Lucene search
K

306 matches found

cve
cve
added 2025/10/06 6:50 a.m.16 views

CVE-2025-58582

CVE-2025-58582 affects SICK Enterprise Analytics and SICK Logistic Analytics. The issue stems from logging POST login data without validation, allowing unusually large payloads to be recorded. This can lead to uncontrolled resource consumption and potential impact on availability, as indicated by...

7.5CVSS6.5AI score0.00516EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2025/10/06 6:50 a.m.5 views

EUVD-2025-32497

If a user tries to login but the provided credentials are incorrect a log is created. The data for this POST requests is not validated and it’s possible to send giant payloads which are then logged...

5.3CVSS6.3AI score0.00516EPSS
Exploits0References7
vulnrichment
vulnrichment
added 2025/10/06 6:50 a.m.2 views

CVE-2025-58582 Uncontrolled Resource Consumption via log file

If a user tries to login but the provided credentials are incorrect a log is created. The data for this POST requests is not validated and it’s possible to send giant payloads which are then logged...

5.3CVSS6.5AI score0.00516EPSS
Exploits0References6
cnnvd
cnnvd
added 2025/10/04 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from unvalidated dataoffset, datalength, and maintainingdatalength, which could lead to insufficient data validation...

8.5AI score0.0012EPSS
Exploits0References3
cnnvd
cnnvd
added 2025/10/04 12:0 a.m.7 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unvalidated dataoffset and datalength fields of the smbdirectdatatransfer structure, which could lead to...

8AI score0.0014EPSS
Exploits0References7
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-29988

Malicious code in bioql PyPI...

7.5CVSS7.6AI score0.00734EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.14 views

EUVD-2025-8129

Malicious code in bioql PyPI...

5.3CVSS9AI score0.00276EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-27495

Malicious code in bioql PyPI...

5.3CVSS6.5AI score0.00399EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-17646

Malicious code in bioql PyPI...

5.4CVSS6.4AI score0.00252EPSS
Exploits0References2
cnvd
cnvd
added 2025/09/19 12:0 a.m.2 views

Ashlar-Vellum Cobalt Type Obfuscation Vulnerability (NVD-C-2025-543225)

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from a type confusion vulnerabili...

7.8CVSS7.7AI score0.00189EPSS
Exploits0References1
cnvd
cnvd
added 2025/09/19 12:0 a.m.6 views

Ashlar-Vellum Cobalt Out-of-Bounds Read Vulnerability (CNVD-2025-22914)

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

7.8CVSS7.4AI score0.00189EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/18 12:0 a.m.5 views

PT-2025-38342

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ismt access function related to insufficient bounds checking. Specifically, the driver does not validate data received from user space,...

6.3AI score0.00152EPSS
Exploits0References11
cnnvd
cnnvd
added 2025/09/17 12:0 a.m.6 views

Ashlar-Vellum Cobalt 安全漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A security vulnerability exists in Ashlar-Vellum Cobalt that stems from a lack of validation of user-supplied data when parsing a CO file, which could lead to type confusion that could resu...

7.8CVSS7.7AI score0.00189EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/09/09 12:0 a.m.5 views

PT-2025-36977

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software contains a Cross-site Scripting XSS vulnerability. This issue could allow an attacker to inject unvalidated data, potentially leading to...

5.3CVSS5.6AI score0.00399EPSS
Exploits0References5
nessus
nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-26955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the xcb crate through 2021-02-04 for Rust. It has a soundness violation because xcb::xproto::GetAtomNameReply::name calls...

9.8CVSS8.2AI score0.01728EPSS
Exploits1References2
github
github
added 2025/08/21 6:31 p.m.8 views

Mattermost has Potential Server Crash due to Unvalidated Import Data

Mattermost versions 10.8.x = 10.8.3, 10.5.x = 10.5.8, 9.11.x = 9.11.17, 10.10.x = 10.10.0, 10.9.x = 10.9.3 fail to validate import data which allows a system admin to crash the server via the bulk import feature...

4.9CVSS7AI score0.00299EPSS
Exploits0References4Affected Software4
cnnvd
cnnvd
added 2025/08/21 12:0 a.m.5 views

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. A security vulnerability exists in Mattermost versions 10.8.3 and prior to 10.8.x, 10.5.8 and prior to 10.5.x, 9.11.17 and prior to 9.11.x, 10.10.0 and prior to 10.10.x, and 10.9.3 and prior to 10.9.x,...

4.9CVSS6.3AI score0.00299EPSS
Exploits0References2
veracode
veracode
added 2025/08/18 8:34 a.m.5 views

Denial Of Service (DoS)

OpenEXR is vulnerable to denial of service DoS. The vulnerability is due to improper input validation due to trusting unvalidated dataWindow size values from file headers, leading to excessive memory allocation and performance degradation...

5.5CVSS5.9AI score0.00259EPSS
Exploits1References4Affected Software1
cnvd
cnvd
added 2025/07/25 12:0 a.m.2 views

IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-17024)

IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user-supplied data when parsing DWG files, which can be exploited by an attacker to execute code in the context of the current...

7.8CVSS7.8AI score0.0022EPSS
Exploits0References1
cnvd
cnvd
added 2025/07/24 12:0 a.m.4 views

IrfanView CADImage Plugin Buffer Overflow Vulnerability (CNVD-2025-16826)

IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current process...

7.8CVSS7.7AI score0.0022EPSS
Exploits0References1
Rows per page
Query Builder