Lucene search
K

57 matches found

OSV
OSV
added 2026/06/23 11:17 p.m.6 views

MINI-RV7F-52HP-67MM

Bulletin has no description...

6.5CVSS5.7AI score0.00196EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/06/08 3:14 p.m.13 views

CVE-2026-42535

A path handling issue in moddavfs in Apache 2.4.67 and earlier allows a WebDAV content author to directly manipulate trusted DAV property databases, potentially causing child process crashes. Users are recommended to upgrade to version 2.4.68, which fixes this issue...

9.1CVSS5.4AI score0.00538EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.23 views

PT-2026-47313

Name of the Vulnerable Software and Affected Versions Apache HTTP Server versions 2.4.0 through 2.4.67 Description A Use After Free issue exists in Apache HTTP Server when using mod ldap in per-directory configuration. Use After Free occurs when an application continues to use a pointer after it...

9.8CVSS5.6AI score0.8377EPSS
Exploits10References135
CBLMariner
CBLMariner
added 2026/05/18 8:36 p.m.17 views

CVE-2026-33006 affecting package httpd for versions less than 2.4.67-1

CVE-2026-33006 affecting package httpd for versions less than 2.4.67-1. An upgraded version of the package is available that resolves this issue...

4.8CVSS5.8AI score0.00557EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2026/01/09 10:42 a.m.6 views

CVE-2022-26772

A memory corruption issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.4. An application may be able to execute arbitrary code with kernel privileges...

9.3CVSS7.3AI score0.00815EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/30 12:0 a.m.3 views

CVE-2025-66420

Tryton sao aka tryton-sao before 7.6.9 allows XSS via an HTML attachment. This is fixed in 7.6.9, 7.4.19, 7.0.38, and 6.0.67...

5.4CVSS5.7AI score0.00144EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/26 12:0 a.m.8 views

PT-2025-48197

Name of the Vulnerable Software and Affected Versions XML-Sig versions 0.27 through 0.67 Description The Perl module XML-Sig does not correctly validate XML files when signatures are absent. An attacker can remove a signature from an XML document, causing the verification check to pass incorrectl...

9.3CVSS6.6AI score0.00143EPSS
Exploits0References8
Packet Storm
Packet Storm
added 2025/10/03 12:0 a.m.481 views

📄 ERPNext 15.67.0 / Frappe 15.72.4 Cross Site Scripting

ERPNext version 15.67.0 and Frappe version 15.72.4 suffer from a persistent cross site scripting vulnerability. CVE-2025-56379 — Stored Cross-Site Scripting XSS in ERPNext 15.67.0 / Frappe 15.72.4 📌 Summary A stored Cross‑Site Scripting XSS vulnerability exists in the Blog module of ERPNext...

5.4CVSS6.4AI score0.00382EPSS
Exploits2
Cvelist
Cvelist
added 2025/10/02 12:0 a.m.8 views

CVE-2025-56379

A stored cross-site scripting XSS vulnerability in the blog post feature of ERPNEXT v15.67.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the content field...

0.00382EPSS
Exploits2References4
RedhatCVE
RedhatCVE
added 2025/09/24 12:28 a.m.13 views

CVE-2025-57431

The Sound4 PULSE-ECO AES67 1.22 web-based management interface is vulnerable to Remote Code Execution RCE via a malicious firmware update package. The update mechanism fails to validate the integrity of manual.sh, allowing an attacker to inject arbitrary commands by modifying this script and...

8.8CVSS7.7AI score0.00324EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.5 views

Sound4 PULSE-ECO AES67 安全漏洞

The Sound4 PULSE-ECO AES67 is a radio station audio processing device from Sound4 France. A security vulnerability exists in the Sound4 PULSE-ECO AES67 version 1.22, which stems from a firmware update mechanism that does not validate the integrity of manual.sh, and could lead to remote code...

8.8CVSS7.8AI score0.00324EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/08/30 6:18 p.m.6 views

CVE-2025-54492

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS7.8AI score0.00636EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/08/25 1:53 p.m.2 views

CVE-2025-54492

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS8.2AI score0.00636EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/08/25 1:53 p.m.8 views

CVE-2025-54492

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS0.00636EPSS
Exploits1References1
CVE
CVE
added 2025/08/25 1:53 p.m.27 views

CVE-2025-54492

A stack-based buffer overflow in The Biosig Project libbiosig 3.9.0 and Master (35a819fa) MFER parsing can be triggered by a crafted MFER file, causing arbitrary code execution. The issue occurs in biosig.c line 9141 on master, when tag==67 (0x43: Sample skew); a local integer skew is overflowed ...

9.8CVSS8.2AI score0.00636EPSS
Exploits1References2Affected Software1
Debian CVE
Debian CVE
added 2025/08/25 1:53 p.m.4 views

CVE-2025-54492

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

9.8CVSS6.4AI score0.00636EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-6142

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Array bounds check failure in V8 in Google Chrome prior to 67.0.3396.62 allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file...

6.5CVSS7.4AI score0.00833EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-9821

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability can occur in AssertWorkerThread due to a race condition with shared workers. This results in a potentially exploitable crash. Thi...

8.1CVSS8.1AI score0.0085EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2019-11710

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers and community members reported memory safety bugs present in Firefox 67. Some of these bugs showed evidence of memory corruption and we presu...

9.8CVSS8.6AI score0.01719EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2019-9820

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use-after-free vulnerability can occur in the chrome event handler when it is freed while still in use. This results in a potentially exploitable crash. This...

9.8CVSS8.2AI score0.01638EPSS
Exploits0References2
Rows per page
Query Builder