Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-2643

Malicious code in bioql PyPI...

5.4CVSS5.5AI score0.0043EPSS
Exploits1References4
NVD
NVD
added 2021/09/10 4:15 a.m.18 views

CVE-2021-28813

A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism.We have...

9.6CVSS0.01095EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/09/10 4:0 a.m.18 views

CVE-2021-28813 Insufficiently Protected Credentials Vulnerability in QSW-M2116P-2T2S and QuNetSwitch

A vulnerability involving insecure storage of sensitive information has been reported to affect QSW-M2116P-2T2S and QNAP switches running QuNetSwitch. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism.We have...

9.6CVSS9.2AI score0.01095EPSS
Exploits0References1
NVD
NVD
added 2021/06/16 4:15 a.m.14 views

CVE-2021-28815

Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. If exploited, this vulnerability allows remote attackers to read sensitive information by accessing the unrestricted storage mechanism. This issue affects: QNAP Systems Inc. myQNAPcloud Link...

6CVSS0.01711EPSS
Exploits0References1
OSV
OSV
added 2021/05/25 5:15 p.m.17 views

CVE-2021-32638

Github's CodeQL action is provided to run CodeQL-based code scanning on non-GitHub CI/CD systems and requires a GitHub access token to connect to a GitHub repository. The runner and its documentation previously suggested passing the GitHub token as a command-line parameter to the process instead ...

4.4CVSS7.2AI score
Exploits0References5
Prion
Prion
added 2021/03/19 12:15 a.m.13 views

Authentication flaw

The iOS and macOS apps before 1.4.1 for the Western Digital G-Technology ArmorLock NVMe SSD store keys insecurely. They choose a non-preferred storage mechanism if the device has Secure Enclave support but lacks biometric authentication hardware...

4CVSS6.2AI score0.00888EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/03/18 11:40 p.m.29 views

CVE-2021-28653

The iOS and macOS apps before 1.4.1 for the Western Digital G-Technology ArmorLock NVMe SSD store keys insecurely. They choose a non-preferred storage mechanism if the device has Secure Enclave support but lacks biometric authentication hardware...

6.5AI score0.00888EPSS
Exploits0References1
Node.js
Node.js
added 2018/05/16 5:35 p.m.526 views

Out-of-bounds Read

Overview Versions of npmconf before 2.1.3 allocate and write to disk uninitialized memory contents when a typed number is passed as input on Node.js 4.x. Recommendation Update to version 2.1.3 or later. Consider switching to another config storage mechanism, as npmconf is deprecated and should no...

6.9AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2017/03/09 12:0 a.m.7 views

The vulnerability of the Mac OS X operating system, which allows a perpetrator to gain access to protected information

The vulnerability of the WiFi component of the Mac OS X operating system is related to the lack of protection for service data. Exploiting this vulnerability can allow an intruder, acting locally, to gain access to protected network configuration information using the global storage mechanism...

2.1CVSS6.6AI score0.00273EPSS
Exploits0References2Affected Software1
The Hacker News
The Hacker News
added 2013/11/29 3:53 a.m.26 views

Thousands of websites based on Ruby on Rails vulnerable to Cookie Handling flaw

Ruby on Rails contains a flaw in its design that may allow attackers to more easily access applications. Websites that rely on Ruby on Rails’s default cookie storage mechanism CookieStore are at risk. The vulnerability was actually reported two months ago, but still thousands of website are runni...

6.7AI score
Exploits0
OSV
OSV
added 2008/02/24 12:0 a.m.50 views

DSA-1506-1 iceape - several vulnerabilities

Bulletin has no description...

9.3CVSS9.7AI score0.08633EPSS
Exploits6
Rows per page
Query Builder