Lucene search
K

7921 matches found

CVE
CVE
added 2026/03/04 12:0 a.m.17 views

CVE-2025-70226

CVE-2025-70226: A stack buffer overflow in D-Link DIR-513 v1.10 is triggered by the curTime parameter to goform/formEasySetupWizard. The issue affects the device firmware; the cited description, CVSSv3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and availabili...

9.8CVSS6.1AI score0.00485EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/04 12:0 a.m.6 views

CVE-2025-70226

Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard...

6.1AI score0.00485EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/04 12:0 a.m.3 views

CVE-2025-46108

D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup...

5.9AI score0.00605EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005539)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005539 advisory. In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket When using a BPF progr...

5.5CVSS6.7AI score0.00231EPSS
Exploits0References3
NVD
NVD
added 2026/03/03 7:16 a.m.7 views

CVE-2025-15595

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

8.7CVSS0.00092EPSS
Exploits0References1
OSV
OSV
added 2026/03/03 7:16 a.m.6 views

CVE-2025-15595

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

7.8CVSS5.8AI score
Exploits0References1
CVE
CVE
added 2026/03/03 6:13 a.m.17 views

CVE-2025-15595

CVE-2025-15595 describes privilege escalation via dll hijacking in Inno Setup, affecting version 6.2.1 and earlier. The underlying issue is a dll hijack in the installer process. According to the provided metrics, exploitation requires local access with low privileges and no user interaction, and...

8.7CVSS5.9AI score0.00092EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/03 6:13 a.m.3 views

CVE-2025-15595 Privilege escalation via dll hijacking in Inno Setup

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

8.7CVSS5.9AI score0.00092EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/03 6:13 a.m.23 views

CVE-2025-15595 Privilege escalation via dll hijacking in Inno Setup

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

8.7CVSS0.00092EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/03 6:13 a.m.7 views

EUVD-2025-208225

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

8.7CVSS5.9AI score0.00092EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/03 6:13 a.m.6 views

CVE-2025-15595

Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...

8.7CVSS5.9AI score0.00092EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

Inno Setup 安全漏洞

Inno Setup is a free installation program software developed by Jordan Russell. It can be used to create installation programs. Inno Setup versions 6.2.1 and earlier have security vulnerabilities; these vulnerabilities stem from a vulnerability that makes the software susceptible to DLL hijacking...

8.7CVSS5.8AI score0.00092EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.6 views

PT-2026-22721

Name of the Vulnerable Software and Affected Versions Inno Setup versions prior to 6.2.1 Description A privilege escalation issue exists due to a dll hijacking weakness. This allows an attacker to execute arbitrary code with elevated privileges. Recommendations Update to a version newer than 6.2....

8.7CVSS6.1AI score0.00092EPSS
Exploits0References7
OSV
OSV
added 2026/03/02 11:51 p.m.4 views

MAL-2026-1144 Malicious code in roku-aihub (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 19b48d460fde1b6b9802a2f2b7d93928f89b0474235adc54553971ed4575e5df Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

6.1AI score
Exploits0References1
OSV
OSV
added 2026/03/02 7:16 p.m.6 views

CVE-2026-0013

In setupLayout of PickActivity.java, there is a possible way to start any activity as a DocumentsUI app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS5.9AI score0.00091EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/02 6:42 p.m.9 views

EUVD-2026-9231

In setupLayout of PickActivity.java, there is a possible way to start any activity as a DocumentsUI app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

8.4CVSS6.1AI score0.00091EPSS
Exploits0References1
CVE
CVE
added 2026/03/02 6:42 p.m.17 views

CVE-2026-0013

CVE-2026-0013 affects the DocumentsUI path in Android (Documents UI, DocumentsUI/Picker flow via PickActivity.setupLayout). The vulnerability allows a confused deputy to start any activity from within a DocumentsUI app, enabling local privilege elevation without extra execution privileges or user...

8.4CVSS6.1AI score0.00091EPSS
Exploits0References1Affected Software1
Packet Storm News
Packet Storm News
added 2026/03/02 12:0 a.m.3 views

Can LLMs Hack Enterprise Networks? -- Replicated Computational Results (RCR) Report

This is the Replicated Computational Results RCR Report for the paper "Can LLMs Hack Enterprise Networks?" The paper empirically investigates the efficacy and effectiveness of different LLMs for penetration-testing enterprise networks, i.e., Microsoft Active Directory Assumed-Breach Simulations...

5.9AI score
Exploits0
OSV
OSV
added 2026/02/28 4:43 p.m.5 views

MAL-2026-1088 Malicious code in bladebit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 f415139e8d21831bbadeb09351ae32306980ae4de3692fc6cafc1d72c2b99e28 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

6.1AI score
Exploits0References1
OSV
OSV
added 2026/02/28 11:55 a.m.4 views

MAL-2026-1086 Malicious code in tchap-bot (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 ca239020bc35efc249b5f387dc3ae473132184319b88a498ba3f7ddd9dd6dfe3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

6.1AI score
Exploits0References1
Rows per page
Query Builder