Lucene search
K

5 matches found

Github Security Blog
Github Security Blog
added 2026/04/03 3:44 a.m.8 views

D-Tale: Remote Code Execution through redis/shelf storage

Impact Users hosting D-Tale publicly while using a redis or shelf storage layer could be vulnerable to remote code execution allowing attackers to run malicious code on the server. Patches Users should upgrade to version 3.22.0. Workarounds There are no workarounds for versions 3.22.0...

9.8CVSS6.5AI score0.00622EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-7041

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw where the audin server recv formats function incorrectly calculates the number of audio formats to free upon parse failure...

9.8CVSS5.4AI score0.0195EPSS
Exploits4References208
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.5 views

PT-2025-5571 · Snowflake · Snowflake Jdbc Driver

Name of the Vulnerable Software and Affected Versions: Snowflake JDBC Driver versions 3.6.8 through 3.21.0 Description: The Snowflake JDBC Driver has a vulnerability that affects Linux systems when temporary credential caching is enabled. In this scenario, the driver caches temporary credentials...

4.4CVSS7.8AI score0.00188EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/01/29 12:0 a.m.4 views

PT-2025-5570 · Snowflake · Snowflake Jdbc Driver

Name of the Vulnerable Software and Affected Versions: Snowflake JDBC Driver versions 3.2.3 through 3.21.0 Description: The issue allows an attacker with write access to a directory in the %PATH% to escalate their privileges to the user that runs the vulnerable JDBC Driver version when the...

7.8CVSS7.9AI score0.00252EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2023/10/04 12:0 a.m.4 views

PT-2023-28595 · Oracle · Java

Name of the Vulnerable Software and Affected Versions: Redisson versions prior to 3.22.0 Description: The issue concerns a Java Redis client that uses the Netty framework. Prior to version 3.22.0, some messages received from the Redis server contain Java objects that the client deserializes witho...

9.6CVSS8.2AI score0.01036EPSS
Exploits1References8
Rows per page
Query Builder