Lucene search
K

16 matches found

SUSE CVE
SUSE CVE
added 2026/04/02 11:26 p.m.5 views

SUSE CVE-2026-34543

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.8, sensitive information from heap memory may be leaked through the decoded pixel data information disclosure...

5.5CVSS5.7AI score0.00482EPSS
Exploits1References3
NVD
NVD
added 2026/04/01 9:17 p.m.2 views

CVE-2026-34543

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.8, sensitive information from heap memory may be leaked through the decoded pixel data information disclosure...

8.7CVSS0.00482EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/04/01 8:56 p.m.1 views

CVE-2026-34543

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.8, sensitive information from heap memory may be leaked through the decoded pixel data information disclosure...

8.7CVSS5.7AI score0.00482EPSS
Exploits1References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/04/01 8:51 p.m.4 views

CVE-2026-34545

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From version 3.4.0 to before version 3.4.7, an attacker providing a crafted .exr file with HTJ2K compression and a channel width of 32768 can write...

8.8CVSS6.5AI score0.00611EPSS
Exploits1References4Affected Software1
EUVD
EUVD
added 2026/02/27 9:22 p.m.6 views

EUVD-2026-8789

ZITADEL's truncated opaque tokens are still valid...

4.3CVSS5.9AI score0.00142EPSS
Exploits0References6
CVE
CVE
added 2026/02/26 12:34 a.m.21 views

CVE-2026-27946

ZITADEL exposes a vulnerability in its self-management capability prior to versions 4.11.1 and 3.4.7 that allowed a user to mark their email and/or phone as verified without going through actual verification. The fix, in versions 4.11.1 and 3.4.7, enforces the correct permission when the verifica...

8.2CVSS5.5AI score0.00176EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.8 views

ZITADEL 安全漏洞

ZITADEL is a modern open-source alternative to Auth0, Firebase Auth, AWS Cognito, and Keycloak, developed by ZITADEL in Switzerland for the era of containers and serverless architectures. Versions of ZITADEL prior to 4.11.1 and 3.4.7 contain security vulnerabilities. These vulnerabilities stem fr...

8.2CVSS7.3AI score0.00176EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/23 2:29 p.m.5 views

EUVD-2026-4347

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginOps Landing Page Builder page-builder-add allows Stored XSS.This issue affects Landing Page Builder: from n/a through = 1.5.3.3...

5.4AI score0.00176EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/20 2:56 p.m.3 views

CVE-2025-13925

IBM Aspera Console 3.4.7 stores potentially sensitive information in log files that could be read by a local privileged user...

4.9CVSS5.3AI score0.00287EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/12/09 2:52 p.m.10 views

CVE-2025-62993

CVE-2025-62993 concerns WordPress plugin Notification for Telegram (plugin slug: notification-for-telegram) with versions up to and including 3.4.7. The Red Hat/EUVD/NVD/NIST entries describe a Missing Authorization vulnerability (Broken Access Control) arising from incorrectly configured access ...

4.3CVSS5.7AI score0.00185EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/03 12:0 a.m.10 views

PT-2025-40484

Name of the Vulnerable Software and Affected Versions Unify WordPress Plugin versions through 3.4.7 Description The Unify plugin for WordPress is susceptible to Stored Cross-Site Scripting. This is due to inadequate input sanitization and output escaping on user-supplied attributes within the...

6.4CVSS5.9AI score0.00283EPSS
Exploits0References5
NVD
NVD
added 2025/09/29 9:15 p.m.5 views

CVE-2025-45376

Dell Repository Manager DRM, versions 3.4.7 and 3.4.8, contains an Improper Handling of Insufficient Permissions or Privileges vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of privileges...

7.8CVSS0.00095EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/05/06 12:0 a.m.5 views

WordPress plugin Post Grid Master 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.3CVSS6.5AI score0.00449EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/14 12:0 a.m.3 views

PT-2023-1898 · Adobe · Dimension

Name of the Vulnerable Software and Affected Versions: Adobe Dimension versions 3.4.7 and earlier Description: The issue is related to a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user...

7.8CVSS7.8AI score0.00387EPSS
Exploits0References6
Circl
Circl
added 2021/10/21 7:36 a.m.7 views

CVE-2021-34736

creationtimestamp| type| source ---|---|--- 2021-10-21 07:36:18+00:00| seen| https://t.me/cibsecurity/30929...

7.5CVSS7.3AI score0.01233EPSS
Exploits0References1
CVE
CVE
added 1976/01/01 12:0 a.m.6 views

CVE-2025-34712

CVE-2025-34712 is rejected/not used and does not represent an active vulnerability entry.

6.6AI score
Exploits0
Rows per page
Query Builder