Lucene search
K

9 matches found

CVE
CVE
added 2026/01/10 5:37 a.m.20 views

CVE-2026-22611

The CVE-2026-22611 issue affects the AWS SDK for .NET (versions 4.0.0 through 4.0.3.2) where the region input field could be set to an invalid value, causing AWS API calls to be routed to non-existent or non‑AWS hosts. A defense‑in‑depth enhancement was added in v4, validating that the region for...

3.7CVSS6.4AI score0.00201EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:32 a.m.7 views

CVE-2024-40740

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/power-feeds/id/edit/...

7.1CVSS5.9AI score0.00398EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:44 a.m.21 views

CVE-2024-40731

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/rear-ports/id/edit/...

6.1CVSS5.9AI score0.00353EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:44 a.m.10 views

CVE-2024-40728

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/id/edit/...

7.1CVSS5.9AI score0.00353EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:44 a.m.14 views

CVE-2024-40742

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the circuit ID parameter at /circuits/circuits/add...

6.1CVSS5.9AI score0.00451EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:43 a.m.7 views

CVE-2024-40727

A cross-site scripting XSS vulnerability in netbox v4.0.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Name parameter at /dcim/console-server-ports/add/...

6.1CVSS5.9AI score0.00353EPSS
Exploits1References1
OSV
OSV
added 2022/05/18 3:15 p.m.3 views

DEBIAN-CVE-2021-27548

There is a Null Pointer Dereference vulnerability in the XFAScanner::scanNode function in XFAScanner.cc in xpdf 4.03...

5.5CVSS5.6AI score0.00712EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/01/15 12:0 a.m.5 views

PT-2021-14356

Name of the Vulnerable Software and Affected Versions: OneDev versions prior to 4.0.3 Description: OneDev is an all-in-one devops platform. The REST UserResource endpoint performs a security check to ensure only administrators can list user details. However, the /users/id endpoint lacks security...

8.6CVSS5.7AI score0.49051EPSS
Exploits0References7
OSV
OSV
added 2017/06/26 3:29 p.m.5 views

ALPINE-CVE-2014-8127

LibTIFF 4.0.3 allows remote attackers to cause a denial of service out-of-bounds read and crash via a crafted TIFF image to the 1 checkInkNamesString function in tifdir.c in the thumbnail tool, 2 compresscontig function in tiff2bw.c in the tiff2bw tool, 3 putcontig8bitCIELab function in...

6.5CVSS6.7AI score0.05669EPSS
Exploits0References1
Rows per page
Query Builder