Lucene search
K
RedosMost viewed

8110 matches found

Redos
Redos
•added 2026/05/24 12:0 a.m.•12 views

ROS-20260524-73-0053

Vulnerability in nextcloud due to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.1CVSS6.2AI score0.00237EPSS
Exploits0
Redos
Redos
•added 2026/05/24 12:0 a.m.•12 views

ROS-20260524-73-0030

Vulnerability in the vim text editor is related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to affect the availability of protected information...

5.5CVSS6.2AI score0.0022EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0031

A vulnerability in the WebRTC component of Google Chrome and Microsoft Edge browsers is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS6AI score0.00301EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0013

A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to isolated environment access control flaws. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.2AI score0.00354EPSS
Exploits1
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0030

A vulnerability in the ANGLE library of Google Chrome and Microsoft Edge browsers is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.9AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0045

A vulnerability in the Web MIDI device support Web MIDI interface of Google Chrome browsers is related to memory usage after memory is freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.2AI score0.00407EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0012

A vulnerability in the WebRTC component of Google Chrome and Microsoft Edge browsers is related to the ability to use memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0052

A vulnerability in the Dawn component of the Google Chrome web browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted HTML page...

8.8CVSS5.7AI score0.00313EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0003

A vulnerability in the Picture In Picture technology of Google Chrome browser is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to affect the integrity of protected information using a specially crafted...

4.3CVSS5.8AI score0.00177EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0023

A vulnerability in the PDFium component of Google Chrome and Microsoft Edge browsers is related to a buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted PDF file...

8.8CVSS6AI score0.0025EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0022

A vulnerability in the Digital Credentials API component of Google Chrome and Microsoft Edge browsers is related to the ability to use memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using a specially crafted...

8.8CVSS5.7AI score0.00253EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0057

A vulnerability in the WebGL component of the Google Chrome browser is related to information disclosure. Exploitation of the vulnerability could allow an attacker acting remotely to disclose protected information using a specially crafted HTML page...

6.5CVSS5.8AI score0.00193EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0061

A vulnerability in the Dawn component of the Google Chrome browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS6.4AI score0.05036EPSS
Exploits0
Redos
Redos
•added 2026/05/20 12:0 a.m.•12 views

ROS-20260520-73-0050

A vulnerability in the Dawn component of the Google Chrome browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

7.5CVSS6.1AI score0.0028EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•12 views

ROS-20260515-73-0049

A vulnerability in the ChromeDriver component of Google Chrome for Android browser is related to the use of an untrusted cross-domain policy file. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

6.5CVSS5.8AI score0.00187EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•12 views

ROS-20260515-73-0035

A vulnerability in the TextEncoding component of Google Chrome and Microsoft Edge browser is related to memory usage after it has been freed. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service via a specially crafted HTML page as a result of a user...

8.8CVSS5.7AI score0.00261EPSS
Exploits0
Redos
Redos
•added 2026/05/15 12:0 a.m.•12 views

ROS-20260515-73-0022

A vulnerability in the DevTools web development toolkit for Google Chrome and Microsoft Edge browsers involves the use of an object without calling a destructor method. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by installing a malicious...

5.8AI score0.00271EPSS
Exploits0
Redos
Redos
•added 2026/05/14 12:0 a.m.•12 views

ROS-20260514-73-0002

A vulnerability in the phparraymergewrapper function of the PHP programming language involves buffer copying without input validation. Exploitation of the vulnerability could allow a remote attacker to compromise data integrity and cause a denial of service...

8.2CVSS6AI score0.00428EPSS
Exploits1
Redos
Redos
•added 2026/05/13 12:0 a.m.•12 views

ROS-20260513-73-0006

Vulnerability in rubygem-rack related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.0043EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•12 views

ROS-20260512-73-0014

A vulnerability in the Core component of Oracle VM VirtualBox is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain full control over the application...

7.5CVSS7.1AI score0.00227EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•12 views

ROS-20260512-73-0013

A vulnerability in the Core component of Oracle VM VirtualBox is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain full control over the application...

7.5CVSS7.1AI score0.00227EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•12 views

ROS-20260512-73-0010

Vulnerability in beats related to reading beyond buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

6.5CVSS5.9AI score0.002EPSS
Exploits0
Redos
Redos
•added 2026/05/12 12:0 a.m.•12 views

ROS-20260512-73-0007

A vulnerability in the Incus container management system and virtual machine manager is related to failure to take measures to neutralize CRLF sequences. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary commands...

8.7CVSS7.6AI score0.00471EPSS
Exploits1
Redos
Redos
•added 2026/05/08 12:0 a.m.•12 views

ROS-20260508-73-0012

Vulnerability in nss related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

9.8CVSS5.9AI score0.0036EPSS
Exploits0
Redos
Redos
•added 2026/05/06 12:0 a.m.•12 views

ROS-20260506-73-0006

A vulnerability in the displayrelocations function of the GNU Binutils development tool is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00256EPSS
Exploits1
Redos
Redos
•added 2026/05/05 12:0 a.m.•12 views

ROS-20260505-73-0058

Vulnerability in python3.12 related to insufficient neutralization of special elements in a request. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

5.9CVSS7.5AI score0.00463EPSS
Exploits0
Redos
Redos
•added 2026/03/24 12:0 a.m.•12 views

ROS-20260324-73-0023

A vulnerability in the dtpmcpu component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6AI score0.00146EPSS
Exploits0
Redos
Redos
•added 2026/03/13 12:0 a.m.•12 views

ROS-20260313-73-0040

A vulnerability in the nfconntrackfindget function of the Netfilter component of the Linux kernel is related to unrestricted resource allocation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00155EPSS
Exploits0
Redos
Redos
•added 2026/03/13 12:0 a.m.•12 views

ROS-20260313-73-0041

A vulnerability in the l2capsockresumecb function of the Bluetooth component of the Linux operating system kernel is related to post-release usage errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.3AI score0.00156EPSS
Exploits0
Redos
Redos
•added 2026/03/13 12:0 a.m.•12 views

ROS-20260313-73-0037

A vulnerability in the htblookupleaf function of the Linux kernel is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.3AI score0.00162EPSS
Exploits0
Redos
Redos
•added 2026/02/09 12:0 a.m.•12 views

ROS-20260209-73-0039

A vulnerability in the Agent component of the Zabbix IT infrastructure monitoring system is related to the use of an insecure search path. Exploitation of the vulnerability could allow an attacker to gain write access to arbitrary system files in the /home/cecuser directory...

5.8CVSS5.7AI score0.00103EPSS
Exploits0
Redos
Redos
•added 2026/01/29 12:0 a.m.•12 views

ROS-20260129-73-0022

Vulnerability in ImageMagick related to an operation exceeding buffer boundaries in memory. The vulnerability can be exploited remotely...

5.5CVSS6AI score0.00334EPSS
Exploits1
Redos
Redos
•added 2026/01/20 12:0 a.m.•12 views

ROS-20260120-7307

A vulnerability in the powerpc/code-patching component of the Linux operating system kernel is related to the allocation of unlimited memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.6AI score0.00209EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•12 views

ROS-20251128-07

Vulnerability of the vhostnewmsg function in the drivers/vhost/vhost.c module of the vhost driver of the Linux kernel is related to incorrect initialization of memory for messages transferred between guests. Linux kernel is related to incorrect memory initialization for messages transferred betwe...

5.5CVSS6.6AI score0.00236EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•12 views

ROS-20251125-03

WSGI server gunicorn vulnerability is related to flaws in HTTP request handling. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the existing security restrictions and execute an HTTP request smuggling attack...

7.5CVSS7AI score0.00738EPSS
Exploits0
Redos
Redos
•added 2025/09/29 12:0 a.m.•12 views

ROS-20250929-15

Vulnerability of modssl function of Apache HTTP Server web server is related to flaws in the procedure of authentication procedure when processing the SSLEngine optional parameter. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service using the TLS...

7.5CVSS6.7AI score0.04409EPSS
Exploits1
Redos
Redos
•added 2025/08/12 12:0 a.m.•12 views

ROS-20250812-08

Apache HTTP Server vulnerability is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to launch an SSRF attack Vulnerability in the modules/proxy/modproxy.c component of the Apache HTTP Server web server is related t...

8.1CVSS7.3AI score0.6795EPSS
Exploits2
Redos
Redos
•added 2025/07/03 12:0 a.m.•12 views

ROS-20250703-07

A vulnerability in the DevTools component of the Google Chrome browser is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the libvpx library of the Google Chrome and Microsoft Edge...

9.8CVSS8.3AI score0.10666EPSS
Exploits6
Redos
Redos
•added 2025/05/29 12:0 a.m.•12 views

ROS-20250529-01

A vulnerability in the phy component of the Linux kernel is related to the dereferencing of a NULL pointer in the spusbphyphyprobe function in drivers/phy/sunplus/phy-sunplus/phy-sunplus-usb2.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability...

7.8CVSS7.7AI score0.00265EPSS
Exploits0
Redos
Redos
•added 2025/04/09 12:0 a.m.•12 views

ROS-20250409-01

A vulnerability in the NFSD component of the Linux kernel is related to the dereferencing of a NULL pointer in the nfsd4processcbupdate function in fs/nfsd/nfs4callback.c. Exploitation of the vulnerability could allow an an attacker to cause a denial of service A vulnerability in the ALSA compone...

7.8CVSS7.5AI score0.03558EPSS
Exploits0
Redos
Redos
•added 2025/04/03 12:0 a.m.•12 views

ROS-20250403-02

A vulnerability in the QPDF PDF conversion command line utility is related to the creation of a .pdf file with the PlASCII85Decoder::write parameter in libqpdf. .pdf file with the PlASCII85Decoder::write parameter in libqpdf. Exploitation of the vulnerability could allow an attacker to execute...

5.3CVSS8.1AI score0.00503EPSS
Exploits1
Redos
Redos
•added 2025/04/02 12:0 a.m.•12 views

ROS-20250402-06

Vulnerability of pamsmauthenticate function of PAM-PKCS11 authentication module of Linux operating systems is related to authentication errors. Exploitation of the vulnerability could allow an attacker acting remotely, bypass the authentication procedure and gain unauthorized access to protected...

6.7CVSS7.3AI score0.00235EPSS
Exploits0
Redos
Redos
•added 2025/04/02 12:0 a.m.•12 views

ROS-20250402-02

A vulnerability in the WebTransport component of Mozilla Firefox, Firefox ESR and Thunderbird email client browsers is related to the possibility of memory usage after release. Thunderbird is related to the possibility of memory usage after release. Exploitation of the vulnerability could allow a...

9.8CVSS8.7AI score0.01196EPSS
Exploits1
Redos
Redos
•added 2025/04/02 12:0 a.m.•13 views

ROS-20250402-05

A vulnerability in the configuration implementation of the HTML cleanup tool for Rails Html Sanitizer applications is related to with insufficient cleaning of user-supplied data. Exploitation of the vulnerability could allow An attacker acting remotely could conduct cross-site scripting attacks...

6.1CVSS6.4AI score0.00581EPSS
Exploits0
Redos
Redos
•added 2025/03/26 12:0 a.m.•12 views

ROS-20250326-02

A vulnerability in the document-oriented MongoDB database management system is related to the lack of authorization checks. authorization checks. Exploitation of the vulnerability could allow a remote intruder gain unauthorized access to protected information...

6.5CVSS7AI score0.00376EPSS
Exploits0
Redos
Redos
•added 2025/03/11 12:0 a.m.•12 views

ROS-20250311-02

PQescapeLiteral, PQescapeIdentifier, PQescapeString and PQescapeStringConn functions are vulnerable to vulnerability libpq library of PostgreSQL database management system is related to failure to take measures to protect SQL query structure. Exploitation of the vulnerability could allow an...

8.1CVSS8.4AI score0.89472EPSS
Exploits10
Redos
Redos
•added 2025/03/07 12:0 a.m.•12 views

ROS-20250307-12

Nomad application orchestrator vulnerability related to customization of wildcard namespace usage. namespace. Exploitation of the vulnerability could allow an attacker acting remotely to bypass ACL policy by allowing reads from other namespaces. ACL policy by allowing reads from other namespaces...

7.1CVSS7.2AI score0.00412EPSS
Exploits0
Redos
Redos
•added 2025/02/19 12:0 a.m.•12 views

ROS-20250219-03

A vulnerability in the git-upload-pack method of the go-git library is related to argument injection or modification. Exploitation of the vulnerability could allow an attacker acting remotely to impact the confidentiality, integrity, and availability of protected information A vulnerability in th...

9.8CVSS8.9AI score0.03092EPSS
Exploits2
Redos
Redos
•added 2025/02/03 12:0 a.m.•12 views

ROS-20250203-13

A vulnerability in the Active Record component of the Ruby on Rails software platform is related to the possibility of injecting SQL code through comments. SQL code through comments. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code Vulnerability of...

8.8CVSS7.6AI score0.02153EPSS
Exploits2
Redos
Redos
•added 2025/02/03 12:0 a.m.•12 views

ROS-20250203-06

A vulnerability in the LibreOffice office suite is related to insufficient protection of proprietary data. Exploitation of the vulnerability could allow an attacker to disclose confidential information LibreOffice office suite vulnerability is related to incorrect path name restriction to a...

6.7CVSS6.8AI score0.00528EPSS
Exploits0
Total number of security vulnerabilities5000