Lucene search
K
RedosMost viewed

8244 matches found

Redos
Redos
•added 2026/05/20 12:0 a.m.•14 views

ROS-20260520-73-0053

A vulnerability in the WebGL component of the Google Chrome web browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00403EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•14 views

ROS-20260520-73-0028

A vulnerability in the Skia graphics library of Google Chrome and Microsoft Edge browsers involves reading outside of the allowed range in memory. Exploitation of the vulnerability could allow an attacker acting remotely to affect the confidentiality, integrity and availability of protected...

8.8CVSS5.8AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•14 views

ROS-20260520-73-0033

A vulnerability in the WebAudio component of Google Chrome browser is related to writing outside of buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS7.6AI score0.00504EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•14 views

ROS-20260515-73-0055

A vulnerability in the DevTools component of the Google Chrome browser is related to access control flaws. Exploitation of the vulnerability could allow an attacker acting remotely to bypass security restrictions using a specially crafted HTML page...

5.3CVSS5.8AI score0.00163EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•14 views

ROS-20260515-73-0022

A vulnerability in the DevTools web development toolkit for Google Chrome and Microsoft Edge browsers involves the use of an object without calling a destructor method. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by installing a malicious...

5.8AI score0.00271EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•14 views

ROS-20260512-73-0002

Vulnerability in python-PyPDF2 related to execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

8.2CVSS5.9AI score0.00455EPSS
Exploits0
Redos
Redos
•added 2026/05/06 12:0 a.m.•14 views

ROS-20260506-73-0026

Vulnerability in tomcat11 related to flaws in http request handling. Exploitation of the vulnerability may allow a remote attacker to send a hidden http request http request smuggling attack...

7.5CVSS5.8AI score0.00453EPSS
Exploits0
Redos
Redos
•added 2026/05/05 12:0 a.m.•14 views

ROS-20260505-73-0069

A vulnerability in the base64 module of the Python programming language interpreter is related to incorrect data type conversion. Exploitation of the vulnerability allows an attacker acting remotely to execute arbitrary code...

6.3CVSS6.2AI score0.00513EPSS
Exploits1
Redos
Redos
•added 2026/05/05 12:0 a.m.•14 views

ROS-20260505-73-0073

A vulnerability in the tarfile module of the Python programming language interpreter CPython is related to incorrect parsing of the file header. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.8AI score0.02203EPSS
Exploits2
Redos
Redos
•added 2026/04/20 12:0 a.m.•14 views

ROS-20260420-73-0045

Vulnerability in incus related to failure to take measures to neutralize special elements in the template creation mechanism. Exploitation of the vulnerability may allow an attacker to execute arbitrary code...

9.9CVSS6.2AI score0.00481EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•14 views

ROS-20260324-73-0013

A vulnerability in the xilinx component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6AI score0.00146EPSS
Exploits0
Redos
Redos
•added 2026/03/23 12:0 a.m.•14 views

ROS-20260323-73-0027

A vulnerability in the tmptcp components of the Linux operating system kernel is related to state management errors. Exploitation of the vulnerability allows an attacker to gain access to sensitive data, compromise its integrity, and cause denial of service...

7.8CVSS5.8AI score0.00146EPSS
Exploits0
Redos
Redos
•added 2026/03/13 12:0 a.m.•14 views

ROS-20260313-73-0025

A vulnerability in the kvmvmioctlcreatevcpu function of the Linux operating system kernel is caused by a race condition. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00148EPSS
Exploits0
Redos
Redos
•added 2026/03/04 12:0 a.m.•14 views

ROS-20260304-73-0026

A vulnerability in the v4l2rectmapinside function of the Linux kernel is related to memory reads outside of the allocated buffer. Exploitation of the vulnerability may allow an attacker acting remotely to affect the confidentiality of protected information...

7.8CVSS7.1AI score0.00157EPSS
Exploits0
Redos
Redos
•added 2026/01/29 12:0 a.m.•14 views

ROS-20260129-73-0048

Vulnerability in nextcloud-app-calendar related to improper handling of an unexpected data type. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.7CVSS5.9AI score0.00288EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•14 views

ROS-20251203-02

A vulnerability in the Pulpcore component of the Pulp software package management platform Pulp is related to with a bug in the puppet-pulpcore configuration when using Gunicorn versions prior to 22.0. Exploitation of this vulnerability could allow an attacker acting remotely to bypass the...

9.8CVSS9.4AI score0.00814EPSS
Exploits0
Redos
Redos
•added 2025/05/15 12:0 a.m.•14 views

ROS-20250515-01

A vulnerability in the PHP Twig template language is due to sandbox security checks not being executed under certain circumstances. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the implemented security restrictions. remotely to bypass the implemented securit...

8.6CVSS8.7AI score0.00826EPSS
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•14 views

ROS-2-137

2.137 Notification on update of the RAND OPERATION SYSTEM "RED OS" No RU.29926343.02.01-01-23 Due to quality improvement and bug fixing, an updated version of MIS Operating System "RED OS" 7.3 has been released. You can contact the technical support service within the framework of your existing...

7.3AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•14 views

ROS-2-678

2.678 Apache Ant utility vulnerability CVE-2021-36374, CVE-2021-36373 1. Vulnerability Description: CVE-2021-36374 A vulnerability in the Apache Ant utility, is related to the application improperly controlling internal resource consumption when processing ZIP archives. Exploitation of the...

5.5CVSS7.3AI score0.0262EPSS
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•14 views

ROS-2-1

2.1 Notification on the update of the OPERATION SYSTEM "RED OS" MIS RED SOFT LLC notifies about renewal of the previously obtained certificate of conformity of FSTEC of Russia 4060 till 12.01.2029 of the operating system "RED OS", decimal number RU.29926343.02.01-01. You can contact the technical...

7.2AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•14 views

ROS-20250513-01

Vulnerability of directory publishing application in domain sharedirectory is related to the lack of verification of the of a user accessing the D-Bus service. Exploitation of the vulnerability could allow an attacker to to execute arbitrary operating system commands. Information about the...

7.6AI score
Exploits0
Redos
Redos
•added 2025/05/06 12:0 a.m.•14 views

ROS-20250505-32

A vulnerability in the libxml2 library is related to out-of-bounds reads that occur in Python APIs Python bindings due to an invalid return value. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service...

7.5CVSS7AI score0.00527EPSS
Exploits1
Redos
Redos
•added 2025/04/30 12:0 a.m.•14 views

ROS-20250430-11

The vulnerability in the PHP programming language interpreter is related to flaws in header processing of of HTTP requests. Exploitation of the vulnerability could allow an attacker acting remotely to send a hidden HTTP request HTTP Request Smuggling attack. A hidden HTTP request HTTP Request...

9.8CVSS5.9AI score0.01357EPSS
Exploits3
Redos
Redos
•added 2025/04/22 12:0 a.m.•14 views

ROS-20250422-01

A vulnerability in the Bluetooth driver of the Linux kernel is related to the dereferencing of a null pointer due to competitive resource access race condition in the hciuartttyioctl function between the HCIUARTSETPROTO and HCIUARTGETPROTO commands in the drivers/bluetooth/hcildisc.c module...

4.7CVSS7AI score0.00325EPSS
Exploits0
Redos
Redos
•added 2025/04/17 12:0 a.m.•14 views

ROS-20250417-02

Vulnerability of /settings/store API endpoint of pgAdmin database management tool is related to failure to take measures to protect the structure of a web page. Exploitation of the vulnerability could allow an attacker, acting remotely, to perform a cross-site scripted attack Server mode...

8.8CVSS7.7AI score0.79933EPSS
Exploits1
Redos
Redos
•added 2025/03/26 12:0 a.m.•14 views

ROS-20250326-01

Pidgin instant messaging vulnerability is related to DNS response spoofing and redirecting client connections to a malicious server. redirecting client connections to a malicious server. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service to an...

5.9CVSS7.2AI score0.02419EPSS
Exploits0
Redos
Redos
•added 2025/03/26 12:0 a.m.•14 views

ROS-20250326-05

A vulnerability in the sysexec function of MariaDB software is related to insecure permissions. Exploitation of the vulnerability could allow an attacker to execute arbitrary commands with elevated privileges...

5.6CVSS8AI score0.0073EPSS
Exploits1
Redos
Redos
•added 2025/03/25 12:0 a.m.•14 views

ROS-20250325-01

A vulnerability in the net component of the Linux kernel is related to a read error outside the allowed range in drivers/net/wwan/wwancore.c. valid range in drivers/net/wwan/wwancore.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the n...

7.8CVSS7.2AI score0.00336EPSS
Exploits1
Redos
Redos
•added 2025/02/20 12:0 a.m.•14 views

ROS-20250220-01

Vulnerability of tunfreenetdev function of virtual network drivers TUN/TAP of kernel operating systems Linux is related to repeated freeing of previously freed memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service or escalate privileges A vulnerability in...

7.8CVSS7.7AI score0.00456EPSS
Exploits0
Redos
Redos
•added 2025/02/19 12:0 a.m.•14 views

ROS-20250219-05

A vulnerability in the Core component of Oracle VM VirtualBox is related to a flaw in the authorization mechanism. authorization mechanism. Exploitation of the vulnerability could allow an attacker to gain privileged access to the infrastructure A vulnerability in the Core component of the Oracle...

7.3CVSS6.4AI score0.00292EPSS
Exploits0
Redos
Redos
•added 2025/02/03 12:0 a.m.•14 views

ROS-20250203-08

Vulnerability in numexpr library of framework for creating applications based on combining languages and models LangChain is related to incorrect code generation control. LangChain models is related to improper code generation control. Exploitation of the vulnerability could allow an attacker...

9.8CVSS7.8AI score0.01322EPSS
Exploits1
Redos
Redos
•added 2025/02/03 12:0 a.m.•14 views

ROS-20250203-09

Vulnerability of the streaming python-multipart parser is related to insufficient input validation when processing "Content-Type" HTTP header value using regular expressions. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.7AI score0.01523EPSS
Exploits1
Redos
Redos
•added 2025/01/21 12:0 a.m.•14 views

ROS-20250121-09

Vulnerability of the compiler of the html-template tool jinja is related to the failure to neutralize the special controls when processing f-lines. Exploitation of the vulnerability could allow an attacker to bypass the sandbox protection mechanism, execute arbitrary code, or cause a denial of...

8.8CVSS7.2AI score0.00979EPSS
Exploits0
Redos
Redos
•added 2025/01/21 12:0 a.m.•14 views

ROS-20250121-03

Vulnerability The contentsecuritypolicy function of the Ruby interpreter's Action Pack extension is related to a vulnerability in the dynamically set Content-Security-Policy CSP headers. Content-Security-Policy CSP dynamically set headers vulnerability. Exploitation The vulnerability could allow ...

2.3CVSS5.9AI score0.01009EPSS
Exploits0
Redos
Redos
•added 2025/01/21 12:0 a.m.•14 views

ROS-20250121-01

A vulnerability in the sqlparse.parse function of the SQL parser module for Python Sqlparse is related to uncontrolled recursion when processing a highly nested list. recursion when processing a highly nested list. Exploiting the vulnerability allows an attacker, acting remotely, to cause a denia...

7.5CVSS7.2AI score0.0321EPSS
Exploits0
Redos
Redos
•added 2025/01/14 12:0 a.m.•14 views

ROS-20250114-06

A vulnerability in the Serialization component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to incorrect clearing or freeing of resources. resources. Exploitation of the vulnerability could allow an attacker acting...

4.8CVSS4.8AI score0.01157EPSS
Exploits0
Redos
Redos
•added 2025/01/13 12:0 a.m.•14 views

ROS-20250113-01

A vulnerability in the OpenSSL library is related to reading the wrong address in memory when comparing subject names otherName of an X.509 certificate. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...

7.5CVSS6.8AI score0.66594EPSS
Exploits0
Redos
Redos
•added 2025/01/10 12:0 a.m.•14 views

ROS-20250110-13

MinIO object storage server vulnerability is related to insecure privilege management. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to elevate their privileges to root...

9.3CVSS6.9AI score0.00702EPSS
Exploits0
Redos
Redos
•added 2025/01/10 12:0 a.m.•14 views

ROS-20250110-10

A vulnerability in the asyncio.SelectorSocketTransport.writelines function of the Python programming language is associated with an uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker to cause a denial of service denial of service...

8.7CVSS6.6AI score0.0188EPSS
Exploits0
Redos
Redos
•added 2024/12/03 12:0 a.m.•14 views

ROS-20241203-15

Go programming language vulnerability is related to errors in handling whitespace characters in context JavaScript. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity, and availability of protected information. affect the confidentiality,...

9.8CVSS7.2AI score0.03015EPSS
Exploits0
Redos
Redos
•added 2024/12/03 12:0 a.m.•14 views

ROS-20241203-02

A vulnerability in the streamformatter moby package is related to running multiple simultaneous write operations. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service The moby package vulnerability is related to running concurrent builds that call...

8.1CVSS7.1AI score0.00641EPSS
Exploits0
Redos
Redos
•added 2024/12/03 12:0 a.m.•14 views

ROS-20241203-03

The HTTP request interpretation vulnerability in HAProxy is related to the ability to access a path that is restricted by an ACL access control list installed on the product. Exploitation of the vulnerability could Allow an attacker acting remotely to obtain sensitive information...

5.3CVSS6.7AI score0.01043EPSS
Exploits0
Redos
Redos
•added 2024/11/12 12:0 a.m.•14 views

ROS-20241112-01

An implementation vulnerability in the Simple Authentication and Security Layer GNU SASL framework is related to reading outside the outside the allocated space on the GNU SASL libgsasl server side using a malicious authenticated GSS-API client. Exploitation of the vulnerability could allow an...

8.1CVSS6.6AI score0.01091EPSS
Exploits0
Redos
Redos
•added 2024/11/08 12:0 a.m.•14 views

ROS-20241108-03

Vulnerability of multiqtune function of schmultiq component of Linux kernel is related to writing outside of dynamic memory buffer boundaries. Exploitation of the vulnerability could allow an attacker, acting remotely, to execute arbitrary code in kernel mode by executing specially specially...

7.8CVSS7.8AI score0.00284EPSS
Exploits0
Redos
Redos
•added 2024/10/29 12:0 a.m.•14 views

ROS-20241029-07

The vulnerability in Buildah container image management tool is related to input validation errors in the directory traversal sequences in cache mounts. Exploitation of the vulnerability could allow an infringing user to escalate privileges on the system...

7.8CVSS7.4AI score0.00392EPSS
Exploits0
Redos
Redos
•added 2024/10/22 12:0 a.m.•14 views

ROS-20241021-04

A vulnerability in the Dovecot mail server is related to the fact that the application does not control the consumption of internal resources properly when parsing too large email headers. internal resources properly when parsing excessively large email headers. Exploitation of the vulnerability...

7.5CVSS6.6AI score0.01284EPSS
Exploits1
Redos
Redos
•added 2024/10/22 12:0 a.m.•14 views

ROS-20241021-06

A vulnerability in the ASGI Starlette toolkit for creating asynchronous Python web services is related to the following the ability for a remote unauthenticated user to view files in a web service. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensiti...

7.5CVSS6.9AI score0.02032EPSS
Exploits1
Redos
Redos
•added 2024/10/02 12:0 a.m.•14 views

ROS-20241002-02

Vulnerability of the tcindex indexing filter net/sched/clstcindex.c in the kernel of the of the Linux operating system is related to incorrect filter management, which leads to the repeated freeing previously freed memory. Exploitation of the vulnerability could allow an attacker to elevate...

7.8CVSS7AI score0.01029EPSS
Exploits1
Redos
Redos
•added 2024/10/02 12:0 a.m.•14 views

ROS-20241001-13

A vulnerability in the Botan C++ cryptographic library is related to asymmetric resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the C++ Botan cryptographic library is related to errors in parsing...

5.3CVSS6.6AI score0.00845EPSS
Exploits0
Redos
Redos
•added 2024/09/24 12:0 a.m.•14 views

ROS-20240924-02

Vulnerability in Thunderbird email client and Firefox browsers, Firefox ESR is related to writing outside the boundaries of the buffer in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code Vulnerability in Firefox ESR, Firefox web browsers...

9.8CVSS7.1AI score0.01233EPSS
Exploits0
Total number of security vulnerabilities5000