Lucene search
K

544 matches found

NCSC
NCSC
added 2025/11/04 3:3 p.m.18 views

Vulnerabilities fixed in Google Android and Samsung Mobile

Google has fixed vulnerabilities in Android. Samsung has fixed vulnerabilities in Samsung Mobile The vulnerabilities include an out-of-bounds write and read, as well as a vulnerability in USB connection mode that allows local attackers to gain unauthorized access to user data. These vulnerabiliti...

8CVSS7.2AI score0.00911EPSS
Exploits8References2
NCSC
NCSC
added 2025/10/23 1:35 p.m.9 views

Vulnerabilities fixed in Oracle Financial Services

Oracle has fixed vulnerabilities in Oracle Financial Services components. The vulnerabilities allow unauthenticated attackers to gain unauthorized access to sensitive data over HTTP. This can lead to unauthorized access and modification of critical data, with a CVSS score of 9.8 highlighting the...

9.8CVSS7.2AI score0.73495EPSS
Exploits9References1
NCSC
NCSC
added 2025/10/23 1:20 p.m.14 views

Vulnerabilities fixed in Oracle Communications products

Oracle has fixed several vulnerabilities in its Communications products, including Unified Assurance and Cloud Native Core. The vulnerabilities in Oracle Communications products allow malicious actors to gain unauthorized access, which can lead to partial or full Denial-of-Service DoS attacks...

9.8CVSS6.4AI score0.8496EPSS
Exploits39References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2025/10/22 4:54 a.m.5 views

Multiple stored cross-site scripting vulnerabilities in Movable Type

Overview Movable Type provided by Six Apart Ltd. contains multiple stored cross-site scripting vulnerabilities listed below. Stored cross-site scripting vulnerability in Edit ContentData page CWE-79 - CVE-2025-54856 Stored cross-site scripting vulnerability in Edit CategorySet of ContentType page...

4.8CVSS6.1AI score0.0021EPSS
Exploits0References6
NCSC
NCSC
added 2025/10/20 12:59 p.m.4 views

Vulnerabilities fixed in Mozilla Firefox and Thunderbird

Mozilla has fixed vulnerabilities in Firefox and Thunderbird Specifically for versions under 144. The vulnerabilities include several problems, including a use-after-free issue, memory security flaws and the ability for a malicious person to access sensitive data or execute arbitrary code. These...

9.8CVSS7.5AI score0.00465EPSS
Exploits0References5
NCSC
NCSC
added 2025/10/17 10:44 a.m.11 views

Vulnerabilities fixed in Adobe Experience Manager

Adobe has fixed vulnerabilities in Adobe Experience Manager versions 6.5.23 and earlier. The vulnerabilities are in the configuration of Adobe Experience Manager, which allows attackers to execute arbitrary code without any user interaction. This can lead to unauthorized access and control of...

10CVSS8AI score0.89824EPSS
Exploits7References1
NCSC
NCSC
added 2025/10/17 8:42 a.m.10 views

Vulnerability fixed in FortiOS

Fortinet has fixed a vulnerability in FortiOS multiple versions. The vulnerability is in the way FortiOS handles memory allocation. Authenticated users can exploit this vulnerability by sending specially crafted requests, which can lead to the execution of unauthorized code. This can have serious...

8.8CVSS6.9AI score0.00621EPSS
Exploits0References1
NCSC
NCSC
added 2025/10/17 8:4 a.m.7 views

Vulnerabilities fixed in SAP Products

SAP has fixed vulnerabilities in several SAP products. The vulnerabilities include a deserialization vulnerability that allows unauthenticated attackers to execute arbitrary OS commands, and a CSRF vulnerability that allows authenticated attackers to bypass critical authorization controls. In...

10CVSS7.8AI score0.02882EPSS
Exploits1
NCSC
NCSC
added 2025/10/16 6:32 a.m.10 views

Vulnerabilities fixed in Adobe Commerce

Adobe has fixed vulnerabilities in Adobe Commerce Specifically for versions 2.4.9-alpha2 and earlier. The vulnerabilities include improper authorization that allows low-privileged attackers to bypass security measures, which can lead to unauthorized access to sensitive data without user...

8.1CVSS5.8AI score0.00551EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-21260

Malware in sbrugna...

9CVSS7AI score0.03024EPSS
Exploits0References2
NCSC
NCSC
added 2025/09/30 8:29 a.m.7 views

Vulnerabilities fixed in VMware NSX

VMware fixed vulnerabilities in VMware NSX The vulnerabilities in VMware NSX include a weak password recovery mechanism that allows unauthenticated attackers to enumerate valid usernames, which can result in potential brute-force attacks on login credentials. Additionally, there is a username...

8.5CVSS7AI score0.01022EPSS
Exploits0References1
NCSC
NCSC
added 2025/09/04 8:15 a.m.25 views

Vulnerabilities fixed in Google Android and Samsung Mobile

Google has fixed vulnerabilities in Android. Samsung has fixed vulnerabilities relevant to Samsung Mobile in Samsung Mobile. The vulnerabilities in the Android kernel include a race condition between functions that manage CPU timers, which can lead to system instability. In addition,...

9.8CVSS7.8AI score0.01345EPSS
Exploits14References2
Cisco
Cisco
added 2025/08/27 4:0 p.m.7 views

Cisco UCS Manager Software Command Injection Vulnerabilities

Multiple vulnerabilities in the CLI and web-based management interface of Cisco UCS Manager Software could allow an authenticated attacker with administrative privileges to perform command injection attacks on an affected system and elevate privileges to root. For more information about these...

6.5CVSS7.4AI score0.01242EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.6 views

Cisco Nexus Dashboard Path Traversal Vulnerability

A vulnerability in the backup restore functionality of Cisco Nexus Dashboard could allow an authenticated, remote attacker to conduct a path traversal attack on an affected device. This vulnerability is due to insufficient validation of the contents of a backup file. An attacker with valid...

6.5CVSS7.3AI score0.0055EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/27 4:0 p.m.28 views

Cisco Nexus 3000 and 9000 Series Switches Protocol Independent Multicast Version 6 Denial of Service Vulnerability

A vulnerability in the Protocol Independent Multicast Version 6 PIM6 feature of Cisco Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches in standalone NX-OS mode could allow an authenticated, low-privileged, remote attacker to trigger a crash of the PIM6 process, resulting in a denia...

5CVSS7.3AI score0.00324EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2025/08/27 12:0 a.m.3 views

SUSE: Security Advisory (SUSE-SU-2025:02985-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.9AI score0.004EPSS
Exploits1References4
Cisco
Cisco
added 2025/08/20 4:0 p.m.7 views

Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Sensitive Information Disclosure Vulnerability

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, low-privileged, remote attacker to retrieve arbitrary files from the underlying file system on an affected device. This vulnerabili...

6.5CVSS7.2AI score0.00386EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/20 4:0 p.m.7 views

Cisco Identity Services Engine Arbitrary File Upload Vulnerability

A vulnerability in the GUI of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker with administrative privileges to upload files to an affected device. This vulnerability is due to improper validation of the file copy function. An attacker could exploit this...

4.9CVSS7.2AI score0.0028EPSS
Exploits0References1
CVE
CVE
added 2025/08/15 6:40 p.m.29 views

CVE-2025-43490

Technical details about CVE-2025-43490 are not publicly provided in the supplied documents. The materials reference an escalation of privilege in HPAudioAnalytics within HP Hotkey Support and ongoing updates. Monitor for updates and patch releases from HP.

8.4CVSS7.5AI score0.0015EPSS
Exploits0References1
Cisco
Cisco
added 2025/08/14 4:0 p.m.9 views

Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Remote Access SSL VPN Denial of Service Vulnerabilities

Multiple vulnerabilities in the management and VPN web servers for Cisco Secure Firewall Adaptive Security Appliance ASA Software and Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause the device to stop responding or reload unexpectedly,...

8.6CVSS7.7AI score0.00701EPSS
Exploits0References1
Rows per page
Query Builder