Lucene search
K

91 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:18 a.m.6 views

CVE-2021-0978

In getSerialForPackage of DeviceIdentifiersPolicyService.java, there is a possible way to determine whether an app is installed, without query permissions, due to side channel information disclosure. This could lead to local information disclosure with no additional execution privileges needed...

3.3CVSS6AI score0.00104EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-11967

Malware in sbrugna...

7.5CVSS7.6AI score0.02192EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25469

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.00086EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-25564

Malicious code in bioql PyPI...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-41369

Malicious code in bioql PyPI...

6.9CVSS5.5AI score0.00466EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25484

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00086EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-25485

Malicious code in bioql PyPI...

5.5CVSS5.6AI score0.00088EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-25553

Malicious code in bioql PyPI...

5.5CVSS5.7AI score0.00095EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25500

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00103EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25486

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00086EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-25504

Malicious code in bioql PyPI...

5.5CVSS5.5AI score0.00101EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/13 11:46 a.m.4 views

CVE-2023-37482

The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames...

6.9CVSS6.8AI score0.00466EPSS
Exploits0References3
NVD
NVD
added 2025/02/11 11:15 a.m.7 views

CVE-2023-37482

The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames...

6.9CVSS0.00466EPSS
Exploits0References1
CVE
CVE
added 2025/02/11 10:26 a.m.65 views

CVE-2023-37482

CVE-2023-37482 affects Siemens SIMATIC web servers (e.g., SIMATIC S7-1200/1500 family). The vulnerability stems from login response timing not being normalized, enabling an unauthenticated remote attacker to perform user enumeration by distinguishing valid vs. invalid usernames via a side channel...

6.9CVSS5.3AI score0.00466EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/16 12:0 a.m.18 views

RHEL 9 : gnutls (RHSA-2024:2889)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2889 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as...

5.3CVSS6.6AI score0.00718EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/04/25 12:0 a.m.26 views

RHEL 8 : gnutls (RHSA-2024:2044)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2044 advisory. The gnutls packages provide the GNU Transport Layer Security GnuTLS library, which implements cryptographic algorithms and protocols such as SSL, TLS...

5.3CVSS6.5AI score0.00718EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/02/12 2:0 p.m.376 views

Moderate: Red Hat Security Advisory: nss security update

An update for nss is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CV...

4.3CVSS6.9AI score0.00714EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/01/11 9:0 a.m.18 views

CVE-2023-6135

The Network Security Services NSS package contains a vulnerability that exposes a side-channel information leak. This weakness enables a local attacker to capture several thousand usages of a signature, allowing them to utilize this information to recover portions of an ECDSA private key...

4.3CVSS5.4AI score0.00714EPSS
Exploits0References7
CNVD
CNVD
added 2023/12/06 12:0 a.m.15 views

Google Android elevation of privilege vulnerability (CNVD-2024-07127)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to the disclosure of side-channel information in the BTMble.cc script BTMBleVerifySignature, which can be exploited by an attacker to gain elevated...

6.5CVSS6.7AI score0.00542EPSS
Exploits0References1
NVD
NVD
added 2023/12/04 11:15 p.m.28 views

CVE-2023-40090

In BTMBleVerifySignature of btmble.cc, there is a possible way to bypass signature validation due to side channel information disclosure. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5CVSS0.00542EPSS
Exploits0References2
Rows per page
Query Builder