807 matches found
CVE-2022-49100
In the Linux kernel, the following vulnerability has been resolved: virtioconsole: eliminate anonymous moduleinit & moduleexit Eliminate anonymous moduleinit and moduleexit, which can lead to confusion or ambiguity when reading System.map, crashes/oops/bugs, or an initcalldebug log. Give each of...
CVE-2025-21377
NTLM Hash Disclosure Spoofing Vulnerability...
CVE-2025-21181
Microsoft Message Queuing MSMQ Denial of Service Vulnerability...
BELL-CVE-2025-21680
Bulletin has no description...
CVE-2024-48310
AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys to access the backend API or other sensitive information...
AutoLib Software Systems OPAC 20.10 Secret Disclosure
AutoLib Software Systems OPAC version 20.10 discloses multiple API keys within the source code. Attackers may use these keys to access the backend API or other sensitive information. + Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLC + twitter.com/striv3r Vendor Autolib-ind...
CVE-2024-48310
AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys to access the backend API or other sensitive information...
CVE-2024-48310
AutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys to access the backend API or other sensitive information...
CVE-2024-48310
The CVE-2024-48310 entry concerns AutoLib Software Systems OPAC v20.10, where multiple API keys are exposed in the source code (e.g., main.js) allowing potentially unauthorized access to the backend API or other sensitive information. Affected component: API keys embedded in the codebase; exploit...
CVE-2025-21571
...
CVE-2025-21568
...
CVE-2025-21565
The CVE-2025-21565 entry concerns Oracle Agile PLM Framework (Oracle Supply Chain) Install component vulnerability affecting version 9.3.6. The root cause is weaknesses in the authorization mechanism of the Install component, enabling an unauthenticated, network-accessing attacker to compromise t...
CVE-2025-21561
...
CVE-2025-21560
...
CVE-2025-21556
...
CVE-2025-21557
CVE-2025-21557 affects Oracle Application Express (General component) with affected versions 23.2 and 24.1. The issue allows a low-privileged, network-facing attacker over HTTP to cause unauthorized update/insert/delete and read access to Oracle APEX data, requiring user interaction. Root cause r...
CVE-2025-21555
...
CVE-2025-21551
CVE-2025-21551 is a vulnerability in Oracle Solaris 11 affecting the File system component. It enables a locally authenticated, high-privilege attacker to compromise Solaris, potentially leading to unauthorized data creation/deletion/modification and a complete denial of service (hangs/crashes). ...
CVE-2025-21547
...
CVE-2025-21544
...