Lucene search
K

2102 matches found

CNNVD
CNNVD
added 2026/04/15 12:0 a.m.11 views

Red Hat System Security Services Daemon 安全漏洞

The Red Hat System Security Services Daemon is a daemon process component in Linux developed by Red Hat Inc. There is a security vulnerability associated with the Red Hat System Security Services Daemon. This vulnerability stems from the improper handling of raw pipe bytes by the...

5.5CVSS5.8AI score0.00141EPSS
Exploits0References2
OSV
OSV
added 2026/04/14 11:31 p.m.5 views

GHSA-W3X6-4M5H-CXQF Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.01753EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/04/14 11:31 p.m.8 views

Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.01753EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/14 11:30 p.m.4 views

GHSA-37GX-XXP4-5RGX Microsoft Security Advisory CVE-2026-33116 – .NET, .NET Framework, and Visual Studio Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...

7.5CVSS6.2AI score0.02142EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/14 12:0 a.m.9 views

Microsoft Windows Local Security Authority Subsystem Service 代码问题漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal program of the American company Microsoft, responsible for implementing Windows system security policies. It verifies user identities when a computer or server is logged in, manages user password changes, and generate...

7.5CVSS5.9AI score0.01059EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/04/03 9:18 p.m.4 views

CVE-2026-34980

OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.16 and prior, in a network-exposed cupsd with a shared target queue, an unauthorized client can send a Print-Job to that shared PostScript queue without authentication. The server...

7.5CVSS6.1AI score0.00502EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.9 views

SourceCodester Sales and Inventory System 安全漏洞

The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a security vulnerability. This vulnerability stems from improper cleaning of the parameter msg i...

9.3CVSS5.6AI score0.00321EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2026/03/30 12:0 a.m.3 views

Study of Post Quantum Status of Widely Used Protocols

The advent of quantum computing poses significant threats to classical public-key cryptographic primitives such as RSA and elliptic-curve cryptography. As many critical network and security protocols depend on these primitives for key exchange and authentication, there is an urgent need to...

6AI score
Exploits0
EUVD
EUVD
added 2026/03/25 3:31 p.m.6 views

EUVD-2026-15406

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS5.8AI score0.01545EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/03/25 1:25 p.m.5 views

CVE-2026-1519

If a BIND resolver is performing DNSSEC validation and encounters a maliciously crafted zone, the resolver may consume excessive CPU. Authoritative-only servers are generally unaffected, although there are circumstances where authoritative servers may make recursive queries see:...

7.5CVSS8.7AI score0.01545EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/19 12:0 a.m.9 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2026-099 (ALASKERNEL-5.15-2026-099)

The version of kernel installed on the remote host is prior to 5.15.202-141.223. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2026-099 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop in...

5.5CVSS6.2AI score0.00118EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.5 views

Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2026-1464)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.8AI score0.00756EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/10 12:0 a.m.7 views

Huawei EulerOS: Security Advisory for sssd (EulerOS-SA-2026-1298)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS5.8AI score0.00756EPSS
Exploits0References2
ICS
ICS
added 2026/03/10 12:0 a.m.10 views

Siemens RUGGEDCOM APE1808 Devices

SUMMARY Fortinet has published information on vulnerabilities in FORTIOS. This advisory lists the related Siemens Industrial products. Siemens has released a new version for RUGGEDCOM APE1808 and recommends to update to the latest version. 2. GENERAL RECOMMENDATIONS As a general security...

7.1AI score
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/03/10 12:0 a.m.4 views

EulerOS 2.0 SP13 : sssd (EulerOS-SA-2026-1298)

According to the versions of the sssd packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the integration of Active Directory and the System Security Services Daemon SSSD on Linux systems. In default configurations, th...

8.8CVSS5.8AI score0.00756EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2026/03/09 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2026:20599-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.0024EPSS
Exploits2References236
Broadcom
Broadcom
added 2026/03/03 12:0 a.m.18 views

sssd default kerberos configuration allows privilege escalation on ad-joined linux systems

A flaw was found in the integration of Active Directory and the System Security Services Daemon SSSD on Linux systems. In default configurations, the Kerberos local authentication plugin sssdkrb5localauthplugin is enabled, but a fallback to the an2ln plugin is possible. This fallback allows an...

8.8CVSS5.9AI score0.00756EPSS
Exploits0
OSV
OSV
added 2026/02/28 12:44 p.m.9 views

OESA-2026-1440 microcode_ctl security update

This is a tool to transform and deploy microcode update for x86 CPUs. Security Fixes: Improper handling of values in the microcode flow for some IntelR Processor Family may allow an escalation of privilege. Startup code and smm adversary with a privileged user combined with a high complexity atta...

3.9CVSS6AI score0.00133EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2026/02/16 7:49 a.m.8 views

USN-8025-2: .NET vulnerability

USN 8025-1 fixed a vulnerability in .NET. This update provides the corresponding fix for Ubuntu 24.04 LTS. Original advisory details: Kevin Jones discovered that the System.Security.Cryptography.Cose component in .NET did not properly handle certain missing special elements in input data. An...

7.5CVSS5.6AI score0.01015EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/12 1:4 a.m.6 views

CVE-2025-67135

Weak Security in the PF-50 1.2 keyfob of PGST PG107 Alarm System 1.25.05.hf allows attackers to compromise access control via a code replay attack...

9.8CVSS5.6AI score0.00349EPSS
Exploits0References1
Rows per page
Query Builder