Lucene search
K

46 matches found

Microsoft KB
Microsoft KB
added 2025/08/21 7:0 a.m.33 views

July 8, 2025—KB5062570 (OS Build 25398.1732)

None None...

9.8CVSS6.8AI score0.2188EPSS
Exploits10
Microsoft KB
Microsoft KB
added 2025/08/21 7:0 a.m.41 views

July 8, 2025—KB5062572 (OS Build 20348.3932)

None None...

9.8CVSS6.8AI score0.2188EPSS
Exploits7
SUSE CVE
SUSE CVE
added 2025/08/19 11:23 p.m.5 views

SUSE CVE-2025-38561

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix PreauhHashValue race condition If client send multiple session setup requests to ksmbd, PreauhHashValue race condition could happen. There is no need to free sess-PreauhHashValue at session setup phase. It can be freed...

8.5CVSS6.4AI score0.00391EPSS
Exploits1References4
SUSE Linux
SUSE Linux
added 2025/07/19 6:3 a.m.3 views

Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173: NFSv4.0:...

8.5CVSS7.8AI score0.00262EPSS
Exploits0References50
Microsoft KB
Microsoft KB
added 2025/06/10 7:0 a.m.19 views

Description of the security update for SharePoint Server 2019: June 10, 2025 (KB5002729)

None None...

8.8CVSS7AI score0.12606EPSS
Exploits2
Cvelist
Cvelist
added 2025/05/30 6:36 p.m.33 views

CVE-2025-48943 vLLM allows clients to crash the openai server with invalid regex

vLLM is an inference and serving engine for large language models LLMs. Version 0.8.0 up to but excluding 0.9.0 have a Denial of Service ReDoS that causes the vLLM server to crash if an invalid regex was provided while using structured output. This vulnerability is similar to...

6.5CVSS0.004EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 3:44 p.m.6 views

CVE-2020-9995

An issue existed in the parsing of URLs. This issue was addressed with improved input validation. This issue is fixed in macOS Server 5.11. Processing a maliciously crafted URL may lead to an open redirect or cross site scripting...

6.1CVSS5.7AI score0.0059EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:46 a.m.10 views

CVE-2019-6667

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.1.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.5.1-11.6.5, under certain conditions, TMM may consume excessive resources when processing traffic for a Virtual Server with the FIX Financial Information eXchange profile applied...

7.5CVSS6.9AI score0.01014EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/24 6:48 p.m.16 views

Security Bulletin: IBM WebSphere Application Server is vulnerable to server-side request forgery (CVE-2025-27907)

Summary IBM WebSphere Application Server is vulnerable to server-side request forgery. Vulnerability Details CVEID:CVE-2025-27907 DESCRIPTION: IBM WebSphere Application Server is vulnerable to server-side request forgery SSRF. This may allow an authenticated attacker to send unauthorized requests...

4.1CVSS6.8AI score0.00306EPSS
Exploits0Affected Software1
NVD
NVD
added 2025/04/01 3:16 p.m.38 views

CVE-2025-31131

YesWiki is a wiki system written in PHP. The squelette parameter is vulnerable to path traversal attacks, enabling read access to arbitrary files on the server. This vulnerability is fixed in 4.5.2...

8.6CVSS0.05366EPSS
Exploits6References2
SUSE CVE
SUSE CVE
added 2024/08/09 1:39 a.m.4 views

SUSE CVE-2024-42256

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix server re-repick on subrequest retry When a subrequest is marked for needing retry, netfs will call cifspreparewrite which will make cifs repick the server for the op before renegotiating credits; it then calls...

9.8CVSS7.7AI score0.00732EPSS
Exploits0References3
OSV
OSV
added 2024/04/12 11:7 a.m.12 views

OESA-2024-1387 ignition security update

Ignition is a utility used to manipulate systems during the initramfs. This includes partitioning disks, formatting partitions, writing files regular files, systemd units, etc., and configuring users. On first boot, Ignition reads its configuration from a source of truth remote URL, network...

7.5CVSS8.2AI score0.03796EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/11 9:15 p.m.33 views

CVE-2023-39325 HTTP/2 rapid reset can cause excessive work in net/http

A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the http2.Server.MaxConcurrentStreams setting, resetting an in-progress request allows the attacker to create a ne...

7.8AI score0.03796EPSS
Exploits0References43
Github Security Blog
Github Security Blog
added 2023/06/06 4:41 p.m.26 views

Synapse has URL deny list bypass via oEmbed and image URLs when generating previews

Impact A discovered oEmbed or image URL can bypass the urlpreviewurlblacklist setting potentially allowing server side request forgery or bypassing network policies. Impact is limited to IP addresses allowed by the urlpreviewiprangeblacklist setting by default this only allows public IPs and by t...

5.4CVSS6.7AI score0.00605EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2023/04/14 3:36 p.m.12 views

SUSE-SU-2023:1860-1 Security update for wayland

This update for wayland fixes the following issues: - CVE-2021-3782: Fixed a reference-count overflow in libwayland-server SHM handling. bsc1190486...

6.6CVSS6.5AI score0.00297EPSS
Exploits1References3
OSV
OSV
added 2022/10/11 7:45 a.m.6 views

SUSE-SU-2022:3561-1 Security update for libgsasl

This update for libgsasl fixes the following issues: - CVE-2022-2469: Fixed OOB read in GSSAPI server bsc1201715...

8.1CVSS8AI score0.01091EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2020/12/18 1:31 p.m.50 views

Security Bulletin: Multiple vulnerabilities in the IBM Java Runtime affect IBM Rational ClearCase (CVE-2020-14577, CVE-2020-14578, CVE-2020-14579)

Summary There are vulnerabilities in the IBM® Runtime Environment Java™ Versions 7 and 8, which is used by IBM Rational ClearCase. These issues were disclosed as part of the IBM SDK, Java Technology Edition Quarterly CPU - Jul 2020 - Includes Oracle Jul 2020 CPU plus one additional vulnerability...

6.8CVSS1.4AI score0.04196EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/22 4:30 p.m.17 views

Security Bulletin: A vulnerability in IBM Websphere affects IBM Tivoli Netcool Configuration Manager (ITNCM) (CVE-2016-0306)

Summary There is a potential security vulnerability in IBM WebSphere Application Server, which is used by IBM Tivoli Netcool Configuration Manager ITNCM. The potential vulnerability is only applicable, if 'FIPS 140-2' is enabled. Vulnerability Details CVEID: CVE-2016-0306 DESCRIPTION: IBM WebSphe...

5.9CVSS1.1AI score0.01403EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 8:5 p.m.24 views

Security Bulletin: Vulnerability in Apache Commons FileUpload affects IBM Forms Server (CVE-2016-3092 )

Summary An Apache Commons FileUpload vulnerability for handling string edge case was addressed by IBM Forms Server. Vulnerability Details CVEID: CVE-2016-3092 DESCRIPTION: Apache Tomcat is vulnerable to a denial of service, caused by an error in the Apache Commons FileUpload component. By sending...

7.8CVSS0.8AI score0.35927EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 7:46 p.m.32 views

Security Bulletin: Incorrect setting for serveServletsbyClassname can affect FTM for Check Services and FTM for Corporate Payment Services (CVE-2015-1927)

Summary Incorrect setting for serveServletsbyClassname could allow a remote attacker on WebSphere Application Server to gain elevated privileges on the system for FTM for Check Services and FTM for Corporate Payment Services Vulnerability Details CVEID: CVE-2015-1927 DESCRIPTION: IBM WebSphere...

6.8CVSS1AI score0.02144EPSS
Exploits0Affected Software1
Rows per page
Query Builder