Lucene search
K

23 matches found

RedhatCVE
RedhatCVE
added 2026/05/11 8:26 p.m.10 views

CVE-2025-69599

RayVentory Scan Engine through 12.6 Update 8 allows attackers to gain privileges if they control the value of the PATH environment variable. NOTE: this is disputed because ability of an attacker to control the environment is a site-specific misconfiguration...

9.8CVSS5.8AI score0.00389EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.16 views

PT-2026-38671

Name of the Vulnerable Software and Affected Versions RayVentory Scan Engine versions prior to 12.6 Update 9 Description An issue exists where attackers can gain elevated privileges if they have control over the value of the PATH environment variable. This condition is noted as being dependent on...

5.8AI score0.00389EPSS
Exploits0References6
OSV
OSV
added 2025/11/28 8:20 a.m.3 views

SUSE-SU-2025:21115-1 Security update for kernel-livepatch-MICRO-6-0_Update_12

This update for kernel-livepatch-MICRO-6-0Update12 fixes the following issues: - CVE-2025-38616: tls: handle data disappearing from under the TLS ULP bsc1249537...

7.1CVSS5.8AI score0.00178EPSS
Exploits0References3
OSV
OSV
added 2025/10/15 3:2 p.m.3 views

SUSE-SU-2025:20850-1 Security update for kernel-livepatch-MICRO-6-0_Update_12

This update for kernel-livepatch-MICRO-6-0Update12 fixes the following issues: New livepatch SLE Micro 6.0/6.1 kernel update 12...

5.8AI score
Exploits0References1
OSV
OSV
added 2025/09/23 9:51 a.m.4 views

SUSE-SU-2025:20740-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_12

This update for kernel-livepatch-MICRO-6-0-RTUpdate12 fixes the following issues: - New livepatch SLE Micro 6.0/6.1 kernel rt update 12...

5.8AI score
Exploits0References1
OSV
OSV
added 2025/09/23 9:51 a.m.9 views

SUSE-SU-2025:20793-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_12

This update for kernel-livepatch-MICRO-6-0-RTUpdate12 fixes the following issues: - New livepatch SLE Micro 6.0/6.1 kernel rt update 12...

5.8AI score
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/05/30 1:5 p.m.3 views

Security update for open-vm-tools

This update for open-vm-tools fixes the following issues: Update to 12.5.2: Security fixes: CVE-2025-22247: Fixed Insecure file handling bsc1243106 Other fixes: Fixed GCC 15 compile time error bsc1241938 Fixed building with containerd 1.7.25+ bsc1237147 Full changelog:...

6.9CVSS7.3AI score0.00247EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/12/08 12:0 a.m.6 views

PT-2023-22017 · Ncp · Ncp Secure Enterprise Client

Name of the Vulnerable Software and Affected Versions: NCP Secure Enterprise Client versions prior to 12.22 Description: The issue allows attackers to delete arbitrary files on the operating system by creating a symbolic link. This is possible due to a flaw in the Support Assistant component of t...

8.1CVSS8AI score0.00852EPSS
Exploits1References5
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.7 views

Microsoft Exchange Server Security Vulnerability

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. The vulnerability is exploited by...

8CVSS6.6AI score0.392EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/09/12 12:0 a.m.5 views

PT-2023-5182 · Unknown · Qms Automotive

Name of the Vulnerable Software and Affected Versions: QMS Automotive versions prior to V12.39 Description: A vulnerability has been identified in QMS Automotive that allows an attacker to enumerate usernames and identify valid usernames due to the application returning inconsistent error message...

4CVSS3.9AI score0.00175EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.4 views

SUSE CVE-2009-1102

Unspecified vulnerability in the Virtual Machine in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allows remote attackers to access files and execute arbitrary code via unknown vectors related to "code generation."...

6.4CVSS7.7AI score0.04574EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/05/16 12:0 a.m.5 views

PT-2022-6992 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.6.6 macOS versions prior to 12.4 Description: The issue is related to the PackageKit component in macOS, which has insufficient access controls. Exploitation of this issue may allow an attacker to execute arbitrary...

7.8CVSS7.5AI score0.00941EPSS
Exploits0References22
Microsoft KB
Microsoft KB
added 2020/10/20 12:0 a.m.10 views

KB3152637 - Cumulative Update 12 for SQL Server 2012 SP2

KB3152637 - Cumulative Update 12 for SQL Server 2012 SP2 This article describes cumulative update package 12 Build number: 11.0.5649.0 for Microsoft SQL Server 2012 Service Pack 2 SP2. This update contains fixes that were released after the release of SQL Server 2012 SP2. Notes Cumulative updates...

5.8AI score
Exploits0
RedHat Linux
RedHat Linux
added 2019/09/11 3:15 p.m.6 views

OpenJDK: Insufficient restriction of privileges in AccessController (Security, 8216381)

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multip...

3.4CVSS7.3AI score0.02613EPSS
Exploits0References4
OSV
OSV
added 2019/04/23 7:32 p.m.1 views

DEBIAN-CVE-2019-2602

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE subcomponent: Libraries. Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via...

7.5CVSS8AI score0.0441EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/13 12:0 a.m.5 views

Adobe ColdFusion APSB17-30 Remote Command Execution Vulnerability (CNVD-2017-30530)

Adobe ColdFusion is the United States of America Audobee Adobe a dynamic Web server products, which runs the CFML ColdFusion Markup Language is a programming language for Web applications. A security vulnerability exists in Adobe ColdFusion 2016 release Update 4 and earlier and ColdFusion 11 Upda...

9.8CVSS9.6AI score0.42721EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2009/08/06 9:27 p.m.4 views

OpenJDK: PNG and GIF processing buffer overflow vulnerabilities (6804996, 6804997)

Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...

9.3CVSS6.7AI score0.07089EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/05/18 8:28 p.m.5 views

OpenJDK: DoS (disk consumption) via handling of temporary font files

Multiple unspecified vulnerabilities in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allow remote attackers to cause a denial of service disk consumption via vectors related to temporary font files and 1 "limits on Font...

5CVSS6.2AI score0.03584EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/05/18 8:28 p.m.8 views

OpenJDK Pack200 Buffer overflow vulnerability (6792554)

Integer overflow in unpack200 in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier, and 6 Update 12 and earlier, allows remote attackers to access files or execute arbitrary code via a JAR file with crafted Pack200 headers...

10CVSS6.5AI score0.07099EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2009/03/26 4:3 p.m.5 views

OpenJDK JAX-WS service endpoint remote Denial-of-Service (6630639)

Unspecified vulnerability in the lightweight HTTP server implementation in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allows remote attackers to cause a denial of service probably resource consumption for a JAX-WS service endpoint via a connection without...

5CVSS6.1AI score0.03584EPSS
Exploits0References4
Rows per page
Query Builder