Lucene search
K

12475 matches found

Positive Technologies
Positive Technologies
added 2026/02/19 12:0 a.m.6 views

PT-2026-21004

Name of the Vulnerable Software and Affected Versions Pannellum versions 2.5.6 through 3.5.0 Description Pannellum is a panorama viewer for the web. Versions 2.5.6 through 3.5.0 have a flaw where the hot spot attributes configuration property allows setting any attribute, including HTML event...

6.1CVSS5.6AI score0.00319EPSS
Exploits0References12
Rosalinux
Rosalinux
added 2026/02/16 10:56 a.m.6 views

Advisory ROSA-SA-2026-3182

Software: sqlite 3.26.0 OS: ROSA Virtualization 3.0 unaffected versions = sqlite-3.26.0-20.rv30 affected versions sqlite-3.26.0-20.rv30 CVE-ID: CVE-2025-6965 BDU-ID: 2025-08786 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the Aggregate Term Handler component of the SQLite database management syst...

7.7CVSS6.6AI score0.73495EPSS
Exploits3
Rosalinux
Rosalinux
added 2026/02/16 10:56 a.m.7 views

Advisory ROSA-SA-2026-3175

Software: lz4 1.8.3 OS: ROSA Virtualization 3.0 unaffected versions = lz4-1.8.3-5.rv30 affected versions lz4-1.8.3-5.rv30 CVE-ID: CVE-2019-17543 BDU-ID: 2023-07612 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the LZ4 lossless data compression algorithm is related to writing beyond buffer...

8.1CVSS7.6AI score0.09116EPSS
Exploits0
Fedora
Fedora
added 2026/02/15 1:13 a.m.7 views

[SECURITY] Fedora 43 Update: nginx-mod-brotli-1.0.0~rc-6.fc43

NGINX module for Brotli compression...

8.2CVSS5.4AI score0.00339EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.7 views

Alibaba Cloud Linux 3 : 0031: freerdp (ALINUX3-SA-2026:0031)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2026:0031 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-23530: FreeRDP is a free...

9.8CVSS6.1AI score0.00443EPSS
Exploits7References8
NVD
NVD
added 2026/02/11 11:16 p.m.10 views

CVE-2026-20656

A logic issue was addressed with improved validation. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, macOS Tahoe 26.3. An app may be able to access a user's Safari history...

3.3CVSS0.00115EPSS
Exploits0References3
OSV
OSV
added 2026/02/11 11:16 p.m.8 views

UBUNTU-CVE-2026-20635

The issue was addressed with improved memory handling. This issue is fixed in Safari 26.3, iOS 18.7.5 and iPadOS 18.7.5, iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. Processing maliciously crafted web content may lead to an unexpected process crash...

8.8CVSS7.2AI score0.00295EPSS
Exploits0References3
Fedora
Fedora
added 2026/02/11 1:0 a.m.8 views

[SECURITY] Fedora 42 Update: rust-rbspy-0.34.1-4.fc42

Sampling CPU profiler for Ruby...

7.5CVSS5.4AI score0.00443EPSS
Exploits1
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.8 views

PT-2026-7751

Name of the Vulnerable Software and Affected Versions macOS Sequoia versions 15.7.4 macOS Tahoe version 26.3 macOS Sonoma versions 14.8.4 Description A privacy issue existed where an application could potentially access sensitive user data. The issue was resolved with improved checks...

5.5CVSS5.4AI score0.00134EPSS
Exploits0References8
OPENSUSE Linux
OPENSUSE Linux
added 2026/02/11 12:0 a.m.7 views

keylime-config-7.14.0+0-1.1 on GA media (moderate)

keylime-config-7.14.0+0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10165-1 Rating: moderate Cross-References: CVE-2026-1709 CVSS scores: CVE-2026-1709 SUSE : 9.4 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H CVE-2026-1709 SUSE : 8.8...

9.4CVSS5.5AI score0.0575EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7282

Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions prior to CR MGMT 02.00.00.4052 IntelR OptaneTM PMem management software versions prior to CR MGMT 03.00.00.0538 Description A condition check issue exists in the IntelR OptaneTM PMem management...

6.7CVSS5.4AI score0.00097EPSS
Exploits0References3
Adobe
Adobe
added 2026/02/10 12:0 a.m.18 views

APSB26-14 : Security update available for Adobe Audition

Adobe has released an update for Adobe Audition for Windows and macOS. This update resolves critical and important vulnerabilities that could lead to arbitrary code execution, memory exposure, and application denial-of-service...

5.9AI score
Exploits0Affected Software1
ICS
ICS
added 2026/02/10 12:0 a.m.8 views

Siemens NX

SUMMARY Siemens NX is affected by multiple file parsing vulnerabilities that could be triggered when the application reads files in CGM format. If a user is tricked to open a malicious file with any of the affected products, this could lead the application to crash or potentially lead to...

7.8CVSS6.6AI score0.00134EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/02/09 9:18 p.m.5 views

CVE-2026-25889

File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit files. Prior to 2.57.1, a case-sensitivity flaw in the password validation logic allows any authenticated user to change their password or an admin to change...

5.4CVSS5.5AI score0.00325EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/08 12:0 a.m.9 views

PT-2026-7014

Name of the Vulnerable Software and Affected Versions UTT 进取 521G version 3.1.1-190816 Description A flaw exists in the doSystem function within the /goform/setSysAdm file. Manipulation of the passwd1 argument can result in command injection. This issue may be exploited remotely. The exploit is...

8.6CVSS5.5AI score0.04239EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.7 views

PT-2026-6903

Name of the Vulnerable Software and Affected Versions D-Link DWR-M921 version 1.1.50 Description A security issue exists in D-Link DWR-M921 version 1.1.50 related to command injection. The issue is located in the USSD Configuration component, specifically within the sub 419F20 function of the...

8.6CVSS5.4AI score0.04352EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2026/02/07 12:0 a.m.8 views

PT-2026-6907

Name of the Vulnerable Software and Affected Versions SourceCodester Online Class Record System version 1.0 Description A flaw exists in SourceCodester Online Class Record System 1.0. The issue is related to the manipulation of the user email argument within the file '/admin/login.php', leading t...

7.5CVSS5.5AI score0.00312EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/02/06 8:30 p.m.356 views

Exploit for CVE-2025-2304

CVE-2025-2304 - Camaleon CMS 2.9.0 - Privilege Escalation Expl...

9.4CVSS5.8AI score0.00566EPSS
Exploits16
Tenable Nessus
Tenable Nessus
added 2026/02/06 12:0 a.m.4 views

Oracle Linux 7 : python (ELSA-2026-1537)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-1537 advisory. 2.7.5-94.0.3 - Fix for CVE-2025-12084 Orabug: 38902314 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...

6.3CVSS8.2AI score0.00696EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.5 views

PT-2026-6829

Name of the Vulnerable Software and Affected Versions QuickDate version 1.3.2 Description The software contains a SQL injection issue that allows remote attackers to manipulate database queries. This is achieved through the located parameter in the /find matches API endpoint. Attackers can inject...

8.8CVSS5.7AI score0.0041EPSS
Exploits0References5
Rows per page
Query Builder