Lucene search
K

1051 matches found

Vulnrichment
Vulnrichment
added 2026/01/30 4:16 p.m.5 views

CVE-2020-37058 Andrea ST Filters Service 1.0.64.7 - Unquoted service path

Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup...

8.5CVSS6AI score0.00121EPSS
Exploits0References3
EUVD
EUVD
added 2026/01/30 4:16 p.m.6 views

EUVD-2020-30956

Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup...

8.5CVSS6AI score0.00121EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/30 4:16 p.m.5 views

CVE-2020-37058

Andrea ST Filters Service 1.0.64.7 contains an unquoted service path vulnerability in its Windows service configuration. Local attackers can exploit the unquoted path to inject malicious code that will execute with elevated LocalSystem privileges during service startup...

8.5CVSS6AI score0.00121EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37969)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37969 advisory. - In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup...

5.5CVSS6.7AI score0.00127EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37970)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37970 advisory. - In the Linux kernel, the following vulnerability has been resolved: iio: imu: stlsm6dsx: fix possible lockup...

5.5CVSS6.7AI score0.00127EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.6 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-37857)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-37857 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: st: Fix array overflow in stsetup...

5.5CVSS6.8AI score0.00254EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/13 10:53 p.m.5 views

CVE-2025-29329

Buffer Overflow in the ippprint Internet Printing Protocol service in Sagemcom F@st 3686 MAGYAR4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request...

9.8CVSS7.9AI score0.00859EPSS
Exploits2References1
OSV
OSV
added 2026/01/12 10:16 p.m.7 views

CVE-2025-29329

Buffer Overflow in the ippprint Internet Printing Protocol service in Sagemcom F@st 3686 MAGYAR4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request...

9.8CVSS6.1AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/12 12:0 a.m.3 views

CVE-2025-29329

Buffer Overflow in the ippprint Internet Printing Protocol service in Sagemcom F@st 3686 MAGYAR4.121.0 allows remote attacker to execute arbitrary code by sending a crafted HTTP request...

7.5AI score0.00859EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.5 views

CVE-2023-43627

Path traversal vulnerability in ACERA 1320 firmware ver.01.26 and earlier, and ACERA 1310 firmware ver.01.26 and earlier allows a network-adjacent authenticated attacker to alter critical information such as system files by sending a specially crafted request. They are affected when running in...

5.7CVSS6.5AI score0.00274EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:0 a.m.8 views

CVE-2023-29031

A cross site scripting vulnerability was discovered in Rockwell Automation's ArmorStart ST product that could potentially allow a malicious user to view and modify sensitive data or make the web page unavailable. User interaction, such as a phishing attack, is required for successful exploitation...

7.1CVSS6AI score0.0049EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992853)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992853 advisory. In the Linux kernel, the following vulnerability has been resolved: nfc: st-nci: Fix use after free bug in ndlcremove due to race condition This bug influences both...

7.8CVSS6AI score0.0017EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 1:3 a.m.10 views

SUSE CVE-2022-50776

In the Linux kernel, the following vulnerability has been resolved: clk: st: Fix memory leak in stofquadfssetup If stclkregisterquadfspll fails, @lock should be freed before goto @errexit, otherwise will cause meory leak issue, fix it...

5.5CVSS6.5AI score0.00243EPSS
Exploits0References7
CVE
CVE
added 2025/12/24 1:6 p.m.14 views

CVE-2022-50776

CVE-2022-50776: In the Linux kernel, a memory leak in the clk: st subsystem was fixed. Specifically, if st_clk_register_quadfs_pll() fails, the @lock must be freed before jumping to err_exit to avoid leaking memory. The advisory states the issue was resolved in the kernel, but the provided docume...

6.1AI score0.00243EPSS
Exploits0References9
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/11/20 6:15 p.m.6 views

Malicious code in @ra-ide/st-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49ae7d07061ce406d972052f23649e631bb22f724cd85c8ab0c73b18689ecb36 The package @ra-ide/st-frontend was found to contain malicious code. Source: ossf-package-analysis...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/11/20 6:15 p.m.3 views

EUVD-2025-198327

Malicious code in @ra-ide/st-frontend npm...

6.6AI score
Exploits0
OSV
OSV
added 2025/11/20 6:15 p.m.3 views

MAL-2025-190595 Malicious code in @ra-ide/st-frontend (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 49ae7d07061ce406d972052f23649e631bb22f724cd85c8ab0c73b18689ecb36 The package @ra-ide/st-frontend was found to contain malicious code. Source: ossf-package-analysis...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/11/12 7:18 p.m.2 views

EUVD-2025-143159

Malicious code in budi-st-rusmaya npm...

6.6AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/23 9:13 a.m.13 views

CVE-2025-11878

The ST Categories Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's st-categories shortcode in versions less than, or equal to, 1.0.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS5.2AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/22 8:27 a.m.6 views

EUVD-2025-35327

The ST Categories Widget plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's st-categories shortcode in versions less than, or equal to, 1.0.0. This is due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

6.4CVSS4.8AI score0.00176EPSS
Exploits0References3
Rows per page
Query Builder