Lucene search
K

2864 matches found

Positive Technologies
Positive Technologies
added 2026/02/26 12:0 a.m.46 views

PT-2026-22146

Name of the Vulnerable Software and Affected Versions VMware Workstation versions 25H1 and below Description A flaw exists in VMware Workstation that could allow a user with limited access within a guest virtual machine to disrupt the host system. Specifically, an out-of-bounds write issue can le...

5CVSS5.9AI score0.00156EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.10 views

VMware Workstation 安全漏洞

VMware Workstation is a virtual machine software developed by the American company VMware. This software allows for the creation of virtual machines that can run multiple different operating systems simultaneously. VMware Workstation has a security vulnerability that can lead to a null pointer...

6.1CVSS5.8AI score0.00148EPSS
Exploits0References2
VMware
VMware
added 2026/02/26 12:0 a.m.28 views

VMSA-2026-0002: VMware Workstation and Fusion updates address multiple vulnerabilities (CVE-2026-22715, CVE-2026-22716, CVE-2026-22717, CVE-2026-22722)

Advisory ID: | VMSA-2026-0002 ---|--- Advisory Severity: | Moderate CVSSv3 Range: | 2.7 - 6.1 Synopsis: | VMware Workstation and Fusion updates address multiple vulnerabilities CVE-2026-22715, CVE-2026-22716, CVE-2026-22717, CVE-2026-22722 Issue date: | 2026-02-26 Updated on: | 2026-02-26 Initial...

6.1CVSS5.5AI score0.00203EPSS
Exploits0References6Affected Software2
RedhatCVE
RedhatCVE
added 2026/02/12 7:28 p.m.5 views

CVE-2026-1227

CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized disclosure of local files, interaction within the EBO system, or denial of service conditions when a local user uploads a specially crafted TGML graphics file to the EBO server from...

7CVSS5.5AI score0.00106EPSS
Exploits0References1
NVD
NVD
added 2026/02/11 2:16 p.m.7 views

CVE-2026-1227

CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized disclosure of local files, interaction within the EBO system, or denial of service conditions when a local user uploads a specially crafted TGML graphics file to the EBO server from...

7CVSS0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/11 1:45 p.m.31 views

CVE-2026-1227

CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized disclosure of local files, interaction within the EBO system, or denial of service conditions when a local user uploads a specially crafted TGML graphics file to the EBO server from...

7CVSS0.00106EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

Schneider Electric EcoStruxure Building Operation Workstation 代码注入漏洞

Schneider Electric EcoStruxure Building Operation Workstation is a specialized operational terminal component developed by Schneider Electric, a French company. The Schneider Electric EcoStruxure Building Operation Workstation has a code injection vulnerability, which stems from improper code...

7CVSS6AI score0.0013EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.8 views

Schneider Electric EcoStruxure Building Operation Workstation 代码问题漏洞

Schneider Electric EcoStruxure Building Operation Workstation is a specialized operational terminal component developed by Schneider Electric, a French company. There is a code vulnerability in the Schneider Electric EcoStruxure Building Operation Workstation. This vulnerability stems from improp...

7CVSS5.9AI score0.00106EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.8 views

PT-2026-7582

CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized disclosure of local files, interaction within the EBO system, or denial of service conditions when a local user uploads a specially crafted TGML graphics file to the EBO server from...

7CVSS5.5AI score0.00106EPSS
Exploits0References2
OSV
OSV
added 2026/01/29 1:50 p.m.9 views

MAL-2026-604 Malicious code in securedrop-workstation-dom0-config (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 a496fb67ea100acce3d945e16e2d50d6d3181a322017f80cdf8c01006a49aade Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

6AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/01/28 3:30 a.m.9 views

@activfinancial/activ-workstation (>=0.3.0 <=0.4.35), @activfinancial/time-series-chart (>=0.3.40 <=0.3.51) +36 more potentially affected by CVE-2026-1513 via billboard.js (>=1.0.1 <=3.14.0)

billboard.js NPM version =1.0.1, =0.3.0, =0.3.40, =3.0.0, =0.0.55, =1.0.0, =1.0.0, =4.0.0, =1.0.0, =1.0.0, =0.0.1-alpha.1, =5.4.0, =1.5.0, =2.0.0 and more Source cves: CVE-2026-1513 Source advisory: OSV:GHSA-RPC5-PM7Q-HJMP...

6.1CVSS5.8AI score0.00158EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.6 views

MiracleLinux 3 : krb5-1.6.1-17AXS3.1 (AXSA:2008-345:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-345:03 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...

10CVSS8.4AI score0.29842EPSS
Exploits10References14
Cvelist
Cvelist
added 2026/01/13 1:13 a.m.28 views

CVE-2026-0500 Remote code execution in SAP Wily Introscope Enterprise Manager (WorkStation)

Due to the usage of vulnerable third party component in SAP Wily Introscope Enterprise Manager WorkStation, an unauthenticated attacker could create a malicious JNLP Java Network Launch Protocol file accessible by a public facing URL. When a victim clicks on the URL the accessed Wily Introscope...

9.6CVSS0.00351EPSS
Exploits0References2
CVE
CVE
added 2026/01/13 1:13 a.m.32 views

CVE-2026-0500

The CVE-2026-0500 entry concerns SAP Wily Introscope Enterprise Manager (WorkStation). A vulnerable third‑party component enables an unauthenticated attacker to craft a malicious Java Network Launch Protocol (JNLP) file served at a public URL; when a victim opens it, the Wily Introscope Server co...

9.6CVSS6.8AI score0.00351EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.10 views

PT-2026-2336

Name of the Vulnerable Software and Affected Versions SAP Wily Introscope Enterprise Manager WorkStation affected versions not specified Description An unauthenticated attacker can create a malicious Java Network Launch Protocol JNLP file accessible via a public URL. When a victim clicks this URL...

9.6CVSS6.8AI score0.00351EPSS
Exploits0References15
RedhatCVE
RedhatCVE
added 2026/01/09 11:19 a.m.6 views

CVE-2021-22045

VMware ESXi 7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG, VMware Workstation 16.2.0 and VMware Fusion 12.2.0 contains a heap-overflow vulnerability in CD-ROM device emulation. A malicious actor with access to a virtual machine with CD-ROM device emulation may be able t...

7.8CVSS7.2AI score0.04681EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/02 9:31 p.m.5 views

EUVD-2025-200324

NMIS/BioDose V22.02 and previous versions' installation directory paths by default have insecure file permissions, which in certain deployment scenarios can enable users on client workstations to modify the program executables and libraries...

8CVSS6.4AI score0.00103EPSS
Exploits0References2
SUSE Linux
SUSE Linux
added 2025/10/15 12:57 p.m.9 views

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

8.7CVSS6.8AI score0.0037EPSS
Exploits3References468
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-25260

Malware in sbrugna...

5.3CVSS6.4AI score0.01097EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2011-3399

Malware in sbrugna...

6.5CVSS6.2AI score0.01721EPSS
Exploits0References6
Rows per page
Query Builder