AI score0.05572EPSS
Exploits0References2
Wolfi
Wolfi
added 2025/02/25 3:16 p.m.4 views

GHSA-QP3J-RXH4-Q4H8 vulnerabilities

Vulnerabilities for packages: firefox...

7.5AI score
Exploits0
Rows per page
Query Builder