Lucene search
K

12 matches found

ATTACKERKB
ATTACKERKB
added 2026/06/21 10:45 p.m.6 views

CVE-2026-12814

A flaw has been found in Comfast CF-WR631AX V3 up to 2.7.0.8. This issue affects the function system of the file /cgi-bin/mbox-config?section=pingconfig of the component API Endpoint. This manipulation of the argument destination causes os command injection. The attack is possible to be carried o...

6.5CVSS6.1AI score0.01182EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/05/23 6:6 a.m.3 views

CVE-2023-21987

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

7.8CVSS6.5AI score0.00671EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 5:52 a.m.1 views

CVE-2023-22001

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

4.6CVSS4.9AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:2 p.m.7 views

CVE-2022-33708

Improper input validation vulnerability in AppsPackageInstaller in Galaxy Store prior to version 4.5.41.8 allows local attackers to launch activities as Galaxy Store privilege...

7.8CVSS6.7AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2025/01/06 6:15 p.m.1 views

UBUNTU-CVE-2024-55628

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to version 7.0.8, DNS resource name compression can lead to small DNS messages containing very large hostnames which can be costly to decode, and lead to very large DNS log...

7.5CVSS5.7AI score0.00668EPSS
Exploits0References7
OSV
OSV
added 2025/01/06 5:15 p.m.3 views

UBUNTU-CVE-2024-55605

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a large input buffer to the tolowercase, touppercase, stripwhitespace, compresswhitespace, dotprefix, headerlowercase, strippseudoheaders, urldecode, or xor...

7.5CVSS6AI score0.00629EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/04/21 12:0 a.m.3 views

sidekiq 跨站脚本漏洞

Mike Perham sidekiq is a Mike Perham open source application. It uses threads to handle many jobs in the same process at the same time. A cross-site scripting vulnerability exists in sidekiq versions prior to 7.0.8, which can be exploited to cause XSS on Sidekiq via the GET parameter "period" in...

9.6CVSS7.3AI score0.02742EPSS
Exploits1References4
CNNVD
CNNVD
added 2023/04/18 12:0 a.m.5 views

Oracle Virtualization 安全漏洞

Oracle Virtualization is a suite of virtualization solutions from Oracle. The product is used to unify the management of the entire hardware and software architecture from applications to disk, enabling virtualization from the desktop to the data center. A security vulnerability exists in the Cor...

7.8CVSS7.8AI score0.00671EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/04/18 12:0 a.m.3 views

PT-2023-2788 · Oracle +2 · Virtualbox +2

Name of the Vulnerable Software and Affected Versions: Oracle VM VirtualBox versions prior to 6.1.44 Oracle VM VirtualBox versions prior to 7.0.8 Description: The issue is related to a use-after-free vulnerability in the Core component of Oracle VM VirtualBox, allowing a high-privileged attacker...

8.8CVSS5.9AI score0.02167EPSS
Exploits1References146
OSV
OSV
added 2023/03/20 8:15 p.m.2 views

UBUNTU-CVE-2023-28425

Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10...

5.5CVSS6.2AI score0.54978EPSS
Exploits0References5
OSV
OSV
added 2019/09/17 7:15 p.m.4 views

CVE-2019-4271

IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 Admin console is vulnerable to a Client-side HTTP parameter pollution vulnerability. IBM X-Force ID: 160243...

3.5CVSS6.1AI score0.00819EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 1976/01/01 12:0 a.m.3 views

2023-06 .NET 7.0.8 Update for x64 Server (KB5028614)

2023-06 .NET 7.0.8 Update for x64 Server KB5028614...

7AI score
Exploits0
Rows per page
Query Builder