Lucene search
K

179 matches found

Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.13 views

PT-2026-49805

In mfc core nal q get dec metadata sei nal of mfc core nal q.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

8.8CVSS6.2AI score0.00277EPSS
Exploits0References3
NVD
NVD
added 2026/05/19 6:16 p.m.35 views

CVE-2025-61081

Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

0.00029EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/19 12:0 a.m.8 views

CVE-2025-61081

In BYD Atto3, an attacker can obtain an authentication key through Brute Force attack, which is permanently available. The authentication key enables flash to the Electronic Parking Break EPB and Supplemental Restoration System SRS related ECUs...

5.8AI score0.00029EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 12:0 a.m.16 views

EUVD-2025-209899

In BYD Atto3, an attacker can obtain an authentication key through Brute Force attack, which is permanently available. The authentication key enables flash to the Electronic Parking Break EPB and Supplemental Restoration System SRS related ECUs...

7.5CVSS5.8AI score0.00029EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/19 12:0 a.m.6 views

CVE-2025-61081

DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...

5.8AI score0.00029EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/19 12:0 a.m.45 views

CVE-2025-61081

...

0.00029EPSS
Exploits0
CVE
CVE
added 2026/05/19 12:0 a.m.26 views

CVE-2025-61081

CVE-2025-61081 entry is rejected and not used.

5.8AI score0.00029EPSS
Exploits0
OSV
OSV
added 2026/04/09 9:32 p.m.6 views

JLSEC-2026-65

sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with...

7CVSS6.8AI score0.02367EPSS
Exploits2References28
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.7 views

EulerOS 2.0 SP11 : proftpd (EulerOS-SA-2026-1587)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental...

7.5CVSS5.9AI score0.02204EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2026/02/26 11:16 a.m.7 views

The Conduent breach; from 10 million to 25 million (and counting)

The Conduent breach has quietly grown into one of the biggest third‑party data incidents in US history, and the real story now is how many different programs and employers are swept up in it, even for people who have never heard of Conduent. When we first covered this incident, public filings...

5.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000539)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000539 advisory. The Linux kernel through 3.17.4 does not properly restrict dropping of supplemental group memberships in certain namespace scenarios, which allows local users to...

4.6CVSS6.7AI score0.00494EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.5 views

EulerOS 2.0 SP12 : proftpd (EulerOS-SA-2026-1077)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental...

7.5CVSS7.3AI score0.02204EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002304)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002304 advisory. The Linux kernel through 3.17.4 does not properly restrict dropping of supplemental group memberships in certain namespace scenarios, which allows local users to...

4.6CVSS6.7AI score0.00494EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.5 views

EulerOS 2.0 SP13 : proftpd (EulerOS-SA-2025-2528)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental...

7.5CVSS7.3AI score0.02204EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.7 views

EulerOS 2.0 SP13 : proftpd (EulerOS-SA-2025-2507)

According to the versions of the proftpd package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In ProFTPD through 1.3.8b before cec01cc, supplemental group inheritance grants unintended access to GID 0 because of the lack of supplemental...

7.5CVSS7.3AI score0.02204EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-3899

Malware in sbrugna...

6.8CVSS9.1AI score0.05715EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-4336

Malware in sbrugna...

8.8CVSS9.3AI score0.03767EPSS
Exploits0References26
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-9569

Malware in sbrugna...

4.9CVSS5.1AI score0.00714EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-43211

Malicious code in bioql PyPI...

7.5CVSS8.9AI score0.02204EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 5:4 a.m.6 views

CVE-2017-18453

cPanel before 64.0.21 does not preserve supplemental groups across account renames SEC-260...

4.9CVSS7AI score0.00714EPSS
Exploits0References1
Rows per page
Query Builder