Lucene search
K

1024 matches found

NVD
NVD
added yesterday2 views

CVE-2026-50299

Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to execute code with a physical attack...

6.8CVSS
Exploits0References1
NVD
NVD
added yesterday2 views

CVE-2026-49168

Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to elevate privileges with a physical attack...

6.8CVSS
Exploits0References1
Cvelist
Cvelist
added yesterday15 views

CVE-2026-50299 Windows Storage Spaces Direct Remote Code Execution Vulnerability

...

6.8CVSS
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-50299

The CVE-2026-50299 entry describes an integer overflow/wraparound in Windows Storage Spaces Direct. Affected component: Storage Spaces Direct (Windows). Root cause: integer overflow allowing an unauthorized attacker to execute code. Impact: code execution with a physical attack vector; CVSS vecto...

6.8CVSS6.2AI score
Exploits0References1
CVE
CVE
added yesterday4 views

CVE-2026-49168

CVE-2026-49168 is an elevation-of-privilege vulnerability in Windows Storage Spaces Direct caused by an integer overflow/wraparound. The issue, exploitable with physical access, allows an unauthenticated attacker to gain high-impact effects (confidentiality, integrity, and availability). CVSSv3.1...

6.8CVSS6.1AI score
Exploits0References1
Microsoft CVE
Microsoft CVE
added yesterday3 views

Windows Storage Spaces Direct Remote Code Execution Vulnerability

Integer overflow or wraparound in Windows Storage Spaces Direct allows an unauthorized attacker to execute code with a physical attack...

6.8CVSS6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added yesterday4 views

PT-2026-58187

Name of the Vulnerable Software and Affected Versions Windows Storage Spaces Direct affected versions not specified Description An integer overflow or wraparound issue exists in Windows Storage Spaces Direct. This flaw allows an unauthorized attacker with physical access to the system to execute...

6.8CVSS6.3AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/07/08 5:12 p.m.11 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.29.0 Release.

Red Hat OpenShift Dev Spaces 3.29.0 has been released. Red Hat OpenShift Dev Spaces provides a cloud developer workspace server and a browser-based IDE built for teams and organizations. Dev Spaces runs in OpenShift and is well-suited for container-based development. The 3.29 release is based on...

10CVSS6.8AI score0.01041EPSS
Exploits17References33
Cvelist
Cvelist
added 2026/07/08 2:30 p.m.37 views

CVE-2026-15036 Harness gitspaces Endpoint list_all.go getAuthorizedSpaces authorization

A vulnerability was determined in Harness up to 2.28.2. This vulnerability affects the function getAuthorizedSpaces of the file app/api/controller/gitspace/listall.go of the component gitspaces Endpoint. Executing a manipulation can lead to authorization bypass. The attack can be executed remotel...

5.3CVSS0.00396EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/06/29 12:33 p.m.6 views

CVE-2026-12856

A flaw was found in the vscode-java extension, which provides Java language support for Visual Studio Code. The extension incorrectly trusts all Markdown content in JavaDoc hovers, allowing a malicious Java file to include hidden commands. If a user clicks a specially crafted link within a JavaDo...

8.8CVSS6.1AI score0.00292EPSS
Exploits0References4
OSV
OSV
added 2026/06/29 11:50 a.m.6 views

PYSEC-2026-345 Gradio allows users to access arbitrary files

Impact This vulnerability allows users of Gradio applications that have a public link such as on Hugging Face Spaces to access files on the machine hosting the Gradio application. This involves intercepting and modifying the network requests made by the Gradio app to the server. Patches Yes, the...

9.2CVSS7AI score0.85393EPSS
Exploits2References7
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: gfs2: Prevent recursive memory reclamation The new inode function returns a new inode with inode-imapping-gfpmask set to GFPHIGHUSERMOVABLE. This value includes the GFPFS flag, allowing allocations in that address space to...

6AI score0.00176EPSS
Exploits0References2
NVD
NVD
added 2026/06/19 3:16 p.m.11 views

CVE-2016-20089

Iperius Remote 1.7.0 contains an unquoted service path vulnerability that allows local users to execute arbitrary code with SYSTEM privileges by exploiting the service installation path. When installed from directories containing spaces, attackers can place malicious executables in the path to be...

8.5CVSS0.00122EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.32 views

PT-2026-50907

Name of the Vulnerable Software and Affected Versions Iperius Remote version 1.7.0 Description An unquoted service path issue exists where the service installation path is not enclosed in quotes. This allows local users to execute arbitrary code with SYSTEM privileges. If the software is installe...

8.5CVSS6.1AI score0.00122EPSS
Exploits0References6
CVE
CVE
added 2026/06/12 9:48 p.m.14 views

CVE-2026-41155

The CVE-2026-41155 entry describes a vulnerability in GPU DDK where shared secure memory allocations are mapped into all GPU virtual address spaces, enabling cooperative data transfer between secure GPU processes and potential disruption of others, causing image corruption or GPU hardware recover...

5.5CVSS5.4AI score0.00106EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2026/06/11 12:0 p.m.34 views

Signal Alums Reveal ‘Encrypted Spaces,’ a System for Making Private Collaboration Apps

The new open-source project could serve as the basis for a future of apps with features as complex as Slack, Discord, or Google Docs—but with added protection against surveillance...

5.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2026/06/10 8:29 p.m.9 views

undertow: Undertow: Request Smuggling via Malformed HTTP Request Headers

A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform...

9.1CVSS5.5AI score0.00677EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/10 8:25 p.m.10 views

undertow: Undertow: Request Smuggling via Malformed HTTP Request Headers

A flaw was found in Undertow. When Undertow receives an HTTP request where the first header line starts with one or more spaces, it incorrectly processes the request by stripping these leading spaces. This behavior, which violates HTTP standards, can be exploited by a remote attacker to perform...

9.1CVSS5.5AI score0.00677EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2026/06/10 7:42 p.m.11 views

Important: Red Hat Security Advisory: Red Hat OpenShift Dev Spaces 3.28.2 Release.

Red Hat OpenShift Dev Spaces 3.28.2 has been released. This release provides security fixes for Dev Spaces components. https://access.redhat.com/support/policy/updates/openshiftcrw...

9.8CVSS6.8AI score0.01233EPSS
Exploits6References9
Mageia
Mageia
added 2026/06/07 5:10 a.m.15 views

Updated xdg-dbus-proxy packages fix security vulnerability

A policy parser vulnerability allows bypassing eavesdrop restrictions. The proxy checks for eavesdrop=true in policy rules but fails to handle eavesdrop ='true' with a space before the equals sign and similar cases...

6.8CVSS5.5AI score0.00175EPSS
Exploits0References3
Rows per page
Query Builder