Lucene search
K

5 matches found

OSV
OSV
added 2026/04/08 7:53 p.m.2 views

GHSA-HWR4-MQ23-WCV5 mercure has Topic Selector Cache Key Collision

Impact A cache key collision vulnerability in TopicSelectorStore allows an attacker to poison the match result cache, potentially causing private updates to be delivered to unauthorized subscribers or blocking delivery to authorized ones. The cache key was constructed by concatenating the topic...

7.1CVSS5.8AI score0.00341EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/31 12:0 a.m.6 views

PT-2025-54469

Name of the Vulnerable Software and Affected Versions RAGFlow versions prior to 0.22.0 Description RAGFlow is a Retrieval-Augmented Generation engine. Versions prior to 0.22.0 utilize an insecure key generation algorithm when creating API keys and beta tokens assistant/agent share auth. This allo...

9.8CVSS6.6AI score0.00492EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2024/02/11 3:54 a.m.10 views

SUSE CVE-2024-24819

icingaweb2-module-incubator is a working project of bleeding edge Icinga Web 2 libraries. In affected versions the class gipfl\Web\Form is the base for various concrete form implementations 1 and provides protection against cross site request forgery CSRF by default. This is done by automatically...

8.8CVSS6.7AI score0.0026EPSS
Exploits0References3
Snyk
Snyk
added 2022/08/03 2:0 p.m.1 views

Remote Code Execution (RCE)

Overview Affected versions of this package are vulnerable to Remote Code Execution RCE via the isDockerInstalled function, due to attempting to execute input. PoC: java public static void poc Path path = Paths.get"whoami"; DockerClient.isDockerInstalledpath; Remediation Upgrade...

9.8CVSS7.7AI score0.01293EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2021/10/29 12:0 a.m.4 views

PT-2022-11685 · Opensc +2 · Opensc +2

Name of the Vulnerable Software and Affected Versions: Opensc versions prior to 0.22.0 Description: A heap use after free issue was found in the sc file valid function. This issue can potentially be exploited, but no specific details about the estimated number of affected devices or real-world...

7.5CVSS5.7AI score0.02805EPSS
Exploits3References107
Rows per page
Query Builder