Lucene search
K

227 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2005-0256

Malware in sbrugna...

5CVSS6AI score0.04291EPSS
Exploits0References18
EUVD
EUVD
added 2025/10/07 12:30 a.m.10 views

EUVD-2019-2624

Malware in sbrugna...

7.5CVSS7.6AI score0.04664EPSS
Exploits1References9
Zero Day Initiative
Zero Day Initiative
added 2025/10/06 12:0 a.m.6 views

(Pwn2Own) Redis Lua Use-After-Free Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Redis. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of certain string values by the embedded Lua interpreter. The issue results from the...

9.8CVSS7.6AI score0.86767EPSS
Exploits14References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-55323

Malicious code in bioql PyPI...

7.1AI score0.00173EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-55322

Malicious code in bioql PyPI...

7.1AI score0.00183EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-53388

Malicious code in bioql PyPI...

5.5CVSS7.3AI score0.00208EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/17 12:0 a.m.7 views

PT-2025-38131

Name of the Vulnerable Software and Affected Versions XAPI affected versions not specified Description Multiple issues in XAPI can lead to a Denial of Service. First, while updates to the database sanitize input strings, the notification generation process uses unsanitized input, which can cause...

9.4CVSS5.9AI score0.00137EPSS
Exploits0References31
Ubuntu
Ubuntu
added 2025/09/01 9:53 a.m.17 views

USN-7728-1: ImageMagick vulnerabilities

It was discovered that ImageMagick did not properly process certain format strings when interpreting image filenames. An attacker could possibly use this issue to cause ImageMagick to crash, resulting in a denial of service. CVE-2025-53014 It was discovered that ImageMagick did not properly proce...

9.8CVSS5.5AI score0.00792EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-57930

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tracing: Have processstring also allow arrays In order to catch a common bug where a...

5.5CVSS6.1AI score0.00198EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/08/09 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect use of the strlen function, which could lead to string handling errors...

5.5CVSS6.4AI score0.0013EPSS
Exploits0References1
Fedora
Fedora
added 2025/06/25 1:44 a.m.11 views

[SECURITY] Fedora 41 Update: qt6-qtbase-6.8.3-2.fc41

Qt is a software toolkit for developing applications. This package contains base tools, like string, xml, and network handling...

7.3AI score
Exploits0
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.5 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: - For partitions: fixed handling of bogus partition tables. Several issues in partition probing have been fixed: - The bailout mechanism for a bad partoffset must use putdevsector, since the previous readpartsector call...

7.8CVSS6AI score0.00214EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:36 p.m.15 views

CVE-2021-25831

A file extension handling issue was found in core module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. An attacker must request the conversion of the crafted file from PPTT into PPTX format. Using the chain of two other bugs related to improper string handling, a remote attacker can obtain remote...

9.8CVSS7.7AI score0.11503EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.8 views

CBL Mariner 2.0 Security Update: kernel (CVE-2025-21905)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21905 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from...

7.1CVSS6.3AI score0.00206EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.5 views

NETGEAR R6100 安全漏洞

The NETGEAR R61 is a wireless router from NETGEAR. The NETGEAR R61 suffers from a buffer overflow vulnerability that stems from improper handling of the QUERYSTRING key value, which can be exploited by an attacker to execute arbitrary code...

9.8CVSS7.7AI score0.00938EPSS
Exploits1References2
Veracode
Veracode
added 2025/04/02 11:58 p.m.10 views

Arbitrary File Disclosure

Vite is vulnerable to Arbitrary File Disclosure. The vulnerability is due to improper handling of trailing separators in query strings and is caused by the removal of trailing separators ? without proper validation in regex checks, allows attackers to bypass file access restrictions and retrieve...

7.5CVSS7.2AI score0.74998EPSS
Exploits28References7Affected Software1
Positive Technologies
Positive Technologies
added 2025/04/02 12:0 a.m.5 views

PT-2025-14539 · Crates.Io · Pyo3

PyString::from object took &str arguments and forwarded them directly to the Python C API without checking for terminating nul bytes. This could lead the Python interpreter to read beyond the end of the &str data and potentially leak contents of the out-of-bounds read by raising a Python exceptio...

6.3CVSS7AI score
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/03/23 12:18 a.m.12 views

CVE-2025-30348

encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later data...

5.8CVSS6.8AI score0.00343EPSS
Exploits0References1
OSV
OSV
added 2025/03/21 1:18 p.m.1 views

OESA-2025-1308 zvbi security update

The ZVBI library provides functions to read from Linux V4L, V4L2 and FreeBSD BKTR raw VBI capture devices, from Linux DVB devices and from a VBI proxy to share V4L and V4L2 VBI devices between multiple applications. It can demodulate raw to sliced VBI data in software, with support for a wide ran...

7.5CVSS7.1AI score0.00764EPSS
Exploits0References4
OSV
OSV
added 2025/02/28 9:56 a.m.5 views

SUSE-SU-2025:0737-1 Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.20: - CVE-2025-1094: Harden PQescapeString and allied functions against invalidly-encoded input strings bsc1237093...

8.1CVSS8.2AI score0.89472EPSS
Exploits10References3
Rows per page
Query Builder