Lucene search
K

14 matches found

EUVD
EUVD
added 4 days ago7 views

EUVD-2026-42605

Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mgtlsserverrecvhello, which uses an attacker-controlled sessionidlen byte from a TLS ClientHello as a buffer index without validating it against the length of received data. A remote, unauthenticated...

8.7CVSS6.2AI score0.00441EPSS
Exploits0References4
OSV
OSV
added 2026/02/27 8:28 p.m.5 views

CVE-2026-28338 PMD Designer has Stored XSS in VBHTMLRenderer and YAHTMLRenderer via unescaped violation messages

PMD is an extensible multilanguage static code analyzer. Prior to version 7.22.0, PMD's vbhtml and yahtml report formats insert rule violation messages into HTML output without escaping. When PMD analyzes untrusted source code containing crafted string literals, the generated HTML report contains...

6.8CVSS6AI score0.00297EPSS
Exploits1References5
Circl
Circl
added 2024/08/13 7:31 a.m.10 views

CVE-2024-5722

creationtimestamp| type| source ---|---|--- 2024-08-13 07:31:39+00:00| published-proof-of-concept| https://t.me/Kelvinseccommunity/730 2024-08-13 07:31:57+00:00| published-proof-of-concept| https://t.me/HackerArsenal/160 2024-08-18 06:23:26+00:00| published-proof-of-concept|...

8.8CVSS8AI score0.01072EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/02/01 12:0 a.m.7 views

Objectplanet Opinio Security Vulnerability

ObjectPlanet Opinio is an online survey system from ObjectPlanet Norway. A security vulnerability exists in Objectplanet Opinio 7.22 and earlier versions, which stems from Ben's use of a cryptographically weak pseudo-random number generator PRNG with predictable seeding, which could lead to the...

9.8CVSS6.8AI score0.00621EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/03 12:0 a.m.5 views

ZTE ZXCLOUD iRAI Code Injection Vulnerability

The ZTE ZXCLOUD iRAI is a virtualization appliance from China's ZTE Corporation ZTE. A security vulnerability exists in ZTE ZXCLOUD iRAI version 7.22.11P2 and prior versions, which stems from the program's inability to adequately validate user input. An attacker can exploit the vulnerability to...

7.8CVSS6.8AI score0.00611EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/02/14 12:0 a.m.4 views

PT-2023-19671 · Sap · Sap Host Agent

Name of the Vulnerable Software and Affected Versions: SAP Host Agent Start Service versions 7.21, 7.22 Description: An attacker authenticated as a non-admin user with local access to a server port assigned to the SAP Host Agent can submit a crafted ConfigureOutsideDiscovery request with an...

8.8CVSS8.3AI score0.00185EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/02/14 12:0 a.m.5 views

SAP Host Agent 安全漏洞

SAP Host Agent is a set of agent programs from SAP, Germany, that support several lifecycle management tasks such as operating system monitoring, database monitoring, and system instance monitoring. A security vulnerability exists in SAP Host Agent Start Service version 7.21 and 7.22. An attacker...

8.8CVSS8AI score0.00185EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/06/14 12:0 a.m.7 views

SAP NetWeaver 和 ABAP Platform 安全漏洞

SAP NetWeaver and SAP ABAP Platform are both products of SAP, a service-oriented, integrated application platform. SAP NetWeaver is an integrated service-oriented application platform that provides a development and runtime environment for SAP applications.SAP ABAP Platform is an ABAP-based SAP...

9.8CVSS8.3AI score0.02062EPSS
Exploits2References8
OSV
OSV
added 2019/07/10 7:15 p.m.3 views

CVE-2019-0318

Under certain conditions SAP NetWeaver Application Server for Java Startup Framework, versions 7.21, 7.22, 7.45, 7.49, and 7.53, allows an attacker to access information which would otherwise be restricted...

5.3CVSS6AI score0.0136EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2018/11/26 12:31 p.m.8 views

mysql: Audit Log unspecified vulnerability (CPU Jul 2018)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Audit Log. Supported versions that are affected are 5.7.22 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attack...

4.9CVSS7.3AI score0.02924EPSS
Exploits0References5
CNVD
CNVD
added 2018/08/03 12:0 a.m.3 views

Oracle MySQL Server Component Denial of Service Vulnerability (CNVD-2019-07348)

Oracle MySQL is an open source relational database management system from Oracle. The database system is characterized by high performance, low cost, good reliability, etc. MySQL Server is one of the server components. A security vulnerability exists in the Server: DML subcomponent of the MySQL...

6.5CVSS5.8AI score0.03683EPSS
Exploits0References1
CNVD
CNVD
added 2018/08/03 12:0 a.m.1 views

Unspecified Vulnerability in Oracle MySQL Server Component (CNVD-2019-07354)

Oracle MySQL is an open source relational database management system from Oracle. The database system is characterized by high performance, low cost, good reliability, etc. MySQL Server is one of the server components. A security vulnerability exists in the Server: Security: Privileges subcompone...

4.3CVSS5.2AI score0.02541EPSS
Exploits0References1
OSV
OSV
added 2018/07/18 12:0 a.m.3 views

UBUNTU-CVE-2018-3054

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: DDL. Supported versions that are affected are 5.7.22 and prior and 8.0.11 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

4.9CVSS6.5AI score0.03461EPSS
Exploits0References5
CNVD
CNVD
added 2018/02/11 12:0 a.m.5 views

ImageMagick Buffer Overflow Vulnerability (CNVD-2018-05481)

ImageMagick is the United States ImageMagick Studio, Inc. of a set of open source image processing software. The software can read, convert, write images in a variety of formats. libfpx is used in one of the open source Flashpix image support library . A buffer overflow vulnerability exists in th...

6.5CVSS7.2AI score0.02513EPSS
Exploits1References1
Rows per page
Query Builder