Lucene search
K

250 matches found

OSV
OSV
added 2024/07/29 11:15 p.m.3 views

CVE-2024-40822

This issue was addressed by restricting options offered on a locked device. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. An attacker with physical access to a device may be able to access contacts from the lock screen...

2.4CVSS5.7AI score0.00412EPSS
Exploits0References12
OSV
OSV
added 2024/07/29 11:15 p.m.4 views

CVE-2024-40824

This issue was addressed through improved state management. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, tvOS 17.6. An app may be able to bypass Privacy preferences...

5.5CVSS5.7AI score0.00281EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2024/07/29 12:0 a.m.2 views

PT-2024-22090 · Apple · Macos Sonoma +6

Name of the Vulnerable Software and Affected Versions: iOS versions prior to 17.6 iPadOS versions prior to 17.6 watchOS versions prior to 10.6 tvOS versions prior to 17.6 visionOS versions prior to 1.3 macOS Sonoma versions prior to 14.6 Description: An information disclosure issue was addressed...

5.5CVSS5.3AI score0.00299EPSS
Exploits0References16
EUVD
EUVD
added 2024/06/10 8:56 p.m.1 views

EUVD-2024-25008

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in tvOS 17.5, visionOS 1.2, iOS 17.5 and iPadOS 17.5, watchOS 10.5, macOS Sonoma 14.5. An app may be able to execute arbitrary code with kernel privileges...

7.8CVSS8AI score0.02047EPSS
Exploits1References11
NCSC
NCSC
added 2024/04/12 12:0 a.m.7 views

Vulnerabilities fixed in Juniper JunOS

Juniper has fixed vulnerabilities in JunOS and JunOS Evolved. A malicious party could exploit the vulnerabilities to cause a denial-of-service, gain access to sensitive data or to bypass security measures to allow traffic pass through traffic that was not initially authorized. Juniper has release...

9.2CVSS8.3AI score0.01495EPSS
Exploits0
Kaspersky
Kaspersky
added 2024/04/09 12:0 a.m.49 views

KLA65506 Multiple vulnerabilities in Microsoft System Center

Multiple vulnerabilities were found in Microsoft System Center. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. An elevation of privilege vulnerability in Microsoft Defender for IoT can be exploited...

8.8CVSS9.1AI score0.03199EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/03/14 9:11 a.m.18 views

CVE-2024-0313

A malicious insider exploiting this vulnerability can circumvent existing security controls put in place by the organization. On the contrary, if the victim is legitimately using the temporary bypass to reach out to the Internet for retrieving application and system updates, a remote device could...

5.5CVSS7.1AI score0.00179EPSS
Exploits0References1
OSV
OSV
added 2024/03/08 2:15 a.m.2 views

CVE-2024-23283

A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to access user-sensitive data...

5.5CVSS7.3AI score0.00261EPSS
Exploits0References11
NCSC
NCSC
added 2024/03/06 12:0 a.m.7 views

Vulnerabilities fixed in Apple iOS and iPadOS

Apple has fixed vulnerabilities in iOS and iPadOS. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Manipulation of data; Circumvention of security measure; Accessing sensitive data. For successful exploitatio...

7.8CVSS8.3AI score0.01481EPSS
Exploits0
Qualys Blog
Qualys Blog
added 2024/01/23 10:15 p.m.15 views

Announcing the Newest Game-Changing Upgrades of Qualys Cloud Agent

Qualys Cloud Agent Gets Powerful Enhancements for Boosting User Flexibility, Improved Control & Efficiency in VDI Environments, Seamless Updates, and More! We are excited to unveil a major upgrade to the Qualys Cloud Agent, marking a significant stride in cybersecurity management. The four update...

7.1AI score
Exploits0
OSV
OSV
added 2024/01/10 10:15 p.m.11 views

UBUNTU-CVE-2022-32919

The issue was addressed with improved UI handling. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1. Visiting a website that frames malicious content may lead to UI spoofing...

4.7CVSS7.3AI score0.00523EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2023/12/21 3:30 p.m.41 views

Security Bulletin: IBM Security Guardium is affected by a CSV Injection vulnerability (CVE-2023-42004)

Summary IBM Security Guardium has addressed this vulnerability in an update. Vulnerability Details CVEID:CVE-2023-42004 DESCRIPTION: IBM Security Guardium is potentially vulnerable to CSV injection. A remote attacker could execute malicious commands due to improper validation of csv file contents...

8.8CVSS8.6AI score0.01054EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/11 12:0 a.m.2 views

PT-2023-7962 · Apple · Macos Monterey +6

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 14.2 iOS versions prior to 17.2 iPadOS versions prior to 17.2 watchOS versions prior to 10.2 tvOS versions prior to 17.2 macOS Ventura versions prior to 13.6.3 macOS Monterey versions prior to 12.7.2 iOS versions prior...

6.3CVSS4.1AI score0.0061EPSS
Exploits1References27
Debian
Debian
added 2023/11/23 10:42 p.m.24 views

[SECURITY] [DLA 3661-1] firefox-esr security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3661-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort November 23, 2023 https://wiki.debian.org/LTS -...

8.8CVSS8.5AI score0.01406EPSS
Exploits0
Debian
Debian
added 2023/10/02 4:20 p.m.29 views

[SECURITY] [DLA 3599-1] exim4 security update

Debian LTS Advisory DLA-3599-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany October 02, 2023 https://wiki.debian.org/LTS Package : exim4 Version : 4.92-8+deb10u8 CVE ID : CVE-2023-42114 CVE-2023-42116 Several vulnerabilities were discovered in Exim, a mail...

9.8CVSS7.4AI score0.28084EPSS
Exploits2
OSV
OSV
added 2023/09/27 3:18 p.m.3 views

CVE-2023-35990

The issue was addressed with improved checks. This issue is fixed in iOS 17 and iPadOS 17, watchOS 10, iOS 16.7 and iPadOS 16.7, macOS Sonoma 14. An app may be able to identify what other apps a user has installed...

3.3CVSS5.7AI score0.00286EPSS
Exploits0References12
Kitploit
Kitploit
added 2023/09/13 11:30 a.m.32 views

KaliPackergeManager - Kali Packerge Manager

kalipm.sh is a powerful package management tool for Kali Linux that provides a user-friendly menu-based interface to simplify the installation of various packages and tools. It streamlines the process of managing software and enables users to effortlessly install packages from different categorie...

7.2AI score
Exploits0References1
hivepro
hivepro
added 2023/09/07 1:30 p.m.46 views

DreamBus Botnet Exploiting A Critical Vulnerability in Apache RocketMQ

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A critical vulnerability CVE-2023-33246 in Apache RocketMQ servers enables remote code execution, leading to a surge in attacks, including the deployment of the DreamBus malware. Timely system...

7.5CVSS7.5AI score0.96604EPSS
Exploits11
Citrix
Citrix
added 2023/08/24 12:0 a.m.7 views

Storefront - Unable to access store URL: "Server Error in '/Citrix/#storename#Web' Application"

Security related patches for IE browser and OS were deployed and since then users cannot launch the Storefront page. The following is displayed: Server Error in '/Citrix/storenameWeb' Application...

7.1AI score
Exploits0
Android Security Bulletins
Android Security Bulletins
added 2023/08/07 12:0 a.m.118 views

Android Security Bulletin—August 2023Stay organized with collectionsSave and categorize content based on your preferences.

The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. Security patch levels of 2023-08-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Android partners are...

9.8CVSS7.3AI score0.01032EPSS
Exploits0
Rows per page
Query Builder