Lucene search
K

19 matches found

Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.13 views

PT-2026-50925

Name of the Vulnerable Software and Affected Versions PhpWeasyPrint versions prior to 2.6.0 Description PhpWeasyPrint is a PHP library used for generating PDFs from HTML pages or URLs. The AbstractGenerator::$temporaryFiles public array allows any code with a reference to a generator instance to...

3CVSS6.1AI score0.00112EPSS
Exploits0References10
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.7 views

OpenClaude 安全漏洞

OpenClaude is an open-source coding assistant CLI developed by Gitlawb. Versions of OpenClaude prior to 0.5.1 contained security vulnerabilities. These vulnerabilities were due to logical flaws in the conditional order logic within the MCP authentication process, allowing attackers to completely...

6.5CVSS5.4AI score0.00219EPSS
Exploits1References3
ICS
ICS
added 2026/01/16 12:30 a.m.3 views

ABB Ability OPTIMAX

SUMMARY ABB became aware of severe vulnerability in the products versions listed as affected in the advisory, if the optional integration with Azure Active Directory for Single-Sign On is enabled. We have not received any reports of this vulnerability being exploited. An attacker who...

9.2CVSS6.3AI score0.0039EPSS
Exploits0References12
RedhatCVE
RedhatCVE
added 2026/01/09 12:39 p.m.6 views

CVE-2023-29656

An improper authorization vulnerability in Darktrace mobile app Android prior to version 6.0.15 allows disabled and low-privilege users to control "antigena" actionsblock/unblock traffic from the mobile application. This vulnerability could create a "shutdown", blocking all ingress or egress...

6.1CVSS6.7AI score0.00249EPSS
Exploits1References1
OSV
OSV
added 2025/12/08 2:15 a.m.2 views

DEBIAN-CVE-2023-53755

In the Linux kernel, the following vulnerability has been resolved: dmaengine: ptdma: check for null desc before calling ptcmdcallback Resolves a panic that can occur on AMD systems, typically during host shutdown, after the PTDMA driver had been exercised. The issue was the ptissuepending functi...

5.1AI score0.00155EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-11979

Malware in sbrugna...

7.8CVSS7.5AI score0.00658EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.10 views

EUVD-2021-30402

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.01439EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/04/23 12:0 a.m.4 views

PT-2025-22271

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns a couple of races in MNT TREE BENEATH handling by do move mount. Normally, do lock mount locks a mountpoint pinned by the path, but in the 'beneath' case, the object...

4.7CVSS6.8AI score0.00109EPSS
Exploits0
OSV
OSV
added 2025/02/20 12:15 p.m.4 views

CVE-2025-21105

Dell RecoverPoint for Virtual Machines 6.0.X contains a command execution vulnerability. A Low privileged malicious user with local access could potentially exploit this vulnerability by running the specific binary and perform any administrative action permitted by it resulting in shutting down t...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/09/09 12:0 a.m.5 views

PT-2024-37869 · Connex · Connex

Name of the Vulnerable Software and Affected Versions: Connex health portal versions prior to 8/30/2024 Description: The issue concerns SQL injection vulnerabilities that could allow an unauthenticated attacker to gain unauthorized access to the Connex portal's database. An attacker could submit ...

10CVSS8.2AI score0.00598EPSS
Exploits0References51
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.3 views

SUSE CVE-2020-14385

A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown, or otherwise rendered inaccessible until it is...

5.5CVSS6.1AI score0.00416EPSS
Exploits0References10
Mozilla
Mozilla
added 2022/02/08 12:0 a.m.325 views

Security Vulnerabilities fixed in Thunderbird 91.6 — Mozilla

A Time-of-Check Time-of-Use bug existed in the Maintenance Updater Service that could be abused to grant Users write access to an arbitrary directory. This could have been used to escalate to SYSTEM access.This bug only affects Thunderbird on Windows. Other operating systems are unaffected. If a...

9.6CVSS0.3AI score0.00926EPSS
Exploits2References9Affected Software1
CNVD
CNVD
added 2021/06/17 12:0 a.m.7 views

OTRS AG OTRS Input Validation Error Vulnerability

OTRS is an application from the German company OTRS. A service management software. OTRS AG An input validation error vulnerability exists in OTRS that arises from the system not properly validating incoming data. An attacker placing a specially crafted URL in the body of an email message could...

6.5CVSS6.7AI score0.00976EPSS
Exploits0References1
CNNVD
CNNVD
added 2020/12/08 12:0 a.m.10 views

SAP Netweaver 授权问题漏洞

SAP Netweaver is the German SAP SAP company's set of service-oriented integrated application platform. The platform provides a development and runtime environment for SAP applications. An authorization issue vulnerability exists in SAP Netweaver AS JAVA P2P Cluster Communication versions 7.11,...

10CVSS7.3AI score0.04708EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2020/11/02 12:0 a.m.5 views

The vulnerability of the `var_NetworkSettingDhcpSvrRoute` function in the Moxa EDR-810 industrial router’s software allows a attacker to trigger an emergency shutdown of the device.

The vulnerability of the varNetworkSettingDhcpSvrRoute function in the Moxa EDR-810 industrial router’s microprogramming system is related to the lack of input data verification when accessing by using the OID identifier index. Exploiting this vulnerability can allow a malicious actor to trigger ...

5.7CVSS5.4AI score
Exploits0References1Affected Software1
Symantec
Symantec
added 2019/07/11 12:0 a.m.25 views

Schneider Electric Floating License Manager ICSA-19-192-07 Multiple Security Vulnerabilities

Description Schneider Electric Floating License Manager is prone to multiple security vulnerabilities Attackers can exploit these issues to shut down the affected device, denying service to legitimate users. Floating License Manager version 2.3.0.0 and prior are vulnerable. Technologies Affected...

0.6AI score
Exploits0References1Affected Software2
Positive Technologies
Positive Technologies
added 2017/02/05 12:0 a.m.5 views

PT-2017-16333 · Sendquick +1 · Sendquick Entera +1

Name of the Vulnerable Software and Affected Versions: SendQuick Entera versions prior to 2HF16 Avera versions prior to 2HF16 Description: An issue was discovered where the application failed to check the access control of the request, which could result in an attacker being able to shutdown the...

7.8CVSS7.5AI score0.01791EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/01/26 12:0 a.m.5 views

The vulnerability of the MySQL database management system allows a hacker to cause a service failure.

The vulnerability of the Server sub-component in the MySQL database management system is related to errors in the code. Exploiting this vulnerability can allow an attacker, operating remotely, to cause the operating system to become unresponsive, or in rare cases, to cause an emergency shutdown...

6.8CVSS7.1AI score0.03245EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2001/08/24 12:0 a.m.35 views

MS01-046: IrDA Driver Malformed Packet Remote DoS (252795)

The hotfix for the 'IrDA access violation patch' problem has not been applied. This vulnerability can allow an attacker who is physically near the W2K host to shut it down using a remote control. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid10734;...

5CVSS5.6AI score0.0875EPSS
Exploits0References3
Rows per page
Query Builder