Lucene search
K

53721 matches found

Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.12 views

PT-2026-48594

Name of the Vulnerable Software and Affected Versions Drupal Composer affected versions not specified Description A security issue exists in the Drupal Composer project. This project is a Drupal system component that utilizes Composer and is distinct from the Composer software itself...

6.1AI score0.00153EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.13 views

PT-2026-48595

Name of the Vulnerable Software and Affected Versions Drupal Brute force attack protection versions . Description An issue exists in the Brute force attack protection module that allows for a brute force attack. Recommendations At the moment, there is no information about a newer version that...

6.1AI score0.00153EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.11 views

PT-2026-48593

Name of the Vulnerable Software and Affected Versions Drupal Mother May I versions . Description A security issue exists in the Drupal Mother May I project. The project is currently marked as unsupported, and the maintainer has not provided a fix for this issue. Recommendations At the moment, the...

6.1AI score0.00153EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.19 views

Silverpeas 安全漏洞

Silverpeas is an open-source business collaboration platform developed by Silverpeas. This platform includes applications such as project management, blogs, forums, and document management. Versions of Silverpeas prior to 6.4.6 contained security vulnerabilities, which were caused by improper...

6.5CVSS5.3AI score0.00327EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/10 12:0 a.m.22 views

PT-2026-48486

Name of the Vulnerable Software and Affected Versions Palo Alto Networks PAN-OS affected versions not specified Description A memory corruption issue occurs during the processing of tunnel traffic. An authenticated user can trigger system reboots by sending a maliciously crafted packet. If these...

6.9CVSS5.3AI score0.00192EPSS
Exploits0References5
Drupal
Drupal
added 2026/06/10 12:0 a.m.14 views

Composer - Critical - Unsupported - SA-CONTRIB-2026-046

The security team is marking the Composer module for Drupal project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read:...

5.3AI score0.00153EPSS
Exploits0References2
Drupal
Drupal
added 2026/06/10 12:0 a.m.9 views

Mother May I - Critical - Unsupported - SA-CONTRIB-2026-045

The security team is marking this project unsupported. There is a known security issue with the project that has not been fixed by the maintainer. If you would like to maintain this project, please read: https://www.drupal.org/node/251466s-becoming-owner-maintainer-or-co-mai...

5.2AI score0.00153EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 2026/06/09 5:0 p.m.15 views

2026-06 Cumulative Update for Windows 10 Version 22H2 for ARM64-based Systems (KB5094127)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

5.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2026/06/09 5:0 p.m.158 views

2026-06 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5094122)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

5.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2026/06/09 5:0 p.m.259 views

2026-06 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5094123)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

5.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2026/06/09 5:0 p.m.34 views

2026-06 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5094123)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

5.4AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2026/06/09 5:0 p.m.16 views

2026-06 Cumulative Update for Windows 10 Version 21H2 for ARM64-based Systems (KB5094127)

A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article...

5.4AI score
Exploits0
Debian CVE
Debian CVE
added 2026/06/09 4:3 p.m.8 views

CVE-2026-45445

Issue summary: When an application drives an AES-OCB context through the public EVPCipher one-shot interface, the application-supplied initialisation vector IV is silently discarded. Impact summary: Every message encrypted under the same key uses the same effective nonce regardless of the IV...

7.5CVSS5.7AI score0.0032EPSS
Exploits0
OSV
OSV
added 2026/06/09 5:16 a.m.10 views

DEBIAN-CVE-2026-41850

Applications that evaluate user-supplied Spring Expression Language SpEL expressions are vulnerable to an Algorithmic Denial of Service DoS. By providing a specially crafted expression, an attacker can trigger excessive resource consumption during evaluation, leading to application degradation or...

7.5CVSS5.5AI score0.0036EPSS
Exploits0References1
Spring Security Advisories
Spring Security Advisories
added 2026/06/09 12:0 a.m.16 views

cve-2026-47838 - MEDIUM - Unauthorized User Impersonation when Using X.509 Client Certificates

cve-2026-47838 - MEDIUM - Unauthorized User Impersonation when Using X.509 Client Certificates...

8.1CVSS6.1AI score0.00116EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/06/08 11:27 p.m.9 views

CVE-2026-11688

Inappropriate implementation in SVG in Google Chrome prior to 149.0.7827.103 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6AI score0.00256EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/06/08 3:46 p.m.9 views

CVE-2026-46306

In the Linux kernel, the following vulnerability has been resolved: flowdissector: do not dissect PPPoE PFC frames RFC 2516 Section 7 states that Protocol Field Compression PFC is NOT RECOMMENDED for PPPoE. In practice, pppd does not support negotiating PFC for PPPoE sessions, and the flow...

7.5CVSS5.3AI score0.00389EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.12 views

Google Chrome 竞争条件问题漏洞

Google Chrome is a web browser developed by the American company Google. Google Chrome has a vulnerability related to network conditions, known as a “network condition vulnerability.”...

8.3CVSS5.3AI score0.00148EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:50 a.m.13 views

SUSE CVE-2026-10950

Insufficient policy enforcement in Autofill in Google Chrome on iOS prior to 149.0.7827.53 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

6.5CVSS5.5AI score0.00296EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/07 4:40 a.m.9 views

SUSE CVE-2026-11260

Inappropriate implementation in Permissions in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass content security policy via a crafted HTML page. Chromium security severity: Low...

4.3CVSS5.5AI score0.00182EPSS
Exploits0References2
Rows per page
Query Builder