Lucene search
K
RedosMost viewed

8244 matches found

Redos
Redos
•added 2026/05/24 12:0 a.m.•13 views

ROS-20260524-73-0026

Vulnerability in docker-ce related to a single offset error. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

8.4CVSS5.8AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•13 views

ROS-20260524-73-0015

A vulnerability in the Libraries component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a...

3.7CVSS7.2AI score0.00269EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•13 views

ROS-20260524-73-0058

Vulnerability in golang-x-crypto related to the use of insufficiently randomized values. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

5.9CVSS6.9AI score0.03437EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0061

A vulnerability in the Dawn component of the Google Chrome browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.4AI score0.05036EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0058

A vulnerability in the Compositing component of the Google Chrome browser is related to memory usage after release. Exploiting the vulnerability could allow a remote attacker to execute arbitrary code or cause a denial of service...

9.6CVSS6.2AI score0.00248EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0047

A vulnerability in the WebCodecs component of the Google Chrome web browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00395EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0057

A vulnerability in the WebGL component of the Google Chrome browser is related to information disclosure. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information using a specially crafted HTML page...

6.5CVSS5.8AI score0.00193EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0031

A vulnerability in the WebRTC component of Google Chrome and Microsoft Edge browsers is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS6AI score0.00301EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0012

A vulnerability in the WebRTC component of Google Chrome and Microsoft Edge browsers is related to the ability to use memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0054

A vulnerability in the PDF component of the Google Chrome web browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted PDF file...

8.8CVSS5.7AI score0.00417EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•13 views

ROS-20260520-73-0013

A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to isolated environment access control flaws. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.2AI score0.00354EPSS
Exploits1
Redos
Redos
•added 2026/05/15 12:0 a.m.•13 views

ROS-20260515-73-0035

A vulnerability in the TextEncoding component of Google Chrome and Microsoft Edge browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service via a specially crafted HTML page as a result of a user...

8.8CVSS5.7AI score0.00261EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•13 views

ROS-20260515-73-0016

A vulnerability in the Google Chrome web browser is related to HTTP request handling errors. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS7.5AI score0.00642EPSS
Exploits0
Redos
Redos
•added 2026/05/14 12:0 a.m.•13 views

ROS-20260514-73-0002

A vulnerability in the phparraymergewrapper function of the PHP programming language involves buffer copying without input validation. Exploitation of the vulnerability could allow a remote attacker to compromise data integrity and cause a denial of service...

8.2CVSS6AI score0.00428EPSS
Exploits1
Redos
Redos
•added 2026/05/13 12:0 a.m.•13 views

ROS-20260513-73-0005

An interpretation conflict vulnerability in rubygem-rack. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS5.8AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/13 12:0 a.m.•13 views

ROS-20260513-73-0017

Vulnerability in python2-requests related to insecure temporary files. Exploitation of the vulnerability could allow an attacker to overwrite arbitrary files...

5.5CVSS5.9AI score0.00182EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•13 views

ROS-20260512-73-0013

A vulnerability in the Core component of Oracle VM VirtualBox is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain full control over the application...

7.5CVSS7.1AI score0.00227EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•13 views

ROS-20260512-73-0014

A vulnerability in the Core component of Oracle VM VirtualBox is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain full control over the application...

7.5CVSS7.1AI score0.00227EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•13 views

ROS-20260512-73-0008

A vulnerability in the escapebytestring function of the gio/gfileattribute.c component of the GLib library set is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.00504EPSS
Exploits0
Redos
Redos
•added 2026/05/08 12:0 a.m.•13 views

ROS-20260508-73-0013

Vulnerability in nodejs-minimatch related to algorithmic complexity. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS7.1AI score0.00517EPSS
Exploits1
Redos
Redos
•added 2026/05/08 12:0 a.m.•13 views

ROS-20260508-73-0012

Vulnerability in nss related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

9.8CVSS5.9AI score0.0036EPSS
Exploits0
Redos
Redos
•added 2026/05/06 12:0 a.m.•13 views

ROS-20260506-73-0033

Vulnerability in tomcat11 related to insufficient protection of registration data. Exploitation of the vulnerability may allow an intruder to gain unauthorized access to protected information...

7.5CVSS5.8AI score0.00447EPSS
Exploits0
Redos
Redos
•added 2026/05/05 12:0 a.m.•13 views

ROS-20260505-73-0070

A vulnerability in the tarfile module of the Python programming language interpreter CPython is related to incorrect parsing of the file header. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS6.8AI score0.02203EPSS
Exploits2
Redos
Redos
•added 2026/05/05 12:0 a.m.•13 views

ROS-20260505-73-0065

A vulnerability in the base64 module of the Python programming language interpreter is related to incorrect data type conversion. Exploitation of the vulnerability allows an attacker acting remotely to execute arbitrary code...

6.3CVSS6.2AI score0.00513EPSS
Exploits1
Redos
Redos
•added 2026/04/20 12:0 a.m.•13 views

ROS-20260420-73-0004

A vulnerability in the PKCS12getfriendlyname function of the OpenSSL library is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.4CVSS7.3AI score0.00444EPSS
Exploits1
Redos
Redos
•added 2026/04/17 12:0 a.m.•13 views

ROS-20260417-73-0014

Vulnerability in python-PyPDF2 related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.9CVSS5.8AI score0.00168EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•13 views

ROS-20260324-73-0013

A vulnerability in the xilinx component of the Linux operating system kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6AI score0.00146EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•13 views

ROS-20260324-73-0010

A vulnerability in the f2fs component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...

5.5CVSS6AI score0.00155EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•13 views

ROS-20260324-73-0006

A vulnerability in the ipv6 component of the Linux operating system kernel is related to buffer copying without input data validation. Exploitation of the vulnerability allows an attacker acting remotely to affect confidentiality, integrity and availability of protected information...

7.8CVSS7.2AI score0.0018EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•13 views

ROS-20260324-73-0025

A vulnerability in the fbtft component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6AI score0.00159EPSS
Exploits0
Redos
Redos
•added 2026/03/17 12:0 a.m.•13 views

ROS-20260317-73-0018

A vulnerability in the doinsnioctl function of the comedi component of the Linux kernel is related to incorrect resource initialization. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00156EPSS
Exploits0
Redos
Redos
•added 2026/03/13 12:0 a.m.•13 views

ROS-20260313-73-0025

A vulnerability in the kvmvmioctlcreatevcpu function of the Linux operating system kernel is caused by a race condition. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00148EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•13 views

ROS-20251203-11

Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...

9.1CVSS7.2AI score0.03153EPSS
Exploits4
Redos
Redos
•added 2025/11/25 12:0 a.m.•13 views

ROS-20251125-03

WSGI server gunicorn vulnerability is related to flaws in HTTP request handling. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the existing security restrictions and execute an HTTP request smuggling attack...

7.5CVSS7AI score0.00738EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•13 views

ROS-20251029-07

The vulnerability in the Golang programming language is related to the implementation of a function where a string is accumulated via repeated concatenation without effectively managing memory or time complexity. Exploitation of the vulnerability could allow an attacker to cause a denial of servi...

7.5CVSS7.1AI score0.00626EPSS
Exploits0
Redos
Redos
•added 2025/08/12 12:0 a.m.•13 views

ROS-20250812-08

Apache HTTP Server vulnerability is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to launch an SSRF attack Vulnerability in the modules/proxy/modproxy.c component of the Apache HTTP Server web server is related t...

8.1CVSS7.3AI score0.6795EPSS
Exploits2
Redos
Redos
•added 2025/06/19 12:0 a.m.•13 views

ROS-20250619-04

Vulnerability of http2 package of Go programming language is related to uncontrolled server resources consumption as a result of resetting Server.MaxConcurrentStreams parameter during request stream processing. as a result of resetting the Server.MaxConcurrentStreams parameter when processing a...

7.5CVSS7.9AI score0.99999EPSS
Exploits19
Redos
Redos
•added 2025/05/13 12:0 a.m.•13 views

ROS-2-178

2.178 Notification on update of the RID OS OPERATION SYSTEM RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a standard...

7.1AI score
Exploits0
Redos
Redos
•added 2025/05/06 12:0 a.m.•13 views

ROS-20250505-31

A vulnerability in the libxml2 library is related to out-of-bounds reads that occur in Python APIs Python bindings due to an invalid return value. Exploitation of the vulnerability could allow An attacker acting remotely to cause a denial of service...

7.5CVSS7AI score0.00527EPSS
Exploits1
Redos
Redos
•added 2025/04/30 12:0 a.m.•13 views

ROS-20250430-12

The vulnerability in the PHP programming language interpreter is related to a flaw in header processing of HTTP requests. Exploitation of the vulnerability could allow a remote attacker to send a hidden HTTP request HTTP Request Smuggling attack. A hidden HTTP request HTTP Request Smuggling attac...

9.8CVSS5.8AI score0.01357EPSS
Exploits3
Redos
Redos
•added 2025/04/30 12:0 a.m.•13 views

ROS-20250430-10

The vulnerability in the PHP programming language interpreter is related to flaws in header processing of of HTTP requests. Exploitation of the vulnerability could allow an attacker acting remotely to send a hidden HTTP request HTTP Request Smuggling attack. hidden HTTP request HTTP Request...

9.8CVSS5.9AI score0.01357EPSS
Exploits3
Redos
Redos
•added 2025/04/30 12:0 a.m.•13 views

ROS-20250430-03

A vulnerability in the GPAC multimedia platform is related to a heap buffer overflow in the isomedia/sampledescs.c:1799, in gfisomnewmphadescription in gpac/MP4Box. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the GPAC multimedia platfo...

7.8CVSS7.2AI score0.00346EPSS
Exploits3
Redos
Redos
•added 2025/04/03 12:0 a.m.•13 views

ROS-20250403-08

A vulnerability in the crun open source OCI container runtime environment is related to an insecure reference following in .krunconfig.json. Exploitation of the vulnerability could allow an attacker acting remotely to compromise a vulnerable system...

8.5CVSS7AI score0.00533EPSS
Exploits0
Redos
Redos
•added 2025/04/03 12:0 a.m.•13 views

ROS-20250403-13

Vulnerability of net/http, x/net/proxy and x/net/http/httpproxy packages of Go programming language is related to incorrect mapping of hosts to proxy server templates. Exploitation of the vulnerability could allow an intruder to affect confidentiality and availability of protected information...

4.4CVSS6.9AI score0.00384EPSS
Exploits2
Redos
Redos
•added 2025/04/02 12:0 a.m.•13 views

ROS-20250402-07

A vulnerability in the Consul and Consul Enterprise service configuration tool is related to insufficient validation of user input. of user input. Exploitation of the vulnerability could allow an attacker acting remotely to launch an SSRF attack. remotely to launch an SSRF attack Vulnerability in...

7.5CVSS7AI score0.08912EPSS
Exploits0
Redos
Redos
•added 2025/04/02 12:0 a.m.•13 views

ROS-20250402-02

A vulnerability in the WebTransport component of Mozilla Firefox, Firefox ESR and Thunderbird email client browsers is related to the possibility of memory usage after release. Thunderbird is related to the possibility of memory usage after release. Exploitation of the vulnerability could allow a...

9.8CVSS8.7AI score0.01196EPSS
Exploits1
Redos
Redos
•added 2025/03/26 12:0 a.m.•13 views

ROS-20250326-08

A vulnerability in the snmptrapd daemon of the Zabbix universal monitoring system is related to improper processing of the output data for logs. Exploitation of the vulnerability could allow an attacker, acting remotely, to spoof the user interface Vulnerability of strbase64encoderfc2047 function...

9.1CVSS7.5AI score0.00952EPSS
Exploits0
Redos
Redos
•added 2025/03/07 12:0 a.m.•13 views

ROS-20250307-06

A vulnerability in the OpenSSL library is related to a temporary side-channel in the ECDSA signature computation. Exploitation of the vulnerability could allow a remote attacker to recover the private key...

4.1CVSS7.2AI score0.00601EPSS
Exploits0
Redos
Redos
•added 2025/02/19 12:0 a.m.•13 views

ROS-20250219-02

A vulnerability in the bsonstrfreev function of the libbson library of the MongoDB database management system driver C Driver is related to integer overflow. Exploitation of the vulnerability could allow an attacker to affect the integrity of protected information...

5.3CVSS6.5AI score0.00392EPSS
Exploits0
Redos
Redos
•added 2025/02/12 12:0 a.m.•13 views

ROS-20250212-01

A vulnerability in Nextcloud cloud storage creation and utilization software Server is related to the lack of restrictions on authentication attempts. Exploitation of the vulnerability could allow an attacker acting remotely to implement a brute force attack...

8.7CVSS7AI score0.00872EPSS
Exploits0
Total number of security vulnerabilities5000