Lucene search
K

108 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-6675

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00423EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-6784

Malicious code in bioql PyPI...

7.5CVSS7.7AI score0.00396EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/08/20 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-2782

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: InnoDB. Supported versions that are affected are 5.6.39 and prior and 5.7.21 and prior...

6.5CVSS6.1AI score0.03098EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2013-6668

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple unspecified vulnerabilities in Google V8 before 3.24.35.10, as used in Google Chrome before 33.0.1750.146, allow attackers to cause a denial of service...

7.5CVSS7.5AI score0.05428EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2016-7917

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The nfnetlinkrcvbatch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough...

5CVSS6.3AI score0.01507EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/12 7:24 p.m.10 views

CVE-2025-53709

Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments. Under specific circumstances, privileged users of secure-upload could have selected email templates not necessarily...

5.4CVSS7.3AI score0.00166EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 7:39 p.m.3 views

CVE-2025-53634 Chall-Manager's HTTP Gateway have no header check timeout leading to potential slow loris attacks

Chall-Manager is a platform-agnostic system able to start Challenges on Demand of a player. The HTTP Gateway processes headers, but with no timeout set. With a slow loris attack, an attacker could cause Denial of Service DoS. Exploitation does not require authentication nor authorization, so anyo...

8.7CVSS7.2AI score0.00444EPSS
Exploits0References3
NVD
NVD
added 2025/07/10 7:15 p.m.30 views

CVE-2025-53709

Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments. Under specific circumstances, privileged users of secure-upload could have selected email templates not necessarily...

5.4CVSS0.00166EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 6:38 p.m.3 views

CVE-2025-53709 Access control issues impacting secure-upload service

Secure-upload is a data submission service that validates single-use tokens when accepting submissions to channels. The service only installed on a small number of environments. Under specific circumstances, privileged users of secure-upload could have selected email templates not necessarily...

5.4CVSS6.6AI score0.00166EPSS
Exploits0References1
NVD
NVD
added 2025/07/01 12:15 p.m.5 views

CVE-2025-6952

A vulnerability, which was classified as problematic, has been found in Open5GS up to 2.7.5. This issue affects the function amfstateoperational of the file src/amf/amf-sm.c of the component AMF Service. The manipulation leads to reachable assertion. It is possible to launch the attack on the loc...

4.8CVSS0.00185EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/06/25 4:59 p.m.3 views

CVE-2025-52894 OpenBao Vulnerable to Unauthenticated Rekey Operation Cancellation

OpenBao exists to provide a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys. OpenBao before v2.3.0 allowed an attacker to perform unauthenticated, unaudited cancellation of root rekey and recovery rekey operations, effecting a denial of...

6.9CVSS7AI score0.00331EPSS
Exploits0References4
Amazon
Amazon
added 2025/06/23 12:0 a.m.4 views

Important: mod_security

Issue Overview: ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. Versions up to and including 2.9.8 are vulnerable to denial of service in one special case in stable released versions: when the payload's content type is application/json,...

7.5CVSS7AI score0.0076EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.4 views

EulerOS 2.0 SP11 : elfutils (EulerOS-SA-2025-1649)

According to the versions of the elfutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU elfutils 0.192. It has been declared as critical. Affected by this vulnerability is the function...

7.8CVSS4.3AI score0.00327EPSS
Exploits2References3
OSV
OSV
added 2025/06/10 5:15 a.m.4 views

CVE-2025-5935

A vulnerability was found in Open5GS up to 2.7.3. It has been declared as problematic. Affected by this vulnerability is the function commonregisterstate of the file src/mme/emm-sm.c of the component AMF/MME. The manipulation of the argument ranueid leads to denial of service. The attack can be...

7.5CVSS7.1AI score0.00751EPSS
Exploits1References7
NVD
NVD
added 2025/06/03 7:15 p.m.8 views

CVE-2025-48997

Multer is a node.js middleware for handling multipart/form-data. A vulnerability that is present starting in version 1.4.4-lts.1 and prior to version 2.0.1 allows an attacker to trigger a Denial of Service DoS by sending an upload file request with an empty string field name. This request causes ...

8.7CVSS0.00368EPSS
Exploits0References4
NVD
NVD
added 2025/06/02 3:15 a.m.9 views

CVE-2025-20678

In ims service, there is a possible system crash due to incorrect error handling. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5CVSS0.00309EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/02 2:29 a.m.7 views

CVE-2025-20676

In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00412240; Issue ID: MSV-3293...

6.7AI score0.00126EPSS
Exploits0References1
CVE
CVE
added 2025/06/02 2:29 a.m.58 views

CVE-2025-20673

CVE-2025-20673 affects the MediaTek wlan STA driver. The issue is a crash triggered by an uncaught exception, enabling local denial of service with privileges at the user level and no user interaction required. The documented impact is a local DoS, with a CVSSv3.1 base score of 5.5 (MEDIUM) and a...

5.5CVSS6.3AI score0.00144EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/02 2:29 a.m.4 views

CVE-2025-20673

In wlan STA driver, there is a possible system crash due to an uncaught exception. This could lead to local denial of service with User execution privileges needed. User interaction is not needed for exploitation. Patch ID: WCNCR00413200; Issue ID: MSV-3304...

5.4AI score0.00144EPSS
Exploits0References1
NVD
NVD
added 2025/05/30 6:15 a.m.37 views

CVE-2025-48889

Gradio is an open-source Python package that allows quick building of demos and web application for machine learning models, API, or any arbitrary Python function. Prior to version 5.31.0, an arbitrary file copy vulnerability in Gradio's flagging feature allows unauthenticated attackers to copy a...

7.5CVSS0.0061EPSS
Exploits1References1
Rows per page
Query Builder