Lucene search
K

718 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/04 12:47 a.m.3 views

CVE-2026-7372

A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger this vulnerability. Stack-overflow via...

9CVSS6.5AI score0.00463EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/05/04 12:47 a.m.52 views

CVE-2026-7372 GeoVision GV-VMS V20 WebCam Server Login stack overflow vulnerability

A stack overflow vulnerability exists in the WebCam Server Login functionality of GeoVision GV-VMS V20 20.0.2. A specially crafted HTTP request can lead to an arbitrary code execution. An attacker can make an unauthenticated HTTP request to trigger this vulnerability. Stack-overflow via...

9CVSS0.00463EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/04 12:47 a.m.3 views

CVE-2026-42369

GV-VMS V20 is a Video Monitoring Software used to gather the feeds of many surveillance cameras and manage other security devices. It is a native application accessed locally, but it is also possible to enable remote access via the "WebCam Server" feature. Once enabled, it is possible to access t...

10CVSS6.2AI score0.00514EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.9 views

GeoVision GV-VMS 缓冲区错误漏洞

GeoVision GV-VMS is a video management system software developed by GeoVision Corporation in China. The version GV-VMS V20 20.0.2 contains a buffer error vulnerability. This vulnerability stems from a stack overflow issue in the WebCam Server login function, which may allow custom HTTP requests t...

9.8CVSS6.3AI score0.00534EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.10 views

GeoVision GV-VMS 缓冲区错误漏洞

GeoVision GV-VMS is a video management system software developed by GeoVision Corporation in China. The GeoVision GV-VMS V20 20.0.2 version contains a buffer error vulnerability. This vulnerability arises from the unbounded copying of base64-encoded strings in the WebCam Server function, leading ...

10CVSS6.5AI score0.00514EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.14 views

PT-2026-36741

Name of the Vulnerable Software and Affected Versions GeoVision GV-VMS V20 version 20.0.2 Description A stack overflow exists in the WebCam Server Login functionality. An unauthenticated attacker can send a specially crafted HTTP request to trigger the issue, potentially leading to arbitrary code...

9CVSS6.4AI score0.00463EPSS
Exploits0References10
OSV
OSV
added 2026/04/24 8:29 p.m.8 views

CLSA-2026-1777059908 binutils: Fix of 4 CVEs

CVE-2022-47673: fix out-of-bounds reads in parsemodule bfd/vms-alpha.c, combined backport of upstream commits c9178f28, 942fa4fb, 77c225bd, 65cf035b and c093f5ee patch also covers CVE-2023-25584 - CVE-2022-47695: fix segfault in objdump comparesymbols on synthetic plt symbols - CVE-2022-47696:...

7.8CVSS6.7AI score0.00461EPSS
Exploits3References1
OSV
OSV
added 2026/04/17 5:28 p.m.9 views

CLSA-2026-1776430866 binutils: Fix of 5 CVEs

CVE-2022-44840: fix heap buffer overflow in findsectioninset in dwarf.c - CVE-2023-25584: fix lack of bounds checking in vms-alpha.c parsemodule - CVE-2022-47673: fix OOB reads in parsemodule - CVE-2022-47696: fix uninitialised thebfd field in mach-o.c synthetic symbols - CVE-2022-45703: fix heap...

7.8CVSS6.8AI score0.00513EPSS
Exploits4References1
EUVD
EUVD
added 2026/04/17 3:31 p.m.10 views

EUVD-2024-55542

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/15 9:51 a.m.6 views

CVE-2024-33618

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References2Affected Software8
CVE
CVE
added 2026/04/15 9:51 a.m.16 views

CVE-2024-33618

CVE-2024-33618 affects Bosch VMS Central Server (Bosch VMS 12.0.1). The issue is uncontrolled resource consumption that can cause excessive disk-space usage over the network interface. The provided documents do not specify the root cause details, vulnerable component version ranges beyond 12.0.1,...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.10 views

Bosch VMS Central Server 安全漏洞

Bosch VMS Central Server is a core server component of the video management system developed by the German company Bosch. Version 12.0.1 of Bosch VMS Central Server contains a security vulnerability. This vulnerability stems from uncontrolled consumption of network interface resources, which coul...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/10 5:5 p.m.28 views

CVE-2026-26141 Hybrid Worker Extension (Arc‑enabled Windows VMs) Elevation of Privilege Vulnerability

...

7.8CVSS0.00292EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 7:37 a.m.7 views

CVE-2026-20801

Cleartext Transmission of Sensitive Information CWE-319 in a component used in the Gallagher Hanwha VMS and Gallagher NxWitness VMS integrations allows unprivileged users with local network access to view live video streams. This issue affects all versions of Gallagher NxWitness VMS integration...

5.6CVSS5.9AI score0.00102EPSS
Exploits0References1
CVE
CVE
added 2026/03/03 2:41 a.m.16 views

CVE-2026-20801

CVE-2026-20801 describes a cleartext transmission flaw (CWE-319) in a component used by Gallagher Hanwha VMS and Gallagher NxWitness VMS integrations. Unprivileged users on the local network could view live video streams due to this issue. Affected are Gallagher NxWitness VMS integration versions...

5.6CVSS5.9AI score0.00102EPSS
Exploits0References1
OSV
OSV
added 2026/02/27 8:51 a.m.4 views

OPENSUSE-SU-2026:20281-1 Security update for kubevirt

This update for kubevirt fixes the following issues: Update to version 1.7.0 bsc1257128. Security issues fixed: - CVE-2025-64435: logic flaw in the virt-controller can lead to incorrect status updates and potentially causing a DoS bsc1253189. - CVE-2024-45310: kubevirt vendored...

8.5CVSS6AI score0.00478EPSS
Exploits6References17
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.7 views

Intel Trust Domain Extensions 安全漏洞

Intel Trust Domain Extensions is a confidential virtualization solution developed by Intel Corporation in the United States. It aims to isolate confidential virtual machines from non-confidential domain software stacks including hypervisors, VMMs, and other non-trusted domain software stacks,...

5.6CVSS6AI score0.00098EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/23 12:0 a.m.9 views

Oracle VM VirtualBox (CVE-2026-21986) (January 2026 CPU)

The 7.1.14 and 7.2.4 versions of VM VirtualBox installed on the remote host are affected by a vulnerability as referenced in the January 2026 CPU advisory. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14...

7.1CVSS7.1AI score0.00186EPSS
Exploits0References3
OSV
OSV
added 2026/01/20 10:16 p.m.12 views

UBUNTU-CVE-2026-21986

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

7.1CVSS5.8AI score0.00186EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/20 9:56 p.m.4 views

CVE-2026-21986

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows unauthenticated attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...

7.1CVSS7.2AI score0.00186EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder