Lucene search
K

22107 matches found

Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•13 views

DHCP Client Service Denial of Service Vulnerability

...

4.8CVSS6.1AI score0.00668EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•21 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.00783EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 8:0 a.m.•18 views

Microsoft Office Remote Code Execution Vulnerability

...

7.8CVSS7.9AI score0.00726EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/11 12:0 a.m.•4 views

The puppetlabs-stdlib module 2.1 through 3.0 and 4.1.0 through 4.5.x before 4.5.1 for Puppet 2.8.8 and earlier allows remote authenticated users to gain privileges or obtain sensitive information by prepopulating the fact cache.

...

6.5CVSS6.7AI score0.01647EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•22 views

Chromium: CVE-2025-0451 Inappropriate implementation in Extensions API

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.9AI score0.0032EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•17 views

Chromium: CVE-2025-0445 Use after free in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.9AI score0.0033EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•12 views

Chromium: CVE-2025-0444 Use after free in Skia

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.9AI score0.00338EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•17 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.3AI score0.01203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•15 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.3AI score0.01283EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•15 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.3AI score0.01431EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•222 views

Microsoft Edge for IOS and Android Spoofing Vulnerability

...

5.3CVSS7.3AI score0.01183EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•21 views

Microsoft Dynamics 365 Sales Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Dynamics 365 Sales allows an authorized attacker to elevate privileges over a network...

8.8CVSS8.2AI score0.01209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•112 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.3CVSS7.3AI score0.0104EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•12 views

Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability

...

8.8CVSS7.3AI score0.01547EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/06 8:0 a.m.•98 views

Microsoft Edge (Chromium-based) Spoofing Vulnerability

...

4.4CVSS7.3AI score0.00557EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/04 8:0 a.m.•3 views

btrfs: fix information leak in btrfs_ioctl_logical_to_ino()

...

7.1CVSS7.3AI score0.00256EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/01 8:0 a.m.•3 views

xmlXIncludeAddNode in xinclude.c in libxml2 before 2.11.0 has a use-after-free.

...

10CVSS7.1AI score0.00257EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/01 8:0 a.m.•5 views

The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.

...

5.3CVSS7.5AI score0.02507EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/02/01 8:0 a.m.•1 views

With the aid of the diagnostics_channel utility, an event can be hooked into whenever a worker thread is created. This is not limited only to workers but also exposes internal workers, where an instance of them can be fetched, and its constructor can be grabbed and reinstated for malicious usage. This vulnerability affects Permission Model users (--permission) on Node.js v20, v22, and v23.

...

7.7CVSS6.9AI score0.00413EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/02/01 8:0 a.m.•4 views

Git LFS permits exfiltration of credentials via crafted HTTP URLs

...

8.5CVSS7.2AI score0.0104EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/30 8:0 a.m.•36 views

Chromium: CVE-2025-0762 Use after free in DevTools

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.5AI score0.00339EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/30 8:0 a.m.•4 views

Bad documentation of error handling in ParseWithClaims can lead to potentially dangerous situations in golang-jwt

...

3.1CVSS6.9AI score0.00521EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/30 8:0 a.m.•8 views

Recursive repository cloning can leak authentication tokens to non-GitHub submodule hosts in the gh cli

...

6.5CVSS8.5AI score0.00279EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/30 8:0 a.m.•4 views

go-gh `auth.TokenForHost` violates GitHub host security boundary within a codespace

...

7.5CVSS6.3AI score0.00534EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•6 views

mctp i2c: handle NULL header address

...

5.5CVSS7AI score0.00244EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•6 views

ksmbd: Fix the missing xa_store error check

...

5.5CVSS7AI score0.00228EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

phy: qcom: qmp-usb: fix NULL-deref on runtime suspend

...

5.5CVSS6.9AI score0.00204EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•7 views

nvmet-auth: assign dh_key to NULL after kfree_sensitive

...

7.8CVSS7AI score0.00254EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•5 views

ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp

...

7.8CVSS7.7AI score0.00243EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

usb: typec: qcom-pmic: init value of hdr_len/txbuf_len earlier

...

5.5CVSS6.9AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•1 views

ipv4: ip_tunnel: Fix suspicious RCU usage warning in ip_tunnel_init_flow()

...

5.5CVSS7AI score0.00265EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•3 views

ASoC: stm32: spdifrx: fix dma channel release in stm32_spdifrx_remove

...

5.5CVSS7AI score0.00229EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•9 views

arm64/sve: Discard stale CPU state when handling SVE traps

...

7CVSS7.2AI score0.00237EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•3 views

iio: gts-helper: Fix memory leaks in iio_gts_build_avail_scale_table()

...

5.5CVSS6.9AI score0.00219EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

spi: spi-fsl-dspi: Fix crash when not using GPIO chip select

...

5.5CVSS6.9AI score0.00233EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•7 views

nommu: pass NULL argument to vma_iter_prealloc()

...

5.5CVSS6.9AI score0.00233EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•6 views

x86/lam: Disable ADDRESS_MASKING in most cases

...

7.8CVSS7.7AI score0.00276EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•3 views

mm: krealloc: Fix MTE false alarm in __do_krealloc

...

5.5CVSS6.6AI score0.00227EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

iio: gts-helper: Fix memory leaks for the error path of iio_gts_build_avail_scale_table()

...

5.5CVSS6.9AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•2 views

mptcp: init: protect sched with rcu_read_lock

...

5.5CVSS6.6AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

ksmbd: check outstanding simultaneous SMB operations

...

5.5CVSS6.9AI score0.0026EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

filemap: Fix bounds checking in filemap_read()

...

5.5CVSS7.1AI score0.00246EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

signal: restore the override_rlimit logic

...

5.5CVSS7AI score0.00234EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•7 views

arm64: dts: imx8ulp: correct the flexspi compatible string

...

5.5CVSS6.9AI score0.00281EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•5 views

net: enetc: allocate vf_state during PF probes

...

5.5CVSS6.9AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•4 views

ntfs3: Add bounds checking to mi_enum_attr()

...

5.5CVSS6.9AI score0.00206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•3 views

ACPI: CPPC: Make rmw_lock a raw_spin_lock

...

5.5CVSS7AI score0.00219EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•5 views

phy: qcom: qmp-usb-legacy: fix NULL-deref on runtime suspend

...

5.5CVSS6.9AI score0.00204EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•6 views

udf: refactor inode_bmap() to handle error

...

3.3CVSS6.9AI score0.002EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/01/29 8:0 a.m.•3 views

sched/numa: Fix the potential null pointer dereference in task_numa_work()

...

5.5CVSS6.9AI score0.00234EPSS
Exploits0
Total number of security vulnerabilities22107