Lucene search
K

95 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-33970

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.011EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/14 6:52 p.m.2 views

Malicious code in service-stack (npm)

The package service-stack was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/08/14 6:52 p.m.1 views

MAL-2025-33012 Malicious code in service-stack (npm)

The package service-stack was found to contain malicious code...

7.2AI score
Exploits0
Microsoft KB
Microsoft KB
added 2025/07/08 12:0 a.m.74 views

KB5062799: Servicing stack update for Windows 10, version 1607 and Windows Server 2016: July 8, 2025

KB5062799: Servicing stack update for Windows 10, version 1607 and Windows Server 2016: July 8, 2025 Windows Secure Boot certificate expirationImportant: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. Microsoft has been updating these certificates o...

5.4AI score
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2025/07/07 2:23 p.m.9 views

Security Bulletin: Multiple vulnerabilities found in IBM TXSeries for Multiplatforms.

Summary IBM TXSeries for Multiplatforms has been updated in order to address multiple vulnerabilities CVE-2024-12243, CVE-2024-12133, CVE-2024-8176. Vulnerability Details CVEID:CVE-2024-12243 DESCRIPTION: A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an...

7.5CVSS7.5AI score0.01569EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/07/07 9:55 a.m.20 views

CVE-2025-5472

The CVE-2025-5472 entry concerns run-llama/llama_index’s JSONReader. Versions prior to 0.12.38 are vulnerable to a stack overflow/DoS via uncontrolled recursive JSON parsing when processing deeply nested structures. Root cause is unsafe recursive traversal with no depth validation, causing Recurs...

6.5CVSS6.5AI score0.00338EPSS
Exploits1References2Affected Software1
Snyk
Snyk
added 2025/06/25 6:41 p.m.4 views

External Control of File Name or Path

Overview ServiceStack.Text is a set of JSON, JSV and CSV text serializers Affected versions of this package are vulnerable to External Control of File Name or Path in the url parameter to the GetErrorResponse method. An attacker can relay NTLM credentials in the context of the current user by...

8.2CVSS6.6AI score0.00394EPSS
Exploits0References2
OSV
OSV
added 2025/06/25 6:15 p.m.7 views

CVE-2025-6444

ServiceStack GetErrorResponse Improper Input Validation NTLM Relay Vulnerability. This vulnerability allows remote attackers to relay NTLM credentials on affected installations of ServiceStack. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

5.9CVSS5.8AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:26 a.m.6 views

CVE-2024-42986

Tenda FH1206 v02.03.01.35 was discovered to contain a stack overflow via the PPPOEPassword parameter in the fromAdvSetWan function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

7.5CVSS7.5AI score0.00552EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 10:26 a.m.6 views

CVE-2024-42940

Tenda FH1201 v1.2.0.14 408 was discovered to contain a stack overflow via the page parameter in the fromP2pListFilter function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

7.5CVSS7.5AI score0.00679EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:22 a.m.6 views

CVE-2024-51013

Netgear R7000P v1.3.3.154 was discovered to contain a stack overflow via the RADIUSAddr%dwla parameter at wireless.cgi. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted POST request...

5.7CVSS7.5AI score0.00292EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:19 a.m.9 views

CVE-2023-38532

A vulnerability has been identified in Parasolid V34.1 All versions V34.1.258, Parasolid V35.0 All versions V35.0.254, Parasolid V35.1 All versions V35.1.171, Teamcenter Visualization V14.1 All versions V14.1.0.11, Teamcenter Visualization V14.2 All versions V14.2.0.6, Teamcenter Visualization...

5.5CVSS6.5AI score0.0018EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:25 a.m.4 views

CVE-2022-25050

rtl433 21.12 was discovered to contain a stack overflow in the function somfyiohcdecode. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted file...

5.5CVSS7.4AI score0.0082EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:58 p.m.6 views

CVE-2022-24159

Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formSetPPTPServer. This vulnerability allows attackers to cause a Denial of Service DoS via the startIp and endIp parameters...

7.8CVSS7.7AI score0.01175EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:29 p.m.6 views

CVE-2022-24153

Tenda AX3 v16.03.12.10CN was discovered to contain a stack overflow in the function formAddMacfilterRule. This vulnerability allows attackers to cause a Denial of Service DoS via the devName parameter...

7.8CVSS7.6AI score0.01175EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:55 p.m.7 views

CVE-2020-25853

The function CheckMic in the Realtek RTL8195A Wi-Fi Module prior to versions released in April 2020 up to and excluding 2.08 does not validate the size parameter for an internal function, rtmd5hmacveneer or rthmacsha1veneer, resulting in a stack buffer over-read which can be exploited for denial ...

7.5CVSS7AI score0.01247EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/22 4:26 p.m.9 views

CVE-2020-36366

Stack overflow vulnerability in parsevalue Cesanta MJS 1.20.1, allows remote attackers to cause a Denial of Service DoS via a crafted file...

5.5CVSS7AI score0.00823EPSS
Exploits1
NVD
NVD
added 2025/05/21 8:15 a.m.6 views

CVE-2019-16536

Stack overflow leading to DoS can be triggered by a malicious authenticated client in Clickhouse before 19.14.3.3...

8.8CVSS0.00749EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.5 views

PT-2025-22128

Name of the Vulnerable Software and Affected Versions DNSdist versions prior to 1.9.10 Description In some circumstances, when DNSdist is configured to allow an unlimited number of queries on a single, incoming TCP connection from a client, an attacker can cause a denial of service by crafting a...

7.8CVSS8.2AI score0.04604EPSS
Exploits3References35
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.19 views

RHEL 8 : Red Hat Product OCP Tools 4.13 Openshift Jenkins (RHSA-2025:2222)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2222 advisory. Jenkins is a continuous integration server that monitors executions of repeated jobs, such as building a software project or jobs run by cro...

8CVSS6.7AI score0.15413EPSS
Exploits1References12
Rows per page
Query Builder