Lucene search
K

11 matches found

OSV
OSV
added 2026/06/05 9:53 a.m.6 views

ROOT-OS-ALPINE-323-CVE-2026-49975 CVE-2026-49975 in rootio-apache2 - Patched by Root

Root has patched CVE-2026-49975 in the rootio-apache2 package for Root:Alpine:3.23. Multiple fixed versions available...

7.5CVSS5.4AI score0.11471EPSS
Exploits7
EUVD
EUVD
added 2026/04/08 5:7 p.m.4 views

EUVD-2026-20527

Saleor is an e-commerce platform. From 2.0.0 to before 3.23.0a3, 3.22.47, 3.21.54, and 3.20.118, Saleor supports query batching by submitting multiple GraphQL operations in a single HTTP request as a JSON array but wasn't enforcing any upper limit on the number of operations. This allowed an...

7.5CVSS5.9AI score0.00435EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/13 12:0 a.m.11 views

TencentOS Server 4: freerdp (TSSA-2026:0140)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2026:0140 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.8CVSS6.1AI score0.00591EPSS
Exploits2References3
EUVD
EUVD
added 2026/02/25 8:36 p.m.5 views

EUVD-2026-8736

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfcliprdrprovidedata passes freed pDstData to XChangeProperty because the cliprdr channel thread calls xfcliprdrserverformatdataresponse which converts and uses the clipboard data without holding any lock,...

6.9CVSS5.5AI score0.00567EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-22016

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.23.0 Description A missing bounds check in the smartcard unpack read size align function within libfreerdp/utils/smartcard pack.c can cause the FreeRDP client to crash when connecting to a malicious RDP server. This...

9.8CVSS5.2AI score0.00756EPSS
Exploits20References99
RedHat Linux
RedHat Linux
added 2025/05/27 12:58 a.m.13 views

Low: Red Hat Security Advisory: openldap security update

An update for openldap is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

7.5CVSS6.8AI score0.01947EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:20 a.m.6 views

CVE-2023-38565

A path handling issue was addressed with improved validation. This issue is fixed in macOS Monterey 12.6.8, iOS 16.6 and iPadOS 16.6, macOS Big Sur 11.7.9, macOS Ventura 13.5, watchOS 9.6. An app may be able to gain root privileges...

7.8CVSS5.8AI score0.00209EPSS
Exploits0References1
OSV
OSV
added 2024/08/26 9:15 p.m.3 views

CVE-2024-43259

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in JEM Plugins Order Export for WooCommerce.This issue affects Order Export for WooCommerce: from n/a through 3.23...

7.5CVSS5.8AI score0.0037EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 3:57 a.m.2 views

SUSE CVE-2020-15112

In etcd before versions 3.3.23 and 3.4.10, it is possible to have an entry index greater then the number of entries in the ReadAll method in wal/wal.go. This could cause issues when WAL entries are being read during consensus as an arbitrary etcd consensus participant could go down from a runtime...

5.3CVSS7.7AI score0.01256EPSS
Exploits0References11
OSV
OSV
added 2020/08/06 11:15 p.m.4 views

UBUNTU-CVE-2020-15136

In ectd before versions 3.4.10 and 3.3.23, gateway TLS authentication is only applied to endpoints detected in DNS SRV records. When starting a gateway, TLS authentication will only be attempted on endpoints identified in DNS SRV records for a given domain, which occurs in the discoverEndpoints...

6.5CVSS7.1AI score0.01636EPSS
Exploits0References4
CNVD
CNVD
added 2016/06/13 12:0 a.m.3 views

Unspecified Vulnerability in Mozilla Firefox Network Security Services

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation.Network Security Services NSS is a library Network Security Services library, which provides cross-platform support for SSL, S/MIME and other Internet security standards. An unspecified vulnerability exists in NSS...

9.3CVSS8.8AI score0.0338EPSS
Exploits0References1
Rows per page
Query Builder