Lucene search
K

63 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.6 views

Ubuntu 25.10 / 26.04 LTS : Cyborg vulnerabilities (USN-8413-1)

The remote Ubuntu 25.10 / 26.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8413-1 advisory. It was discovered that Cyborg did not properly enforce project ownership in the Accelerator Request ARQ API. An authenticated user could possibly...

7.4CVSS5.9AI score0.00206EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.6 views

Ubuntu 25.10 / 26.04 LTS : libjxl vulnerability (USN-8397-1)

The remote Ubuntu 25.10 / 26.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-8397-1 advisory. It was discovered that libjxl did not properly handle certain crafted PBM images. An attacker could possibly use this issue to cause libjxl to crash,...

7.3CVSS5.8AI score0.00367EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.9 views

Microsoft Windows Hotpatch Monitoring Service 缓冲区错误漏洞

Microsoft Windows is an operating system used on personal devices by the American company Microsoft. The Microsoft Windows Hotpatch Monitoring Service has a buffer error vulnerability. The following products and versions are affected: Windows Server 2025 Server Core installation, Windows 11 Versi...

7.8CVSS6AI score0.00286EPSS
Exploits0References1
Chainguard
Chainguard
added 2026/06/05 7:18 p.m.10 views

CVE-2008-5341 vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-25-openj9, openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-21-openj9...

5CVSS7.1AI score0.03013EPSS
Exploits1
Chainguard
Chainguard
added 2026/06/05 7:18 p.m.8 views

CVE-2007-3716 vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-25-openj9, openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-21-openj9...

9.3CVSS7.3AI score0.03554EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/05 7:18 p.m.9 views

CVE-2026-22018 vulnerabilities

Vulnerabilities for packages: openjdk, openjdk-17-openj9, openjdk-25-openj9, openjdk-26-openj9, openjdk-11-openj9, openjdk-8-openj9, openjdk-21-openj9...

3.7CVSS6.4AI score0.00269EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.10 views

Microsoft Windows TCP/IP 代码问题漏洞

Microsoft Windows TCP/IP is a component provided by Microsoft Corporation that offers TCP/IP configuration functions for Windows. There are code-related vulnerabilities in Microsoft Windows TCP/IP. Attackers can exploit these vulnerabilities to cause system denial-of-service attacks. The followin...

7.5CVSS5.8AI score0.01078EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/05/12 12:0 a.m.9 views

Microsoft Windows Kernel 安全漏洞

The Microsoft Windows Kernel is the kernel of the Windows operating system developed by Microsoft Corporation. There are security vulnerabilities in the Microsoft Windows Kernel. Attackers can exploit these vulnerabilities to gain higher privileges. The following products and versions are affecte...

7.8CVSS5.8AI score0.04725EPSS
Exploits4References2
OSV
OSV
added 2026/04/28 8:16 a.m.1 views

UBUNTU-CVE-2026-41526

In KDE KCoreAddons before 6.25, KShell::quoteArgs is intended to safely quote arguments so that they can be passed to a shell command. This parsing does not adequately handle metacharacters, leading to an escape from the shell. All applications relying on this method in a security-critical path t...

7.8CVSS5.8AI score0.0017EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/31 11:35 a.m.2 views

CVE-2025-14213 Cato's Socket WebUI is vulnerable to OS Command Injection

Cato Networks’ Socket versions prior to 25 contain a command injection vulnerability that allows an authenticated attacker with access to the Socket web interface UI to execute arbitrary operating system commands as the root user on the Socket’s internal system...

8.3CVSS6.2AI score0.00976EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.2 views

SUSE SLES15 / openSUSE 15 Security Update : helm (SUSE-SU-2026:0948-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0948-1 advisory. This update for helm rebuilds it against the current go 1.25 security release. Tenable has extracted the preceding description...

5.9AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/24 12:0 a.m.5 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : runc (SUSE-SU-2026:0949-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0949-1 advisory. This update for runc rebuilds it against the current go 1.25 security release. Tenable has extracted the...

5.9AI score
Exploits0References1
OSV
OSV
added 2026/03/20 6:10 p.m.7 views

SUSE-SU-2026:0950-1 Security update for docker

This update for docker rebuilds it against the current go 1.25 security release...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.8 views

WWBN AVideo 跨站脚本漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 25.0 contained a cross-site scripting vulnerability. This vulnerability occurred because user inputs were passed directly to JavaScript without being escaped, allowing them...

6.1CVSS5.6AI score0.00317EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.7 views

WWBN AVideo 安全漏洞

WWBN AVideo is a video platform building system written in PHP, developed by the WWBN team. Versions of WWBN AVideo prior to 25.0 contained security vulnerabilities. These vulnerabilities stemmed from the install/checkConfiguration.php endpoint, which allowed unverified attackers to complete...

8.1CVSS5.8AI score0.00489EPSS
Exploits1References2
NVD
NVD
added 2026/03/13 7:55 p.m.10 views

CVE-2026-3873

Use of Hard-coded Credentials vulnerability in Avantra allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Avantra: before 25.3.0...

7.2CVSS0.00207EPSS
Exploits0References1
NVD
NVD
added 2026/03/06 9:16 p.m.3 views

CVE-2026-29795

stellar-xdr is a library and CLI containing types and functionality for working with Stellar XDR. Prior to version 25.0.1, StringM::fromstr does not validate that the input length is within the declared maximum MAX. Calling StringM::::fromstrs where s is longer than N bytes succeeds and returns a...

7.5CVSS0.00193EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/19 5:55 p.m.2 views

CVE-2026-2409

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Delinea Cloud Suite allows Argument Injection.This issue affects Cloud Suite: before 25.2 HF1...

9.3CVSS5.8AI score0.00211EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.4 views

Ubuntu 25.10 : Pillow vulnerability (USN-8047-1)

The remote Ubuntu 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-8047-1 advisory. Yarden Porat discovered that Pillow incorrectly handled certain malformed PSD images. An attacker could use this issue to cause Pillow to crash, resulting in a denial...

8.6CVSS5.7AI score0.00367EPSS
Exploits1References2
CVE
CVE
added 2026/02/10 5:52 p.m.17 views

CVE-2026-21325

CVE-2026-21325 affects After Effects versions 25.6 and earlier. It is an out-of-bounds read vulnerability triggered while parsing a crafted file, potentially allowing code execution in the context of the current user. Exploitation requires user interaction: the victim must open a malicious file. ...

7.8CVSS5.8AI score0.00211EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder