Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3037 matches found

RedhatCVE
RedhatCVEadded 2025/11/12 6:59 a.m.8 views

CVE-2025-5718

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS7AI score0.00303EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/11/12 6:59 a.m.8 views

CVE-2025-6298

ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim ...

6.7CVSS7AI score0.00119EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/11/12 6:59 a.m.5 views

CVE-2025-4645

An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a...

6.7CVSS7.7AI score0.00129EPSS
Exploits0References1
Tenable Nessus
Tenable Nessusadded 2025/11/12 12:0 a.m.1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990755)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990755 advisory. In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAPTOMASK Shifting signed 32-bit value by 3...

7.1CVSS6AI score0.00185EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2025/11/11 7:57 p.m.5 views

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS5.9AI score0.00255EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/11/11 3:10 p.m.3 views

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS5.9AI score0.00255EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/11/11 3:9 p.m.3 views

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS5.9AI score0.00255EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/11/11 3:7 p.m.4 views

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS5.9AI score0.00255EPSS
Exploits0References5
EUVD
EUVDadded 2025/11/11 9:30 a.m.6 views

EUVD-2025-74040

An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces th...

6.7CVSS7AI score0.00973EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.3 views

EUVD-2025-74042

A malicious ACAP application can gain access to admin-level service account credentials used by legitimate ACAP applications, leading to potential privilege escalation of the malicious ACAP application. This vulnerability can only be exploited if the Axis device is configured to allow the...

6.6CVSS6.7AI score0.00256EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.5 views

EUVD-2025-74044

The ACAP Application framework could allow privilege escalation through a symlink attack. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a malicious ACAP...

6.8CVSS6.5AI score0.00303EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.3 views

EUVD-2025-74039

An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the...

6.7CVSS6.4AI score0.00113EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.3 views

EUVD-2025-74043

ACAP applications can gain elevated privileges due to improper input validation, potentially leading to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim ...

6.7CVSS6.5AI score0.00119EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.4 views

EUVD-2025-74045

An ACAP configuration file lacked sufficient input validation, which could allow a path traversal attack leading to potential privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker...

6.4CVSS6.3AI score0.00134EPSS
Exploits0References2
EUVD
EUVDadded 2025/11/11 9:30 a.m.2 views

EUVD-2025-74046

An ACAP configuration file lacked sufficient input validation, which could allow for arbitrary code execution. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the victim to install a...

6.7CVSS7.2AI score0.00129EPSS
Exploits0References2
RedHat Linux
RedHat Linuxadded 2025/11/11 8:21 a.m.6 views

kernel: block: fix adding folio to bio

In the Linux kernel, the following vulnerability has been resolved: block: fix adding folio to bio 4GB folio is possible on some ARCHs, such as aarch64, 16GB hugepage is supported, then 'offset' of folio can't be held in 'unsigned int', cause warning in bioaddfolionofail and IO failure. Fix it by...

5.5CVSS5.7AI score0.00152EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/11/11 8:21 a.m.2 views

kernel: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read

In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read The nvmem interface supports variable buffer sizes, while the regmap interface operates with fixed-size storage. If an nvmem client uses a buffer size less than 4 byte...

7.8CVSS6.9AI score0.00203EPSS
Exploits0References5
OSV
OSVadded 2025/11/11 7:15 a.m.5 views

CVE-2025-8108

An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the...

6.7CVSS5.8AI score0.00113EPSS
Exploits0References1
NVD
NVDadded 2025/11/11 7:15 a.m.5 views

CVE-2025-8108

An ACAP configuration file has improper permissions and lacks input validation, which could potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces the...

6.7CVSS0.00113EPSS
Exploits0References1
OSV
OSVadded 2025/11/11 7:15 a.m.3 views

CVE-2025-6779

An ACAP configuration file has improper permissions, which could allow command injection and potentially lead to privilege escalation. This vulnerability can only be exploited if the Axis device is configured to allow the installation of unsigned ACAP applications, and if an attacker convinces th...

6.7CVSS5.8AI score0.00973EPSS
Exploits0References1
Rows per page
Query Builder