389 matches found
Unspecified vulnerability in Linux kernel (CNVD-2019-38271)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. There are security vulnerabilities in the Linux kernel. No detailed vulnerability details are currently available...
abbr (=0.0.0), add-dependencies (=2.3.0) +159 more potentially affected by CVE-2019-1010083 via flask (>=0.10.1 <=0.6.1)
flask PYPI version =0.10.1, =0.26.0, =1.4.15, =0.11.1, =0.4.0, =4.0.0, =1.10.0, =0.1.0, =0.14.0, =0.1.1, =0.1.17, =0.1.0, =1.0.0 - blendedux =0.0.2 and more Source cves: CVE-2019-1010083 Source advisory: OSV:PYSEC-2019-179...
CVE-2019-12221
creationtimestamp| type| source ---|---|--- 2019-05-20 18:45:35+00:00| seen| https://t.me/cvemitreorg/96...
Adobe Acrobat/Reader Out-of-Bounds Read Vulnerability (CNVD-2019-22823)
Adobe Reader also known as Acrobat Reader is a PDF file reader developed by Adobe.Adobe Acrobat is a PDF editing software developed by Adobe. Adobe Acrobat/Reader has an out-of-bounds read vulnerability. An attacker can exploit this vulnerability to obtain information...
CVE-2015-1340
creationtimestamp| type| source ---|---|--- 2019-04-22 20:30:42+00:00| seen| https://t.me/cibsecurity/3856 2019-04-29 18:27:22+00:00| seen| https://t.me/cibsecurity/3996...
CVE-2018-19006
OSIsoft PI Vision, versions PI Vision 2017, and PI Vision 2017 R2, The application contains a cross-site scripting vulnerability where displays that reference AF elements and attributes containing JavaScript are affected. This vulnerability requires the ability of authorized AF users to store...
Google Android System Information Disclosure Vulnerability (CNVD-2018-22649)
Android is a free and open source Linux-based operating system led and developed by Google Inc. and the Open Handset Alliance. An information disclosure vulnerability exists in the System component of Google Android 7.0, 7.1.1, 7.1.2, 8.0, 8.1, and 9, which can be exploited by attackers to obtain...
idreamsoft iCMS Cross-Site Request Forgery Vulnerability (CNVD-2019-10137)
idreamsoft iCMS is an open source content management system CMS based on PHP and MySQL. A cross-site request forgery vulnerability exists in admincp.php?app=group&do=save in idreamsoft iCMS 7.0.10, which can be exploited by an attacker to add an administrator account...
CVE-2015-6000
creationtimestamp| type| source ---|---|--- 2018-07-30 17:42:41+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vtigerlogouploadexec.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:41+00:00| seen|...
CVE-2011-10012
creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/netop.rb 2025-08-13 23:41:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwcysraiep27 2025-10-23...
Valve Steam Link has an unspecified vulnerability (CNVD-2018-01479)
The Valve Steam Link is a Steam online gaming device from Value Software in the United States. A security vulnerability exists in Valve Steam Link build 643, which stems from the program only detecting the first 8 characters of a password. No details of the vulnerability are available at this tim...
CAJViewer suffers from a memory corruption vulnerability (CNVD-2017-34947)
CAJviewer is a specialized full-text format reader for China Journal Network CJN, which supports TEB, NH, CAJ, KDH and PDF files of CJN. CAJviewer suffers from a memory corruption vulnerability when handling special CAJ files, which can be exploited by attackers to cause a denial of service attac...
CVE-2017-0804
A elevation of privilege vulnerability in the MediaTek mmc driver. Product: Android. Versions: Android kernel. Android ID: A-36274676. References: M-ALPS03361487...
Cisco Prime Infrastructure HTML Injection Vulnerability (CNVD-2017-221614)
Cisco Prime Infrastructure PI is a set of Cisco Prime LAN Management Solution LMS and Cisco Prime Network Control System NCS technologies for wireless management. solution. An HTML injection vulnerability exists in the administrative web interface in Cisco PI, which stems from the program failing...
UBUNTU-CVE-2017-5436
An out-of-bounds write in the Graphite 2 library triggered with a maliciously crafted Graphite font. This results in a potentially exploitable crash. This issue was fixed in the Graphite 2 library as well as Mozilla products. This vulnerability affects Thunderbird 52.1, Firefox ESR 45.9, Firefox...
CVE-2017-3563
creationtimestamp| type| source ---|---|--- 2017-04-20 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41908...
CVE-2017-2483
creationtimestamp| type| source ---|---|--- 2017-04-04 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41797...
Apache Camel Remote Code Execution Vulnerability (CNVD-2017-02452)
Apache Camel is an open source project under the Apache Foundation , it is a rule-based routing and mediation engine that provides an enterprise integration model of the implementation of Java objects , through the application program interface or known as declarative Java domain-specific languag...
CVE-2016-1551
CVE-2016-1551 affects ntpd (NTP 4.2.8p3 and NTPsec a5fb34b9…). The flaw arises because reference clocks are stored with regular peers; if a system lacks martian-filtering, a packet with a reference-clock source (e.g., 127.127.1.1) reaching receive() can be treated as a trusted peer, enabling an a...
DEBIAN-CVE-2015-3210
Heap-based buffer overflow in PCRE 8.34 through 8.37 and PCRE2 10.10 allows remote attackers to execute arbitrary code via a crafted regular expression, as demonstrated by /^?P=B?P=B?J:?Pc?Pa?P=BWGXCREDITS/, a different vulnerability than CVE-2015-8384...