Lucene search
K

12640 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-1934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache HTTP Server 2.4.0 to 2.4.41, modproxyftp may use uninitialized memory when proxying to a malicious FTP server. CVE-2020-1934 Note that Nessus relies o...

5.3CVSS7AI score0.51951EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-7074

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of man-in-the-middle to alter...

5.9CVSS6.2AI score0.01222EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-52742

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: USB: Fix wrong-direction WARNING in plusb.c The syzbot fuzzer detected a bug in the plusb network driver: A zero-length control-OUT transfer was treated as...

5.5CVSS6AI score0.00251EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/10 6:14 p.m.3 views

CVE-2025-5095

Burk Technology ARC Solo's password change mechanism can be utilized without proper authentication procedures, allowing an attacker to take over the device. A password change request can be sent directly to the device's HTTP endpoint without providing valid credentials. The system does not enforc...

9.8CVSS7.6AI score0.00873EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-27044

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential NULL pointer dereferences in 'dcn10setoutputtransferfunc' The...

5.5CVSS5.9AI score0.00279EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2024-35984

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: i2c: smbus: fix NULL function pointer dereference Baruch reported an OOPS when using the...

5.5CVSS6.2AI score0.00257EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2020-1935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache Tomcat 9.0.0.M1 to 9.0.30, 8.5.0 to 8.5.50 and 7.0.0 to 7.0.99 the HTTP header parsing code used an approach to end-of-line parsing that allowed some...

5.8CVSS7AI score0.09386EPSS
Exploits0References2
NVD
NVD
added 2025/08/09 4:15 p.m.25 views

CVE-2025-8758

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

7.3CVSS0.00147EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/09 4:2 p.m.30 views

CVE-2025-8758 TRENDnet TEW-822DRE vsftpd least privilege violation

A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...

7.3CVSS0.00147EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38229

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: cxusb: no longer judge rbuf when the write fails syzbot reported a uninit-value in cxusbi2cxfer. 1 Only when the write operation of usbbulkmsg in...

5.5CVSS6.6AI score0.0015EPSS
Exploits0References3
NVD
NVD
added 2025/08/08 6:15 p.m.5 views

CVE-2025-50927

A reflected cross-site scripting XSS vulnerability in the List All FTP User Function in EHCP v20.04.1.b allows authenticated attackers to execute arbitrary JavaScript via injecting a crafted payload into the ftpusername parameter...

6.3CVSS0.00185EPSS
Exploits2References2
NVD
NVD
added 2025/08/08 5:15 p.m.3 views

CVE-2025-53520

The affected product allows firmware updates to be downloaded from EG4's website, transferred via USB dongles, or installed through EG4's Monitoring Center remote, cloud-connected interface or via a serial connection, and can install these files without integrity checks. The TTComp archive format...

8.8CVSS0.0019EPSS
Exploits0References2
CVE
CVE
added 2025/08/08 12:0 a.m.18 views

CVE-2025-50927

CVE-2025-50927 concerns EHCP v20.04.1.b where the List All FTP User Function is vulnerable to reflected XSS via the ftpusername parameter. Authenticated attackers can inject JavaScript, potentially enabling session hijacking or redirection to malicious sites. Public writeups describe the vulnerab...

6.3CVSS5.5AI score0.00185EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/08/08 12:0 a.m.6 views

PT-2025-32385 · Ehcp · Ehcp

Name of the Vulnerable Software and Affected Versions: EHCP version 20.04.1.b Description: A reflected cross-site scripting XSS vulnerability exists in the List All FTP User Function. Authenticated attackers can execute arbitrary JavaScript by injecting a crafted payload into the ftpusername...

6.3CVSS6.2AI score0.00185EPSS
Exploits2References6
OSV
OSV
added 2025/08/07 7:44 a.m.13 views

CLSA-2025-1754552669 kernel: Fix of 12 CVEs

net: ch9200: fix uninitialised access during miinwayrestart CVE-2025-38086 - idpf: fix null-ptr-deref in idpffeaturescheck CVE-2025-38053 - ftrace: Fix NULL pointer dereference in isftracetrampoline when ftrace is dead CVE-2022-49977 - sched/fair: Fix potential memory corruption in...

7.8CVSS7AI score0.00305EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.6 views

dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using

...

7.8CVSS7AI score0.00154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.4 views

net: atm: fix /proc/net/atm/lec handling

...

7.8CVSS7AI score0.0017EPSS
Exploits0
Fedora
Fedora
added 2025/08/07 1:13 a.m.6 views

[SECURITY] Fedora 41 Update: libssh-0.11.2-1.fc41

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, trans fer files, use a secure and transparent tunnel for your remote...

8.8CVSS7.5AI score0.02394EPSS
Exploits0
CNNVD
CNNVD
added 2025/08/07 12:0 a.m.6 views

Akamai Ghost 环境问题漏洞

Akamai Ghost is an HTTP service program from Akamai Corporation. An environmental issue vulnerability exists in versions of Akamai Ghost prior to 2025-03-26, which stems from inconsistent parsing of HTTP requests and could lead to a request entrapment attack...

4CVSS6.7AI score0.00517EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/08/07 12:0 a.m.6 views

PT-2025-32330 · Burk Technology · Arc Solo

Name of the Vulnerable Software and Affected Versions: Burk Technology ARC Solo affected versions not specified Description: The password change mechanism in Burk Technology ARC Solo does not require proper authentication, potentially allowing an attacker to take over the device. A password chang...

9.8CVSS6.6AI score0.00873EPSS
Exploits0References11
Rows per page
Query Builder