Lucene search
K

15 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Redis

Redis is an open-source, in-memory database that persists data on disk.Authenticated users can trigger a denial-of-service attack by using specially crafted, overly long pattern matching on supported commands such as KEYS, SCAN, PSUBSCRIBE, FUNCTION LIST, COMMAND LIST, and ACL definitions. Matchi...

6.5CVSS6.3AI score0.01009EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in LibreOffice

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint servers. An additional scheme ‘vnd.libreoffice.command’ specific to LibreOffice was added. In the affected versions of LibreOffice, links using this scheme could be used to invoke internal macr...

6.3CVSS6.8AI score0.04354EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/07 2:32 p.m.3 views

CVE-2025-58835

Improper Validation of Specified Quantity in Input vulnerability in calliko Bonus for Woo bonus-for-woo allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Bonus for Woo: from n/a through = 7.6.6...

5.3CVSS5.9AI score0.00268EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:53 a.m.6 views

CVE-2023-22088

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: User Management. Supported versions that are affected are 7.4.0 and 7.4.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...

4.3CVSS4.9AI score0.00398EPSS
Exploits0References1
OSV
OSV
added 2025/03/14 3:15 p.m.4 views

CVE-2024-46662

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiManager versions 7.4.1 through 7.4.3, FortiManager Cloud versions 7.4.1 through 7.4.3 allows attacker to escalation of privilege via specifically crafted packets...

8.8CVSS5.8AI score0.02083EPSS
Exploits0References1
OSV
OSV
added 2025/01/21 9:15 p.m.4 views

CVE-2025-21544

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: Security. Supported versions that are affected are 7.4.0, 7.4.1 and 7.5.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...

5.4CVSS7.3AI score0.00253EPSS
Exploits0References1
OSV
OSV
added 2024/10/07 8:15 p.m.3 views

UBUNTU-CVE-2024-31227

Redis is an open source, in-memory database that persists on disk. An authenticated with sufficient privileges may create a malformed ACL selector which, when accessed, triggers a server panic and subsequent denial of service. The problem exists in Redis 7 prior to versions 7.2.6 and 7.4.1. Users...

4.4CVSS6.1AI score0.00397EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/22 12:0 a.m.14 views

Fortra GoAnywhere MFT Security Vulnerability

Fortra GoAnywhere MFT is a secure file transfer solution from Fortra USA. A security vulnerability exists in Fortra GoAnywhere MFT versions prior to 7.4.1. An attacker exploited the vulnerability to bypass authentication in order to create an administrator user through the management portal...

9.8CVSS6.9AI score0.95086EPSS
Exploits8References6
OSV
OSV
added 2023/10/17 10:15 p.m.3 views

CVE-2023-22088

Vulnerability in the Oracle Communications Order and Service Management product of Oracle Communications Applications component: User Management. Supported versions that are affected are 7.4.0 and 7.4.1. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP ...

4.3CVSS5.8AI score0.00398EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/11 9:15 p.m.5 views

CVE-2022-3140

LibreOffice supports Office URI Schemes to enable browser integration of LibreOffice with MS SharePoint server. An additional scheme 'vnd.libreoffice.command' specific to LibreOffice was added. In the affected versions of LibreOffice links using that scheme could be constructed to call internal...

6.3CVSS6.7AI score0.04354EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2022/02/01 12:47 a.m.2 views

GHSA-M6CJ-93V6-CVR5 Junrar vulnerable to infinite loop via extracting carefully crafted RAR archive

Impact A carefully crafted RAR archive can trigger an infinite loop while extracting said archive. The impact depends solely on how the application uses the library, and whether files can be provided by malignant users. Patches The problem is partially patched in 7.4.1 Workarounds None References...

7.5CVSS7.1AI score0.01632EPSS
Exploits1References5
Elastic
Elastic
added 2019/10/23 4:7 p.m.11 views

Elastic Stack 7.4.1 security update

Logstash Beats input denial of service flaw ESA-2019-14 A denial of service flaw was found in the Logstash beats input plugin. An unauthenticated user who is able to connect to the port the Logstash beats input could send a specially crafted network packet that would cause Logstash to stop...

7.5CVSS6.7AI score0.0153EPSS
Exploits0
CNVD
CNVD
added 2017/02/09 12:0 a.m.8 views

DotNetNuke Security Bypass Vulnerability

DotNetNuke DNN is a set of U.S. DNN company supported by Microsoft, based on the ASP.NET platform for open source content management system CMS. A security vulnerability exists in the installationwizard in versions of DNN prior to 7.4.1. A remote attacker can exploit the vulnerability by sending ...

9.8CVSS6.9AI score0.74552EPSS
Exploits4References1
CNVD
CNVD
added 2015/04/23 12:0 a.m.4 views

Drupal Shibboleth Authentication Module Cross-Site Request Forgery Vulnerability

Drupal is a free and open source content management system developed in PHP and maintained by the Drupal community.Shibboleth Authentication is one of the user login and get access to the authentication module . A cross-site request forgery vulnerability exists in the Drupal Shibboleth...

5.8CVSS7.2AI score0.00656EPSS
Exploits0References1
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.2 views

PowerShell v7.4.1 (x64)

PowerShell v7.4.1 x64...

7AI score
Exploits0
Rows per page
Query Builder