Lucene search
+L

92 matches found

RedhatCVE
RedhatCVE
added 2025/04/25 12:14 p.m.10 views

CVE-2025-43864

A flaw was found in the React Router. This vulnerability allows an attacker to trigger a rendering error via a crafted X-React-Router-SPA-Mode header, which can result in cache poisoning. If a caching system is in place, the corrupted error response may be cached and served to subsequent users,...

5.3CVSS7.2AI score0.25329EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2024/10/18 5:10 p.m.18 views

CVE-2024-27766

Disputed A flaw was found in MariaDB. This flaw allows a remote attacker to use a specially crafted payload to execute arbitrary commands in certain configurations. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product...

5.5CVSS6AI score0.01226EPSS
Exploits2References4
The Hacker News
The Hacker News
added 2024/07/24 8:32 a.m.44 views

CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices

Cybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions of Windows devices to crash as part of a widespread outage late last week. "On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a content configuration...

7.3AI score
Exploits0
RedhatCVE
RedhatCVE
added 2024/07/23 9:24 p.m.38 views

CVE-2024-0760

A flaw was found in the bind9 package, where a malicious client may send many DNS messages over the TCP protocol, leading to instabilities on the server side and potentially causing a denial of service. The server will recover automatically once the attack ceases. Mitigation Mitigation for this...

7.5CVSS7.3AI score0.0468EPSS
Exploits0References3
OSV
OSV
added 2024/06/06 12:29 p.m.31 views

CGA-R8CW-3RV5-559V

Bulletin has no description...

7.5CVSS7.6AI score0.00984EPSS
Exploits0
The Hacker News
The Hacker News
added 2024/03/26 11:29 a.m.32 views

Crafting Shields: Defending Minecraft Servers Against DDoS Attacks

Minecraft, with over 500 million registered users and 166 million monthly players, faces significant risks from distributed denial-of-service DDoS attacks, threatening server functionality, player experience, and the game's reputation. Despite the prevalence of DDoS attacks on the game, the...

7.2AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/23 2:33 p.m.42 views

VexTrio: The Uber of Cybercrime - Brokering Malware for 60+ Affiliates

The threat actors behind ClearFake, SocGholish, and dozens of other e-crime outfits have established partnerships with another entity known as VexTrio as part of a massive "criminal affiliate program," new findings from Infoblox reveal. The latest development demonstrates the "breadth of their...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2024/01/17 3:9 a.m.96 views

CVE-2023-45230

A security flaw was identified in EDK2, the open-source reference implementation of the UEFI specification, involving a buffer overflow vulnerability. This particular weakness enables an unauthorized attacker within the vicinity of the network to transmit a specifically crafted DHCPv6 message...

8.8CVSS8.6AI score0.01223EPSS
Exploits1References5
HackRead
HackRead
added 2024/01/16 5:8 p.m.17 views

Ivanti VPN Zero-Day Flaws Fuel Widespread Cyber Attacks

By Deeba Ahmed Another day, another zero-day flaw driving the cybersecurity world crazy. This is a post from HackRead.com Read the original post: Ivanti VPN Zero-Day Flaws Fuel Widespread Cyber Attacks...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2023/12/14 6:1 p.m.35 views

CVE-2023-37329

A heap-based buffer overflow vulnerability was found in the PGS Blu-ray subtitle decoder within GStreamer when processing specific files. This issue could allow a malicious third party to crash the application and execute code by manipulating the heap. Mitigation Mitigation for this issue is eith...

5.5CVSS7AI score0.01643EPSS
Exploits0References4
Schneier on Security
Schneier on Security
added 2023/10/18 11:6 a.m.15 views

Analysis of Intellexa’s Predator Spyware

Amnesty International has published a comprehensive analysis of the Predator government spyware products. These technologies used to be the exclusive purview of organizations like the NSA. Now theyre available to every country on the planet--democratic, nondemocratic, authoritarian, whatever--for...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2023/09/14 1:54 p.m.32 views

CVE-2023-32370

A vulnerability was found in webkit. A logic issue was addressed with improved validation. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to...

5.3CVSS6.5AI score0.00646EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2023/08/28 3:48 p.m.26 views

CVE-2020-22628

A flaw was found in the libraw library. This issue occurs due to an out-of-bounds read vulnerability that exists within the "LibRaw::stretch" function libraw\src\postprocessing\aspectratio.cpp when parsing a crafted CRW file. Mitigation Mitigation for this issue is either not available or the...

6.5CVSS6.1AI score0.00681EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2023/08/08 6:19 p.m.55 views

CVE-2023-20588

A division-by-zero error was found in hw on some AMD processors. This flaw can potentially return speculative data, resulting in loss of confidentiality. Mitigation Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteri...

6CVSS6.6AI score0.12405EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/06/19 12:0 a.m.21 views

Debian dla-3457 : duende - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3457 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3457-1 [email protected]...

7.5CVSS7.3AI score0.01143EPSS
Exploits0References6
Rapid7 Blog
Rapid7 Blog
added 2023/02/28 2:0 p.m.21 views

A Shifting Attack Landscape: Rapid7’s 2022 Vulnerability Intelligence Report

Each year, the research team at Rapid7 analyzes thousands of vulnerabilities in order to identify their root causes, broaden understanding of attacker behavior, and provide actionable intelligence that guides security professionals at critical moments. Our annual Vulnerability Intelligence Report...

0.3AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/27 2:39 a.m.4 views

Malicious code in selfkillpushhacked (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx bd245f4d9514be8faac5dc156aa9509a560074144fd3b43a3d8b86854b1a960b EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/25 4:27 p.m.3 views

Malicious code in infopaypal (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 8423144621474c83b04d756b24f4c2a9d2cabc6c67b7ca57e326670015245f0b EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/25 4:15 p.m.4 views

Malicious code in edosint (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx c73b0d2af44a2d1a9c2a278e6b94ab9ec1f986b808f97fb28baf1b07183ef607 EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/02/24 11:9 p.m.3 views

Malicious code in ultraproof (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: checkmarx 3b562629d8cc8c65ba50e04c84a11d56d36e53dbbb191aa5a8b2c238dbd91dad EsqueleSquad group published nearly 6000 malicious PyPi and NPM packages, executing spyware and information-stealing malware...

7AI score
Exploits0References1
Rows per page
Query Builder