27 matches found
CVE-2024-2105
An unauthorised attacker within bluetooth range may use an improper validation during the BLE connection request to deadlock the affected devices...
EUVD-2020-29949
Malware in sbrugna...
EUVD-2018-14772
Malware in sbrugna...
EUVD-2020-22420
Malware in sbrugna...
EUVD-2025-17745
Malicious code in bioql PyPI...
Windows BitLocker Security Feature Bypass Vulnerability
Acceptance of extraneous untrusted data with trusted data in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack...
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...
CVE-2025-47164
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-33050
Protection mechanism failure in Windows DHCP Server allows an unauthorized attacker to deny service over a network...
CVE-2022-21519
Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 8.0.29 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Cluster. Successful...
CVE-2019-3926
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.100.3.2.14.1. A remote, unauthenticated attacker can use this vulnerability to execute operating system commands as root...
CVE-2025-29967
Heap-based buffer overflow in Remote Desktop Gateway Service allows an unauthorized attacker to execute code over a network...
CVE-2025-29955
Improper input validation in Windows Hyper-V allows an unauthorized attacker to deny service locally...
Windows Deployment Services Denial of Service Vulnerability
Uncontrolled resource consumption in Windows Deployment Services allows an unauthorized attacker to deny service locally...
CVE-2025-30010 Multiple vulnerabilities in SAP Supplier Relationship Management (Live Auction Cockpit)
The Live Auction Cockpit in SAP Supplier Relationship Management SRM uses a deprecated java applet component within the affected SRM packages which allows an unauthenticated attacker to craft a malicious link, which when clicked by a victim, redirects the browser to a malicious site. On successfu...
CVE-2025-21580
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...
CVE-2025-27473
Uncontrolled resource consumption in Windows HTTP.sys allows an unauthorized attacker to deny service over a network...
CVE-2025-26682
Allocation of resources without limits or throttling in ASP.NET Core allows an unauthorized attacker to deny service over a network...
Windows Lightweight Directory Access Protocol (LDAP) Remote Code Execution Vulnerability
Use after free in Windows LDAP - Lightweight Directory Access Protocol allows an unauthorized attacker to execute code over a network...
CVE-2025-26643
CVE-2025-26643 affects Microsoft Edge (Chromium-based). Description: a spoofing vulnerability where the UI performs the wrong action, enabling a network-based spoofing possibility. CVSS v3.1 base score 5.4 (MEDIUM), vector AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N, with user interaction required and ne...