Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-27595

Malware in sbrugna...

6.5CVSS7.1AI score0.01899EPSS
Exploits0References13
Packet Storm News
Packet Storm News
added 2025/08/30 12:0 a.m.7 views

Virtual Reality, Real Problems: a Longitudinal Security Analysis of VR Firmware

Virtual Reality VR technology is rapidly growing in recent years. VR devices such as Meta Quest 3 utilize numerous sensors to collect users' data to provide an immersive experience. Due to the extensive data collection and the immersive nature, the security of VR devices is paramount. Leading VR...

7.1AI score
Exploits0
NVD
NVD
added 2024/08/05 8:15 p.m.30 views

CVE-2024-42350

Biscuit is an authorization token with decentralized verification, offline attenuation and strong security policy enforcement based on a logic language. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be...

3CVSS0.00291EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/05 7:47 p.m.14 views

CVE-2024-42350 Public key confusion in third party block in Biscuit

Biscuit is an authorization token with decentralized verification, offline attenuation and strong security policy enforcement based on a logic language. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be...

3CVSS7.2AI score0.00291EPSS
Exploits0References2
CVE
CVE
added 2024/08/05 7:47 p.m.40 views

CVE-2024-42350

The CVE describes a public-key confusion in Biscuit’s third-party blocks: a forged ThirdPartyBlock request can cause a third-party authority to generate datalog trusting the wrong keypair, enabling an attacker to embed a trusted annotation in tokens. The issue arises from how the block request co...

3CVSS3.9AI score0.00291EPSS
Exploits0References2
OSV
OSV
added 2024/08/05 7:47 p.m.42 views

CVE-2024-42350 Public key confusion in third party block in Biscuit

Biscuit is an authorization token with decentralized verification, offline attenuation and strong security policy enforcement based on a logic language. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be...

3CVSS6.7AI score0.00291EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/08/05 7:47 p.m.47 views

CVE-2024-42350 Public key confusion in third party block in Biscuit

Biscuit is an authorization token with decentralized verification, offline attenuation and strong security policy enforcement based on a logic language. Third-party blocks can be generated without transferring the whole token to the third-party authority. Instead, a ThirdPartyBlock request can be...

3CVSS0.00291EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2023/12/13 3:36 p.m.30 views

Important: Red Hat Security Advisory: postgresql:15 security update

An update for the postgresql:15 module is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

8.8CVSS6.8AI score0.04322EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.23 views

Google Chrome Security Update (stable-channel-update-for-desktop_25-2021-05) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

8.8CVSS7.7AI score0.16611EPSS
Exploits22References3
Veracode
Veracode
added 2021/05/28 1:3 p.m.21 views

Insufficient Validation

An insufficient policy enforcement security issue has been found in the content security policy component of the Chromium browser before version 91.0.4472.77...

5.4CVSS4AI score0.01284EPSS
Exploits1References8Affected Software2
Exploit DB
Exploit DB
added 2016/06/29 12:0 a.m.55 views

Symantec Endpoint Protection Manager 12.1 - Multiple Vulnerabilities

Credits: John Page aka HYP3RLINX + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/SYMANTEC-SEPM-MULTIPLE-VULNS.txt + ISR: ApparitionSec Vendor: ================ www.symantec.com Product: =========== SEPM Symantec Endpoint Protection Manager and client v12.1...

8CVSS6.3AI score0.04122EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2007/03/15 12:0 a.m.2 views

Integrity Clientless Security (ICS) Update 3.7.144.0

Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...

6.8AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2007/01/11 12:0 a.m.2 views

Integrity Clientless Security (ICS) Update 3.7.128.0

Check Point Integrity ™ Clientless Security ICS protects your Web site by detecting and disabling spyware processes and allowing you to enforce security policies before a user logs onto your network. Using ICS you can prevent users with potentially harmful software from accessing your Web site, a...

6.8AI score
Exploits0
Rows per page
Query Builder