Lucene search
K
RedosMost viewed

8279 matches found

Redos
Redos
•added 2021/09/08 12:0 a.m.•20 views

ROS-2-1243

2.1243 Multiple vulnerabilities in Squid CVE-2021-28651, CVE-2021-28662, CVE-2021-28652, CVE-2021-31806, CVE-2021-31808 1. Vulnerability Description: The vulnerability allows a remote attacker to execute a denial-of-service DoS attack.Identifier of the Information Security Threats Data Bank of th...

7.8CVSS7.7AI score0.99295EPSS
Exploits86
Redos
Redos
•added 2026/05/26 12:0 a.m.•19 views

ROS-20260526-73-0013

Vulnerability in golang-x-image related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.1CVSS5.8AI score0.00112EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0004

A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker acting remotely to...

5.3CVSS7.2AI score0.00305EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0030

Vulnerability in the vim text editor is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to affect the availability of protected information...

5.5CVSS6.2AI score0.0022EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0021

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00122EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0011

A vulnerability in the Libraries component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a...

3.7CVSS7.2AI score0.00269EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0029

Vulnerability in vim related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6AI score0.00133EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0023

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00122EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•19 views

ROS-20260524-73-0022

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to gain access to...

2.9CVSS7.2AI score0.00122EPSS
Exploits0
Redos
Redos
•added 2026/05/05 12:0 a.m.•19 views

ROS-20260505-73-0014

A vulnerability in the http.cookies library of the Python programming language interpreter CPython is related to improper encoding or escaping of output data. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality and integrity of protected information...

7.5CVSS7.3AI score0.00419EPSS
Exploits0
Redos
Redos
•added 2026/04/30 12:0 a.m.•19 views

ROS-20260430-73-0001

A vulnerability in valkey is related to insufficient neutralization of special elements in a request. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.5CVSS6AI score0.00586EPSS
Exploits0
Redos
Redos
•added 2026/04/17 12:0 a.m.•19 views

ROS-20260417-73-0030

A vulnerability in the JOSE implementation of the Authlib library for OAuth and OpenID Connect servers is related to improper integrity value checking. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security mechanisms...

9.1CVSS7.3AI score0.00226EPSS
Exploits1
Redos
Redos
•added 2026/03/10 12:0 a.m.•19 views

ROS-20260310-73-0037

A vulnerability in the Background Fetch API of the Google Chrome browser is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability allows an attacker acting remotely to disclose protected information using a specially crafted HTML page...

6.5CVSS5.7AI score0.00224EPSS
Exploits1
Redos
Redos
•added 2025/03/18 12:0 a.m.•20 views

ROS-20250318-01

A vulnerability in the net component of the Linux kernel is related to the dereferencing of a NULL pointer in the sockcreate function in net/socket.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service denial of service A vulnerability in the net component of t...

7.8CVSS7.3AI score0.00281EPSS
Exploits0
Redos
Redos
•added 2025/03/14 12:0 a.m.•19 views

ROS-20250314-01

Vulnerability of x86/bugs components of Linux operating system kernel is related to resource management errors in the arch/x86/include/asm/nospec-branch.h file. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the mptcp component of the Lin...

7.8CVSS7AI score0.00875EPSS
Exploits0
Redos
Redos
•added 2025/03/10 12:0 a.m.•19 views

ROS-20250310-01

Vulnerability of the dpaastartxmit function in the drivers/net/ethernet/freescale/dpaa/dpaaeth.c module of the Linux kernel of the Linux kernel is associated with a data leak. Exploitation of the vulnerability could allow an attacker to affect the confidentiality and availability of protected...

7.8CVSS6.2AI score0.00306EPSS
Exploits0
Redos
Redos
•added 2025/01/21 12:0 a.m.•19 views

ROS-20250121-10

Vulnerability of GLPI system of requests, incidents and inventory of computer equipment is related to Failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow an intruder, acting remotely, to disclose protected information...

7.7CVSS7.1AI score0.59136EPSS
Exploits0
Redos
Redos
•added 2025/01/09 12:0 a.m.•19 views

ROS-20250109-04

Vulnerability of the Fields plug-in of the GLPI system of requests, incidents and inventory of computer equipment is related to failure to take measures to protect the SQL query structure. Exploitation of the vulnerability could allow An attacker acting remotely could execute arbitrary SQL code...

7.7CVSS8.3AI score0.0047EPSS
Exploits0
Redos
Redos
•added 2024/12/16 12:0 a.m.•19 views

ROS-20241216-06

A vulnerability in the Single sign-on SSO authentication mechanism of the Zabbix universal monitoring system is related to authentication bypass via spoofing. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions and elevate their...

8.8CVSS6.6AI score0.00797EPSS
Exploits1
Redos
Redos
•added 2024/12/16 12:0 a.m.•19 views

ROS-20241216-03

A vulnerability in the Single sign-on SSO authentication mechanism of the Zabbix universal monitoring system is related to authentication bypass via spoofing. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions and elevate their...

8.8CVSS7.4AI score0.00797EPSS
Exploits1
Redos
Redos
•added 2024/12/11 12:0 a.m.•19 views

ROS-20241211-01

The vulnerability of the OpenSC smart card software toolkit and libraries is related to the fact that, that in pkcs15init buffers are partially filled with data, and initialized portions of the buffer can be accessed by bypassing the restrictions. Exploitation of the vulnerability could allow an...

4.3CVSS7.8AI score0.00355EPSS
Exploits0
Redos
Redos
•added 2024/12/03 12:0 a.m.•19 views

ROS-20241203-23

The vulnerability in the Puppet Agent launcher app is due to the fact that the app silently ignores the settings of the Augeas before the first synchronization of the plugin. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in...

9.8CVSS7.3AI score0.01328EPSS
Exploits0
Redos
Redos
•added 2024/12/02 12:0 a.m.•19 views

ROS-20241202-02

Vulnerability of drivers/virt/acrn components of the Linux operating system kernel is related to errors of post-release usage errors in the acrnvmmemsegunmap and acrnvmvmrammap functions in the drivers/virt/acrn/mm.c. Exploitation of the vulnerability could allow an attacker to escalate privilege...

9.8CVSS7.5AI score0.01107EPSS
Exploits0
Redos
Redos
•added 2024/11/29 12:0 a.m.•19 views

ROS-20241129-01

A vulnerability in the ks8851 component of the Linux operating system kernel is related to improper locking in the ks8851dbgdumpkkt, ks8851rxpkts, and ks8851irq functions in the drivers/net/ethernet/micrel/ks8851common.c. Exploitation of the vulnerability could allow an attacker to cause a denial...

7.8CVSS8.3AI score0.00281EPSS
Exploits0
Redos
Redos
•added 2024/11/13 12:0 a.m.•19 views

ROS-20241112-03

Vulnerability of the JWE, JWS, JWT go-jose standards set implementation package for Go programming language is related to incorrect processing of highly compressed input data. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service Vulnerability of...

7.5CVSS7.6AI score0.91969EPSS
Exploits1
Redos
Redos
•added 2024/10/25 12:0 a.m.•19 views

ROS-20241025-02

Vulnerability of usb-audio component of Linux kernel is related to NULL pointer dereferencing in the sndusbsetsampleratev2v3 function in sound/usb/clock.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the target component of the target...

7.8CVSS8.1AI score0.00279EPSS
Exploits0
Redos
Redos
•added 2024/10/18 12:0 a.m.•19 views

ROS-20241017-11

A vulnerability in the Hotspot component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to...

3.7CVSS7AI score0.01257EPSS
Exploits0
Redos
Redos
•added 2024/10/17 12:0 a.m.•19 views

ROS-20241017-05

A vulnerability in the Redis database management system DBMS is related to a stack-based buffer overflow. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by injecting a specially crafted lua script Redis database management system DBMS vulnerability is...

8.8CVSS7.8AI score0.04488EPSS
Exploits1
Redos
Redos
•added 2024/10/15 12:0 a.m.•19 views

ROS-20241015-02

The vulnerability in the Xen hypervisor is related to a logic error caused by branch type confusion when implementing an of early patches. Exploitation of the vulnerability could allow an attacker to gain access to sensitive information and escalate privileges on the system...

7.5CVSS7.4AI score0.17444EPSS
Exploits0
Redos
Redos
•added 2024/10/02 12:0 a.m.•19 views

ROS-20241001-12

QEMU hardware emulator vulnerability is related to synchronization errors. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.5AI score0.01027EPSS
Exploits0
Redos
Redos
•added 2024/10/01 12:0 a.m.•19 views

ROS-20241001-04

Vulnerability of the bgpattrencap function in the bgpd/bgpattr.c file of the software tool for implementing network routing on Unix-like systems FRRouting is related to the lack of verification of actual remaining routing on Unix-like systems FRRouting is related to the lack of checking the actua...

9.8CVSS6.7AI score0.00641EPSS
Exploits0
Redos
Redos
•added 2024/10/01 12:0 a.m.•19 views

ROS-20241001-07

Vulnerability in DecodeConfig component of Golang programming language is related to incorrect normalization of HTTP Location header. HTTP Location header. Exploitation of the vulnerability could allow an attacker acting remotely, redirect the user to a malicious site...

6.1CVSS6.5AI score0.00497EPSS
Exploits1
Redos
Redos
•added 2024/09/27 12:0 a.m.•19 views

ROS-20240927-06

A vulnerability in the VideoBridge component of Mozilla Firefox, Firefox ESR and Thunderbird email client browsers is related to errors in security settings. Exploitation of the vulnerability could allow an attacker, acting remotely, to bypass the protection mechanism of an isolated software...

8.8CVSS9.1AI score0.20472EPSS
Exploits0
Redos
Redos
•added 2024/09/19 12:0 a.m.•19 views

ROS-20240919-01

Vulnerability of Microsoft.NET Framework and .NET software platform of Windows operating systems is related to incorrect definition of symbolic links before accessing a file. Exploitation of the vulnerability could allow an attacker to escalate privileges...

7.3CVSS6.9AI score0.01292EPSS
Exploits0
Redos
Redos
•added 2024/09/18 12:0 a.m.•19 views

ROS-20240918-01

A vulnerability in the CGI::Cookie.parse function of the Ruby programming language is related to incorrect processing of security prefixes in cookie names. security prefixes in cookie names. Exploitation of the vulnerability allows an attacker, acting remotely, to affect data integrity...

9.8CVSS8.1AI score0.04766EPSS
Exploits3
Redos
Redos
•added 2024/09/11 12:0 a.m.•19 views

ROS-20240911-06

A vulnerability in the stack protection feature of the GNU Compiler Collection GCC for different programming languages is due to a data protection mechanism violation. Collection GCC is related to a breach of the data protection mechanism. Exploitation of the vulnerability could allow an attacker...

4.8CVSS6.5AI score0.00666EPSS
Exploits1
Redos
Redos
•added 2024/09/02 12:0 a.m.•19 views

ROS-20240902-09

Vulnerability in Mozilla Firefox, Mozilla Firefox ESR, Mozilla Thunderbird email client is related to memory security flaws. with memory security flaws. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code. remotely to execute arbitrary code...

8.8CVSS7.8AI score0.00536EPSS
Exploits0
Redos
Redos
•added 2024/09/02 12:0 a.m.•19 views

ROS-20240902-03

Intel processor firmware vulnerability is related to errors in interpretation of redundant prefixes. of redundant prefixes. Exploitation of the vulnerability could allow an attacker to escalate privileges from third to zero ring of protection CPL0, gain access to sensitive information, or cause a...

8.8CVSS7.3AI score0.01728EPSS
Exploits0
Redos
Redos
•added 2024/09/02 12:0 a.m.•19 views

ROS-20240902-08

A vulnerability in the bus lockout regulator mechanism for some Intel processor models is associated with a a security mechanism failure. Exploitation of the vulnerability could allow an attacker to cause a denial of service A firmware vulnerability in Intel Xeon D processors involves an incorrec...

6.5CVSS7.2AI score0.0075EPSS
Exploits0
Redos
Redos
•added 2024/09/02 12:0 a.m.•19 views

ROS-20240902-04

A vulnerability in the xmlattr filter of the Jinja2 templating engine for the Python programming language is related to the failure to take measures to protect the structure of a web page. to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker acting...

6.1CVSS6.1AI score0.00892EPSS
Exploits0
Redos
Redos
•added 2024/08/26 12:0 a.m.•19 views

ROS-20240826-13

A vulnerability in the protojson.Unmarshal function of the golang-google-protobuf package of the Golang programming language is related to an infinite loop when anmarshaling certain JSON forms. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service ...

7.5CVSS7.1AI score0.91969EPSS
Exploits1
Redos
Redos
•added 2024/08/16 12:0 a.m.•19 views

ROS-20240816-01

A vulnerability in the Portainer container management platform is related to a difference in authentication user authentication response time. Exploitation of the vulnerability could allow an attacker acting remotely to determine whether a username is valid or invalid. remotely, whether the...

5.3CVSS7.1AI score0.01303EPSS
Exploits2
Redos
Redos
•added 2024/08/16 12:0 a.m.•19 views

ROS-20240816-08

A vulnerability in the PHP programming language is related to the random number generator's use of a narrower range of values. Exploitation of the vulnerability could allow an attacker acting remotely to gain access sensitive data A vulnerability in the PHP interpreter phardirread function is...

9.8CVSS8.9AI score0.08003EPSS
Exploits4
Redos
Redos
•added 2024/08/12 12:0 a.m.•19 views

ROS-20240812-08

Node.js software platform vulnerability is related to mismanagement of code generation. Exploitation The vulnerability could allow a remote attacker to activate arbitrary code with elevated privileges when handling CAPNETBINDSERVICE exceptions. elevated privileges when handling CAPNETBINDSERVICE...

7.8CVSS7.4AI score0.00562EPSS
Exploits0
Redos
Redos
•added 2024/08/07 12:0 a.m.•19 views

ROS-20240725-13

A vulnerability in the NVIDIA GPU Display Driver software driver for Linux is related to privilege management errors. Exploitation of the vulnerability could allow an attacker to disclose protected information and cause a denial of service A vulnerability in the NVIDIA GPU Display Driver for Linu...

7.8CVSS8.1AI score0.00275EPSS
Exploits0
Redos
Redos
•added 2024/08/06 12:0 a.m.•19 views

ROS-20240806-21

Vulnerability of JDBC driver pgjdbc for connecting Java programs to PostgreSQL database is related to Lack of verification of the class implementation of the expected interface. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code through the...

9.8CVSS7.7AI score0.0301EPSS
Exploits1
Redos
Redos
•added 2024/07/29 12:0 a.m.•19 views

ROS-20240729-05

Vulnerability in the libssh2 library of Libgit2's implementation of Git's C methods is related to validation bugs of cryptographic signatures. Exploitation of the vulnerability could allow an attacker acting remotely, execute a man-in-the-middle attack...

5.9CVSS6.6AI score0.0058EPSS
Exploits0
Redos
Redos
•added 2024/07/29 12:0 a.m.•19 views

ROS-20240729-19

The 389 Directory Server vulnerability is related to the ability of an unauthenticated user to cause a systematic server crash when submitting a specific advanced search query. query. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

6.5CVSS6.8AI score0.00923EPSS
Exploits0
Redos
Redos
•added 2024/07/18 12:0 a.m.•19 views

ROS-20240718-01

Vulnerability in Mozilla Firefox and Firefox ESR browsers is related to incorrect event handling as a result of incorrect code generation control. as a result of mismanaged code generation. Exploitation of the vulnerability could allow an attacker, acting remotely, escalate their privileges and...

8.4CVSS7.8AI score0.047EPSS
Exploits0
Redos
Redos
•added 2024/07/04 12:0 a.m.•19 views

ROS-20240704-02

OpenSSH cryptographic protection tool server vulnerability is related to a logic error ObscureKeystrokeTiming. Exploitation of the vulnerability could allow an attacker acting remotely, launch a timing attack...

7.5CVSS6.7AI score0.01634EPSS
Exploits0
Total number of security vulnerabilities5000