Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2026/06/06 12:0 a.m.23 views

PT-2026-47155

Name of the Vulnerable Software and Affected Versions Cursor versions prior to 3.0 Description Cursor runs agent terminal commands in a sandbox by default. Before performing a write operation, the agent canonicalizes the target path to ensure it remains within the workspace. However, if...

9.8CVSS6.3AI score0.00638EPSS
Exploits0References21
RedHat Linux
RedHat Linux
added 2026/05/19 1:29 p.m.11 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.7AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/28 6:49 a.m.5 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.3AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/27 5:38 a.m.6 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.3AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/22 7:54 a.m.7 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.7AI score0.00467EPSS
Exploits0References6
EUVD
EUVD
added 2026/04/08 3:31 p.m.5 views

EUVD-2025-209298

A container privilege escalation flaw was found in certain Ansible Automation Platform images. This issue arises from the /etc/passwd file being created with group-writable permissions during the build process. In certain conditions, an attacker who can execute commands within an affected...

6.4CVSS6.1AI score0.00147EPSS
Exploits0References3
CVE
CVE
added 2026/04/08 1:55 p.m.13 views

CVE-2025-58713

Red Hat Process Automation Manager images are affected by CVE-2025-58713 due to /etc/passwd being created with group-writable permissions during build. An attacker who can execute commands in the affected container (even as non-root) could leverage their root-group membership to modify /etc/passw...

6.4CVSS6.1AI score0.00145EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2026/04/08 5:18 a.m.6 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/07 11:16 p.m.7 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/07 12:25 p.m.5 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/04/07 6:25 a.m.4 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.8AI score0.00467EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/02/09 6:12 p.m.36 views

CVE-2026-23948 FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0. This vulnerability...

6.9CVSS0.00467EPSS
Exploits0References2
OSV
OSV
added 2025/01/11 1:15 p.m.1 views

UBUNTU-CVE-2024-52319

In the Linux kernel, the following vulnerability has been resolved: mm: use aligned address in cleargiganticpage In current kernel, hugetlbnopage calls foliozerouser with the fault address. Where the fault address may be not aligned with the huge page size. Then, foliozerouser may call...

7.8CVSS6.1AI score0.00209EPSS
Exploits0References10
OSV
OSV
added 2024/10/09 3:48 p.m.5 views

DRUPAL-CONTRIB-2024-045

This module enables you to group nodes within pages that have a highly-granular, distributed permissions structure. A function which can be used by third-party code does not return valid data under certain rare circumstances. If the third-party code relies on this data to decide whether to grant...

9.1CVSS7AI score0.00341EPSS
Exploits0References1
CNVD
CNVD
added 2019/11/11 12:0 a.m.2 views

dtc-xen competitive conditions issue vulnerability

dtc-xen is a SOAP daemon primarily used for control panel management of Xen VMs. A contention condition issue vulnerability exists in version 0.5.x prior to dtc-xen 0.5.4. The vulnerability stems from mishandling of concurrent access when concurrent code is required to access shared resources...

8.1CVSS7AI score0.0097EPSS
Exploits0References1
Rows per page
Query Builder