Lucene search
+L

718 matches found

Fedora
Fedora
added 2025/09/26 1:10 a.m.12 views

[SECURITY] Fedora 42 Update: rust-az-snp-vtpm-0.7.4-1.fc42

VTPM based SEV-SNP attestation for Azure Confidential VMs...

6.5CVSS7AI score0.00484EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/09/12 1:20 p.m.6 views

CVE-2025-10220

Use of Unmaintained Third Party Components CWE-1104 in the NuGet dependency components in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4 on Windows allows a remote attacker to execute arbitrary code or bypass security features via exploitation of vulnerable third-party packages such as...

9.8CVSS7.9AI score0.00686EPSS
Exploits0References1
OSV
OSV
added 2025/09/10 1:15 p.m.3 views

CVE-2025-10222

Exposure of Sensitive Information to an Unauthorized Actor CWE-200 in the diagnostic dump component in AxxonSoft Axxon One VMS C-Werk 2.0.0 through 2.0.1 on Windows allows a local attacker to obtain licensing-related information such as timestamps, license states, and registry values via reading...

4.8CVSS5.8AI score0.00113EPSS
Exploits0References1
OSV
OSV
added 2025/09/10 1:15 p.m.4 views

CVE-2025-10220

Use of Unmaintained Third Party Components CWE-1104 in the NuGet dependency components in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4 on Windows allows a remote attacker to execute arbitrary code or bypass security features via exploitation of vulnerable third-party packages such as...

9.3CVSS6.1AI score0.00686EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/09/10 12:34 p.m.10 views

CVE-2025-10222 Sensitive Information Disclosure in Diagnostic Dumps in AxxonSoft Axxon One VMS

Exposure of Sensitive Information to an Unauthorized Actor CWE-200 in the diagnostic dump component in AxxonSoft Axxon One VMS C-Werk 2.0.0 through 2.0.1 on Windows allows a local attacker to obtain licensing-related information such as timestamps, license states, and registry values via reading...

4.8CVSS0.00113EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/10 12:28 p.m.4 views

CVE-2025-10220 Outdated Third-Party NuGet Packages in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4

Use of Unmaintained Third Party Components CWE-1104 in the NuGet dependency components in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4 on Windows allows a remote attacker to execute arbitrary code or bypass security features via exploitation of vulnerable third-party packages such as...

9.8CVSS7.4AI score0.00686EPSS
Exploits0References1
CVE
CVE
added 2025/09/10 12:28 p.m.23 views

CVE-2025-10220

CVE-2025-10220 affects AxxonSoft Axxon One VMS 2.0.0–2.0.4 on Windows due to use of unmaintained third‑party NuGet components (e.g., Google.Protobuf, DynamicData, System.Runtime.CompilerServices.Unsafe). The underlying issue is reliance on unmaintained third‑party packages, enabling remote code e...

9.8CVSS7.4AI score0.00686EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/09/10 12:28 p.m.10 views

CVE-2025-10220 Outdated Third-Party NuGet Packages in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4

Use of Unmaintained Third Party Components CWE-1104 in the NuGet dependency components in AxxonSoft Axxon One VMS 2.0.0 through 2.0.4 on Windows allows a remote attacker to execute arbitrary code or bypass security features via exploitation of vulnerable third-party packages such as...

9.8CVSS0.00686EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/09 7:0 a.m.9 views

Azure Connected Machine Agent Elevation of Privilege Vulnerability

Improper access control in Azure Windows Virtual Machine Agent allows an authorized attacker to elevate privileges locally...

7.8CVSS6.9AI score0.00319EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2017-12450

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The alphavmsobjectp function in bfd/vms-alpha.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29 and earlier, allows...

7.8CVSS7.8AI score0.01883EPSS
Exploits0References2
Fedora
Fedora
added 2025/06/25 1:43 a.m.9 views

[SECURITY] Fedora 41 Update: libtpms-0.9.7-1.fc41

A library providing TPM functionality for VMs. Targeted for integration into Qemu...

5.9CVSS7.4AI score0.00135EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.8 views

PT-2025-24896

Name of the Vulnerable Software and Affected Versions TCG TPM2.0 versions affected versions not specified AMD Ryzen processors versions not specified Description The TCG TPM2.0 reference implementation's CryptHmacSign function contains a flaw due to a lack of validation between the signature sche...

6.6CVSS8.9AI score0.00199EPSS
Exploits0References44
Citrix
Citrix
added 2025/05/27 12:0 a.m.35 views

XenServer and Citrix Hypervisor Security Update for CVE-2025-27462, CVE-2025-27463, CVE-2025-27464

Description of Problem Issues have been identified in the XenServer VM Tools for Windows that allow an attacker who has the ability to execute arbitrary unprivileged code within a guest Windows VM to compromise that same VM. This issue affects Windows VMs running on either XenServer 8.4 and Citri...

7.6AI score0.00158EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:19 a.m.5 views

CVE-2023-21998

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

4.6CVSS5AI score0.00309EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:35 a.m.9 views

CVE-2023-28175

Improper Authorization in SSH server in Bosch VMS 11.0, 11.1.0, and 11.1.1 allows a remote authenticated user to access resources within the trusted internal network via a port forwarding request...

7.7CVSS6.6AI score0.00459EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:59 p.m.7 views

CVE-2021-20623

Video Insight VMS versions prior to 7.8 allows a remote attacker to execute arbitrary code with the system user privilege by sending a specially crafted request...

10CVSS7.9AI score0.02815EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:3 p.m.8 views

CVE-2020-6960

The following versions of MAXPRO VMS and NVR, MAXPRO VMS:HNMSWVMS prior to Version VMS560 Build 595 T2-Patch, HNMSWVMSLT prior to Version VMS560 Build 595 T2-Patch, MAXPRO NVR: MAXPRO NVR XE prior to Version NVR 5.6 Build 595 T2-Patch, MAXPRO NVR SE prior to Version NVR 5.6 Build 595 T2-Patch,...

9.8CVSS8AI score0.0114EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:39 p.m.9 views

CVE-2020-3948

Linux Guest VMs running on VMware Workstation 15.x before 15.5.2 and Fusion 11.x before 11.5.2 contain a local privilege escalation vulnerability due to improper file permissions in Cortado Thinprint. Local attackers with non-administrative access to a Linux guest VM with virtual printing enabled...

7.8CVSS7AI score0.00282EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:18 a.m.10 views

CVE-2019-6582

A vulnerability has been identified in Siveillance VMS 2017 R2 All versions V11.2a, Siveillance VMS 2018 R1 All versions V12.1a, Siveillance VMS 2018 R2 All versions V12.2a, Siveillance VMS 2018 R3 All versions V12.3a, Siveillance VMS 2019 R1 All versions V13.1a. An attacker with network access t...

7.1CVSS6.5AI score0.01054EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.12 views

CVE-2019-5996

SQL injection vulnerability in the Video Insight VMS 7.3.2.5 and earlier allows remote authenticated attackers to execute arbitrary SQL commands via unspecified vectors...

8.8CVSS8.4AI score0.01522EPSS
Exploits0References1
Rows per page
Query Builder