Lucene search
K

1096 matches found

CNNVD
CNNVD
added 2025/11/06 12:0 a.m.4 views

runc 安全漏洞

runc is an Open Container Initiative open source CLI Command Line Interface tool for generating and running containers according to the OCI specification. A security vulnerability exists in runc versions 1.0.0-rc3 through 1.2.7, 1.3.0-rc.1 through 1.3.2, and 1.4.0-rc.1 through 1.4.0-rc.2, which...

8.4CVSS6.2AI score0.00523EPSS
Exploits1References11
OSV
OSV
added 2025/10/23 2:15 p.m.5 views

CVE-2025-62256

Liferay Portal 7.4.0 through 7.4.3.109, and Liferay DXP 2023.Q4.0 through 2023.Q4.5, 2023.Q3.1 through 2023.Q3.7, 7.4 GA through update 92, 7.3 GA through update 35, and older unsupported versions does not properly restrict access to OpenAPI in certain circumstances, which allows remote attackers...

5.3CVSS6.4AI score0.00384EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/10/20 3:29 p.m.5 views

CVE-2025-40016

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Mark invalid entities with id UVCINVALIDENTITYID Per UVC 1.1+ specification 3.7.2, units and terminals must have a non-zero unique ID. Each Unit and Terminal within the video function is assigned a unique...

5.4AI score0.00231EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/10/20 3:29 p.m.4 views

CVE-2025-40016 media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Mark invalid entities with id UVCINVALIDENTITYID Per UVC 1.1+ specification 3.7.2, units and terminals must have a non-zero unique ID. Each Unit and Terminal within the video function is assigned a unique...

6.2AI score0.00231EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/10/14 5:0 p.m.2 views

CVE-2025-55339 Windows Network Driver Interface Specification (NDIS) Driver Elevation of Privilege Vulnerability

...

7.8CVSS9.2AI score0.00384EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/10/14 2:0 p.m.6 views

Windows Network Driver Interface Specification (NDIS) Driver Elevation of Privilege Vulnerability

Out-of-bounds read in Windows NDIS allows an authorized attacker to elevate privileges locally...

7.8CVSS9.2AI score0.00384EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/14 7:42 a.m.6 views

CVE-2025-10556

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.5AI score0.00184EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/13 9:30 a.m.4 views

EUVD-2025-34048

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6AI score0.00184EPSS
Exploits0References2
NVD
NVD
added 2025/10/13 8:15 a.m.9 views

CVE-2025-10556

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00184EPSS
Exploits0References1
OSV
OSV
added 2025/10/13 8:15 a.m.6 views

CVE-2025-10556

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

5.4CVSS6AI score0.00184EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/13 7:36 a.m.8 views

CVE-2025-10556 Stored Cross-site Scripting (XSS) vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS0.00184EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 7:36 a.m.19 views

CVE-2025-10556

ENOVIA Specification Manager (3DEXPERIENCE) is affected by a stored XSS in the Specification Management module, impacting releases from R2023x through R2025x. The root cause is improper handling of user-supplied data in the web UI, enabling an attacker to execute arbitrary script code in a victim...

8.7CVSS6.1AI score0.00184EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/13 7:36 a.m.4 views

CVE-2025-10556 Stored Cross-site Scripting (XSS) vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x

A stored Cross-site Scripting XSS vulnerability affecting Specification Management in ENOVIA Specification Manager from Release 3DEXPERIENCE R2023x through Release 3DEXPERIENCE R2025x allows an attacker to execute arbitrary script code in user's browser session...

8.7CVSS6.1AI score0.00184EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.4 views

Dassault Systèmes ENOVIA Specification Manager 安全漏洞

Dassault Systèmes ENOVIA Specification Manager is an application module for creating, managing, and collaborating on product specifications from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Specification Manager, which stems from a stored cross-site...

8.7CVSS6.1AI score0.00184EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/13 12:0 a.m.5 views

Dassault Systèmes ENOVIA Specification Manager 安全漏洞

Dassault Systèmes ENOVIA Specification Manager is an application module for creating, managing and collaborating on product specifications from Dassault Systèmes France. A security vulnerability exists in Dassault Systèmes ENOVIA Specification Manager versions R2022x through 3DEXPERIENCE R2025x,...

8.7CVSS6AI score0.00184EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.8 views

PT-2025-41766

Name of the Vulnerable Software and Affected Versions ENOVIA Specification Manager versions 3DEXPERIENCE R2023x through 3DEXPERIENCE R2025x Description A stored Cross-site Scripting XSS issue exists in Specification Management within ENOVIA Specification Manager. This allows an attacker to execut...

8.7CVSS6.5AI score0.00184EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-17189

Malware in sbrugna...

9.8CVSS9.5AI score0.04111EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2010-0302

Malware in sbrugna...

4.6CVSS6.4AI score0.00322EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2018-3379

Malware in sbrugna...

4.3CVSS4.8AI score0.01131EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2007-0106

Malware in sbrugna...

6.8CVSS6.4AI score0.04714EPSS
Exploits2References10
Rows per page
Query Builder