Lucene search
K

212 matches found

Chainguard
Chainguard
added 2025/08/23 2:16 p.m.7 views

GHSA-3G8V-2W9J-WWCX vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-26-openj9, openjdk-25-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/08/23 2:16 p.m.8 views

GHSA-W522-FX29-439V vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-26-openj9, openjdk-25-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2025/08/23 2:16 p.m.5 views

CVE-2011-3557 vulnerabilities

Vulnerabilities for packages: openjdk-17-openj9, openjdk-26-openj9, openjdk-25-openj9, openjdk-11-openj9, openjdk-21-openj9, openjdk-8-openj9...

6.8CVSS7AI score0.03477EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-6023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana...

7.6CVSS7.5AI score0.37565EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/07 8:31 p.m.5 views

CVE-2012-10024

XBMC version 11.0 contains a path traversal vulnerability in its embedded HTTP server. When accessed via HTTP Basic Authentication, the server fails to properly sanitize URI input, allowing authenticated users to request files outside the intended document root. An attacker can exploit this flaw ...

7.1CVSS5.9AI score0.00851EPSS
Exploits0References1
NVD
NVD
added 2025/08/05 8:15 p.m.6 views

CVE-2012-10024

XBMC version 11.0 contains a path traversal vulnerability in its embedded HTTP server. When accessed via HTTP Basic Authentication, the server fails to properly sanitize URI input, allowing authenticated users to request files outside the intended document root. An attacker can exploit this flaw ...

7.1CVSS0.00851EPSS
Exploits0References5
CVE
CVE
added 2025/08/05 8:7 p.m.14 views

CVE-2012-10024

CVE-2012-10024 affects XBMC 11 and earlier builds up to 2012-11-04 nightly, where the embedded HTTP server is vulnerable to path traversal due to improper URI input sanitization when accessed with HTTP Basic Authentication. An authenticated attacker can request files outside the document root, po...

7.1CVSS5.9AI score0.00851EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/08/05 12:0 a.m.7 views

PT-2025-31976

Name of the Vulnerable Software and Affected Versions XBMC versions prior to the 2012-11-04 nightly release XBMC version 11 Description XBMC version 11, including builds up to the 2012-11-04 nightly release, contains a path traversal vulnerability in its embedded HTTP server. When accessed via HT...

7.1CVSS5.9AI score0.00851EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/06/09 12:0 a.m.11 views

PT-2025-24428 · Tcman · Tcman'S Gim

Name of the Vulnerable Software and Affected Versions: TCMAN's GIM version 11 Description: The issue is related to an incorrect authorization vulnerability. This vulnerability allows an attacker with a low privilege level to change the password of other users through a POST request using the...

7.1CVSS6.4AI score0.00233EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.9 views

PT-2025-22898 · Tcman · Tcman'S Gim

Name of the Vulnerable Software and Affected Versions: TCMAN's GIM version 11 Description: The issue concerns time-based blind SQL injection vulnerabilities. These vulnerabilities allow an attacker to retrieve, create, update, and delete databases through the ArbolID parameter in the...

8.7CVSS7.3AI score0.00315EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.9 views

PT-2025-22900 · Tcman · Tcman'S Gim

Name of the Vulnerable Software and Affected Versions: TCMAN's GIM version 11 Description: A missing authorization vulnerability in TCMAN's GIM allows an authenticated attacker to access any functionality of the application, even when they are not available through the user interface. To exploit...

8.7CVSS6.2AI score0.00228EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/05/26 12:0 a.m.8 views

PT-2025-22897 · Tcman Gim · Tcman Gim

Name of the Vulnerable Software and Affected Versions: TCMAN GIM version 11 Description: A missing authentication vulnerability in TCMAN GIM version 11 allows an unauthenticated attacker to access resources such as /frmGestionUser.aspx/GetData, /frmGestionUser.aspx/updateUser, and...

9.3CVSS6.5AI score0.00486EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/23 7:13 a.m.9 views

CVE-2024-53552

CrushFTP 10 before 10.8.3 and 11 before 11.2.3 mishandles password reset, leading to account takeover...

9.8CVSS7.2AI score0.00706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:18 p.m.6 views

CVE-2022-20145

In startLegacyVpnPrivileged of Vpn.java, there is a possible way to retrieve VPN credentials due to a protocol downgrade attack. This could lead to remote escalation of privilege if a malicious Wi-Fi AP is used, with no additional execution privileges needed. User interaction is not needed for...

10CVSS7.4AI score0.06453EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:2 p.m.9 views

CVE-2021-1103

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11.5 and version 8.x prior 8.8...

4.4CVSS6.7AI score0.00293EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:2 p.m.10 views

CVE-2021-1084

NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager vGPU plugin, in which an input length is not validated, which may lead to information disclosure, tampering of data or denial of service. This affects vGPU version 12.x prior to 12.2 and version 11...

7.8CVSS6.6AI score0.0025EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:0 p.m.9 views

CVE-2021-0542

In updateNotification of BeamTransferManager.java, there is a missing permission check. This could lead to local information disclosure of paired Bluetooth addresses with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

5.5CVSS6.2AI score0.00115EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:43 p.m.10 views

CVE-2021-39677

In startVideoStream there is a possibility of an OOB Read in the heap, when the camera buffer is ‘zero’ in size.Product: AndroidVersions: Android-11Android ID: A-205097028...

7.5CVSS7AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:42 p.m.6 views

CVE-2021-39676

In writeThrowable of AndroidFuture.java, there is a possible parcel serialization/deserialization mismatch due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product:...

7.8CVSS7.7AI score0.00123EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:12 p.m.7 views

CVE-2021-1101

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11.5 and version 8.x prior 8.8...

5.5CVSS6.7AI score0.00287EPSS
Exploits0References1
Rows per page
Query Builder