Lucene search
K

27 matches found

Vulnrichment
Vulnrichment
added 2026/04/14 8:54 p.m.5 views

CVE-2026-27287 InCopy | Out-of-bounds Read (CWE-125)

InCopy versions 20.5.2, 21.2 and earlier are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memory structure. An attacker could leverage this vulnerability to execute code in the context of the current user...

7.8CVSS5.9AI score0.00205EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/14 5:5 p.m.5 views

CVE-2026-34628

InDesign Desktop versions 20.5.2, 21.2 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00178EPSS
Exploits0References2
Microsoft Security Update
Microsoft Security Update
added 2026/04/14 5:0 p.m.24 views

2026-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5082142)

2026-04 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems KB5082142...

5.8AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/23 12:0 a.m.2 views

CVE-2024-46879

A Reflected Cross-Site Scripting XSS vulnerability exists in the POST request data zipPath of tiki-adminsystem.php in Tiki version 21.2. This vulnerability allows attackers to execute arbitrary JavaScript code via a crafted payload, leading to potential access to sensitive information or...

6.2AI score0.00195EPSS
Exploits1References4
CVE
CVE
added 2026/03/23 12:0 a.m.12 views

CVE-2024-46879

Summary: CVE-2024-46879 affects Tiki 21.2, specifically the tiki-admin_system.php component, where a Reflected Cross-Site Scripting (XSS) flaw exists in the POST data parameter zipPath. The issue allows an attacker to inject and execute arbitrary JavaScript through a crafted payload, potentially ...

5.4CVSS6.2AI score0.00195EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 8 : php:7.4 (AXSA:2022-3573:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3573:01 advisory. php: Local privilege escalation via PHP-FPM CVE-2021-21703 php: SSRF bypass in FILTERVALIDATEURL CVE-2021-21705 Tenable has extracted the preceding...

7.8CVSS5.6AI score0.01945EPSS
Exploits2References3
Microsoft Security Update
Microsoft Security Update
added 2026/01/13 6:0 p.m.23 views

2026-01 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5073457)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2025/11/11 6:0 p.m.11 views

2025-11 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5068781)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

7AI score
Exploits0
Microsoft Security Update
Microsoft Security Update
added 2025/11/11 6:0 p.m.13 views

2025-11 Dynamic Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5068781)

ComponentUpdate: A security issue has been identified in a Microsoft software product that could affect your system. You can help protect your system by installing this update from Microsoft. For a complete listing of the issues that are included in this update, see the associated Microsoft...

6.7AI score
Exploits0
Circl
Circl
added 2025/09/06 7:50 p.m.25 views

CVE-2021-26377

creationtimestamp| type| source ---|---|--- 2025-09-06 19:50:51+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ly6x4rmaal2p...

4.1CVSS4.8AI score0.0014EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:29 p.m.17 views

CVE-2021-21987

VMware Workstation 16.x prior to 16.1.2 and Horizon Client for Windows 5.x prior to 5.5.2 contain out-of-bounds read vulnerability in the Cortado ThinPrint component TTC Parser. A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to...

6.5CVSS6.5AI score0.00559EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:10 p.m.7 views

CVE-2021-27253

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR Nighthawk R7800. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handli...

8.8CVSS7.3AI score0.01127EPSS
Exploits0References1
Circl
Circl
added 2025/05/21 5:18 p.m.20 views

CVE-2025-48204

creationtimestamp| type| source ---|---|--- 2025-05-21 17:18:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpp4anh5bx2k 2025-05-21 20:41:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17200...

6.8CVSS4.8AI score0.01462EPSS
Exploits0References2
Circl
Circl
added 2025/03/21 3:14 a.m.9 views

CVE-2023-28207

creationtimestamp| type| source ---|---|--- 2025-03-21 03:14:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkuandack526 2025-03-21 04:16:28+00:00| seen| https://t.me/cvedetector/20781 2025-03-21 16:19:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8370 2025-03-25...

5.5CVSS7.5AI score0.00157EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2022/10/24 2:15 p.m.6 views

CVE-2021-46849

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-29421. Reason: This candidate is a duplicate of CVE-2021-29421. Notes: All CVE users should reference CVE-2021-29421 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage...

7.2AI score
Exploits0References3
Microsoft KB
Microsoft KB
added 2021/11/09 12:0 a.m.6 views

November 9, 2021-KB5006364 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2

None None...

6.1AI score
Exploits0
CNNVD
CNNVD
added 2021/06/28 12:0 a.m.6 views

SICK Visionary-S CX 加密问题漏洞

SICK Visionary-S CX is a 3D vision sensor from SICK, Germany. It provides direct output of color and depth values via Ethernet. The SICK Visionary-S CX has a security vulnerability in versions prior to 5.21.2.29154R, which can be exploited by an attacker with a weak password to more easily...

5.3CVSS5.6AI score0.00264EPSS
Exploits0References1
CVE
CVE
added 2021/05/17 11:16 a.m.64 views

CVE-2021-29052

Affected products: Liferay Portal 7.3.0–7.3.5 and Liferay DXP 7.3 before fix pack 1. Issue: Data Engine module fails to check permissions in DataDefinitionResourceImpl.getSiteDataDefinitionByContentTypeByDataDefinitionKey, enabling remote authenticated users to view DDMStructures via GET API call...

4.3CVSS4.3AI score0.00764EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2021/01/05 12:0 a.m.6 views

Veritas System Recovery Security Breach

Veritas System Recovery is a system recovery software from Veritas, USA. The software provides Windows systems with the ability to recover corrupted systems without reinstalling the system. A security vulnerability exists in Veritas System Recovery before 21.2, which can be exploited by an attack...

9.3CVSS7.6AI score0.00431EPSS
Exploits0References2
CNVD
CNVD
added 2020/08/05 12:0 a.m.3 views

Tiki Cross-Site Scripting Vulnerability (CNVD-2020-44400)

Tiki is a suite of open source content management and portal applications from the Tiki community that can be used to create web applications, portals, corporate intranets, extranets, and more. A cross-site scripting vulnerability exists in versions prior to Tiki 21.2. The vulnerability stems fro...

6.1CVSS6.3AI score0.00685EPSS
Exploits0References1
Rows per page
Query Builder