Lucene search
K
RedosMost viewed

8162 matches found

Redos
Redos
•added 2026/02/20 12:0 a.m.•9 views

ROS-20260220-73-0002

A vulnerability in the skbsendsock function of the BPF component of the Linux kernel is related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7.1AI score0.00154EPSS
Exploits0
Redos
Redos
•added 2026/02/16 12:0 a.m.•9 views

ROS-20260216-73-0026

A vulnerability in the JavaFX component of the Oracle Java SE software platform is related to an operation exceeding buffer boundaries. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read, modify, or delete data...

3.1CVSS5.8AI score0.00204EPSS
Exploits0
Redos
Redos
•added 2026/02/16 12:0 a.m.•9 views

ROS-20260216-73-0034

A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...

6.1CVSS5.6AI score0.00261EPSS
Exploits1
Redos
Redos
•added 2026/02/16 12:0 a.m.•9 views

ROS-20260216-73-0039

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...

7.5CVSS5.6AI score0.00864EPSS
Exploits0
Redos
Redos
•added 2026/02/16 12:0 a.m.•9 views

ROS-20260216-73-0033

A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...

6.1CVSS5.6AI score0.00261EPSS
Exploits1
Redos
Redos
•added 2026/02/16 12:0 a.m.•9 views

ROS-20260216-73-0042

A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...

7.5CVSS5.6AI score0.00864EPSS
Exploits0
Redos
Redos
•added 2026/02/09 12:0 a.m.•9 views

ROS-20260209-73-0041

A vulnerability in the Agent component of the Zabbix IT infrastructure monitoring system is related to the use of an insecure search path. Exploitation of the vulnerability could allow an attacker to gain write access to arbitrary system files in the /home/cecuser directory...

5.8CVSS5.7AI score0.00103EPSS
Exploits0
Redos
Redos
•added 2026/02/09 12:0 a.m.•9 views

ROS-20260209-73-0036

Vulnerability in pgbouncer related to the use of an insecure search path. Exploitation of the vulnerability could allow an attacker to escalate their privileges...

8.1CVSS5.6AI score0.00327EPSS
Exploits0
Redos
Redos
•added 2026/02/09 12:0 a.m.•9 views

ROS-20260209-73-0027

A vulnerability in the encoding/asn1 component of the Go programming language is related to a lack of memory release after an effective lifetime. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS5.6AI score0.00526EPSS
Exploits0
Redos
Redos
•added 2026/02/05 12:0 a.m.•9 views

ROS-20260205-73-0033

A vulnerability in the currentpasswordstore function of the dell-wmi-sysman driver of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7.3AI score0.00183EPSS
Exploits0
Redos
Redos
•added 2026/02/05 12:0 a.m.•9 views

ROS-20260205-73-0028

A vulnerability in the crypto, lzo modules of the Linux kernel is related to buffer copying without input data validation. Exploitation of the vulnerability may allow an attacker to violate data integrity and also cause a denial of service...

7.8CVSS7.4AI score0.00154EPSS
Exploits0
Redos
Redos
•added 2026/02/05 12:0 a.m.•9 views

ROS-20260205-73-0016

A vulnerability in the drivers/media/usb/cx231xx/cx231xx-417.c module of the Linux kernel is related to incorrect management of resource identifiers. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.1AI score0.00172EPSS
Exploits0
Redos
Redos
•added 2026/02/02 12:0 a.m.•9 views

ROS-20260202-73-0043

A vulnerability in the dispc.c component of the Linux operating system kernel is related to memory initialization errors. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its integrity, and cause denial of service...

5.5CVSS5.5AI score0.00232EPSS
Exploits0
Redos
Redos
•added 2026/02/02 12:0 a.m.•9 views

ROS-20260202-73-0050

A vulnerability in the chip.c component of the Linux operating system kernel is related to a flaw in the data type conversion mechanism. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.5AI score0.00225EPSS
Exploits0
Redos
Redos
•added 2026/02/02 12:0 a.m.•9 views

ROS-20260202-73-0053

A vulnerability in the p9clientwrite function of the 9p/net component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.1CVSS5.4AI score0.00231EPSS
Exploits0
Redos
Redos
•added 2026/01/29 12:0 a.m.•9 views

ROS-20260129-73-0042

A vulnerability in the libpq library of the PostgreSQL database management system is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.9CVSS6AI score0.00307EPSS
Exploits0
Redos
Redos
•added 2026/01/29 12:0 a.m.•9 views

ROS-20260129-73-0063

The vulnerability in the Go programming language is related to a flaw in the authorization procedure. Exploitation of the vulnerability allows an attacker acting remotely to affect the confidentiality and integrity of protected information...

6.5CVSS5.9AI score0.00274EPSS
Exploits0
Redos
Redos
•added 2026/01/29 12:0 a.m.•9 views

ROS-20260129-73-0075

A vulnerability in the HTTP/2 protocol implementation is related to the ability to generate a stream of requests within an already established network connection, without opening new network connections and without acknowledging the receipt of packets. Exploitation of the vulnerability could allo...

7.5CVSS5.9AI score0.99999EPSS
Exploits19
Redos
Redos
•added 2026/01/26 12:0 a.m.•9 views

ROS-20260126-73-0056

A vulnerability in the krbauthenticate function of the fs/smb/server/smb2pdu.c module of the Linux operating system kernel is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7.2AI score0.00485EPSS
Exploits0
Redos
Redos
•added 2026/01/22 12:0 a.m.•9 views

ROS-20260122-73-0006

Vulnerability in python-sentry-sdk related to bypassing the authentication procedure by using an alternate path or channel. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

7.5CVSS5.6AI score0.00672EPSS
Exploits0
Redos
Redos
•added 2026/01/22 12:0 a.m.•9 views

ROS-20260122-73-0004

Vulnerability in python-sentry-sdk related to a flaw in the error reporting mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...

5.3CVSS5.6AI score0.00628EPSS
Exploits0
Redos
Redos
•added 2026/01/20 12:0 a.m.•9 views

ROS-20260120-7319

Vulnerability in kernel-lt related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.7AI score0.00138EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•9 views

ROS-20260119-7355

A vulnerability in the ovsvportcmdfillinfo function of the net/openvswitch/datapath.c module of the Open vSwitch router support module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integri...

7.8CVSS7.8AI score0.00232EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•9 views

ROS-20260119-7367

A vulnerability in the ax25setsockopt function of the net/ax25/afax25.c component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.8AI score0.00213EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•9 views

ROS-20260119-7309

A vulnerability in the net/sched/schsfq.c component of the Linux operating system kernel is related to unchecked array indexing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS7.9AI score0.00229EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•9 views

ROS-20260119-7325

A vulnerability in the padatareorder function of the kernel/padata.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...

7.8CVSS7.8AI score0.0021EPSS
Exploits0
Redos
Redos
•added 2026/01/19 12:0 a.m.•9 views

ROS-20260119-7370

A vulnerability in the tegraemcfindnodebyramcode function of the drivers/memory/tegra/tegra20-emc.c component of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its...

7.8CVSS7.6AI score0.00222EPSS
Exploits0
Redos
Redos
•added 2026/01/14 12:0 a.m.•9 views

ROS-20260114-7302

A vulnerability in the rfcommsockalloc function of the net/bluetooth/rfcomm/sock.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...

7.8CVSS8.8AI score0.00219EPSS
Exploits0
Redos
Redos
•added 2026/01/13 12:0 a.m.•9 views

ROS-20260113-7381

A vulnerability in the drivers/nvme/host/tcp.c component of the Linux operating system kernel is related to simultaneous execution using a shared resource with improper synchronization. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

4.7CVSS6.6AI score0.00161EPSS
Exploits0
Redos
Redos
•added 2026/01/13 12:0 a.m.•9 views

ROS-20260113-7347

A vulnerability in the linkdestruct function in the drivers/gpu/drm/amd/display/dc/link/linkfactory.c module of the amdgpu driver of the Linux kernel is related to the re-release of previously freed memory. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,...

7.8CVSS6.5AI score0.00247EPSS
Exploits0
Redos
Redos
•added 2026/01/13 12:0 a.m.•9 views

ROS-20260113-7360

A vulnerability in the drivers/gpu/drm/amd/display component of the Linux operating system kernel is related to synchronization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.5AI score0.00233EPSS
Exploits0
Redos
Redos
•added 2026/01/12 12:0 a.m.•9 views

ROS-20260112-7315

A vulnerability in the fecsetmacaddress function of the drivers/net/ethernet/freescale/fecmain.c module of the Linux operating system kernel is related to insufficient resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.3AI score0.00193EPSS
Exploits0
Redos
Redos
•added 2025/12/26 12:0 a.m.•9 views

ROS-20251226-7307

A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of insecure mechanisms for processing authentication data in the operating system memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

6.5CVSS7.7AI score0.0021EPSS
Exploits0
Redos
Redos
•added 2025/12/17 12:0 a.m.•9 views

ROS-20251217-7315

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...

8.8CVSS6.4AI score0.00219EPSS
Exploits0
Redos
Redos
•added 2025/12/15 12:0 a.m.•9 views

ROS-20251215-7307

A vulnerability in the GNU Wget download manager is related to insufficient server-side request validation. Exploitation of the vulnerability could allow a remote attacker to perform an SSRF, phishing or man-in-the-middle attack...

6.5CVSS6.9AI score0.0111EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•9 views

ROS-20251203-19

Vulnerability in the Ruby programming language library that implements the MQTT protocol Rubygem MQTT is related to the lack of hostname validation. Exploitation of the vulnerability could allow A remote attacker to perform a man-in-the-middle attack...

7.4CVSS6.6AI score0.00343EPSS
Exploits0
Redos
Redos
•added 2025/12/01 12:0 a.m.•9 views

ROS-20251201-02

A vulnerability in the vfsinode.c component of the Linux kernel is related to the use of an uninitialized resource. of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the llcpsock.c component of the Lin...

7.1CVSS6.7AI score0.0025EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•9 views

ROS-20251128-02

A vulnerability in OpenBao's secret management and encryption system is related to the fact that OpenBao's audit logs incorrectly edited fields when the corresponding subsystems sent byte response parameters rather than strings. strings. Exploitation of the vulnerability could allow an attacker...

5.7CVSS6.8AI score0.00299EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•9 views

ROS-20251125-04

A vulnerability in OpenBao's secret management and encryption system is related to the fact that the software stores sensitive information in log files. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to confidential information...

7.5CVSS6.8AI score0.00286EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•9 views

ROS-20251125-08

Apache Tomcat application server vulnerability is related to incorrect resource release. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Apache Tomcat application server vulnerability is associated with failure to take measures to...

9.6CVSS7.5AI score0.66535EPSS
Exploits4
Redos
Redos
•added 2025/11/25 12:0 a.m.•9 views

ROS-20251125-12

Vulnerability of QuerySet and Q objects of Django web application development platform is related to failure to take measures to protect the SQL query structure when processing an argument with the connector keyword. Exploitation of the vulnerability could allow an attacker acting remotely to...

9.1CVSS7.1AI score0.19396EPSS
Exploits10
Redos
Redos
•added 2025/11/17 12:0 a.m.•9 views

ROS-20251117-08

Vulnerability of the ksmbdexpiresession function in the fs/smb/server/mgmt/usersession.c module of the in-core CIFS/SMB3 ksmbd server kernel of the Linux operating system is related to reuse of previously of previously freed memory. Exploitation of the vulnerability could allow an attacker to...

7.8CVSS8.1AI score0.00267EPSS
Exploits0
Redos
Redos
•added 2025/11/17 12:0 a.m.•9 views

ROS-20251117-04

A vulnerability in the LXD container and lightweight virtual machine management system is related to redundant API data output. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to potentially sensitive information The vulnerability in the LXD container and...

8.8CVSS7.1AI score0.00541EPSS
Exploits9
Redos
Redos
•added 2025/10/21 12:0 a.m.•9 views

ROS-20251021-01

The vulnerability of the parisc component of the Linux kernel is related to incorrect error handling in the fixupexception function in arch/parisc/mm/fault.c, as well as in emulateldh, emulateldw, emulateldd, emulatesth, emulatestw, and emulatestd in arch/parisc/kernel/unaligned.c. Exploitation o...

7.8CVSS8.3AI score0.00276EPSS
Exploits0
Redos
Redos
•added 2025/10/16 12:0 a.m.•9 views

ROS-20251016-04

Vulnerability of X509VERIFYPARAMadd0policy function of OpenSSL library is related to errors in the procedure of of certificate authentication. Exploitation of the vulnerability could allow an attacker acting remotely to perform a "man-in-the-middle" type of attack. remotely to perform a...

9.8CVSS9.4AI score0.87816EPSS
Exploits4
Redos
Redos
•added 2025/09/25 12:0 a.m.•9 views

ROS-20250925-04

Vulnerability of TarFile.extractall and TarFile.extract functions of tarfile module of Python programming language interpreter CPython is related to incorrect restriction of path name of the directory with restricted directory. Python programming language interpreter CPython functions...

9.4CVSS6.5AI score0.01184EPSS
Exploits14
Redos
Redos
•added 2025/08/21 12:0 a.m.•9 views

ROS-20250821-08

A vulnerability in the TCPDF PHP library is related to reading arbitrary files from the server's file system via the src tag. Exploitation of the vulnerability could allow an attacker to gain access to sensitive information. information Vulnerability in TCPDF PHP library is related to improper...

7.5CVSS8.4AI score0.01325EPSS
Exploits3
Redos
Redos
•added 2025/08/13 12:0 a.m.•9 views

ROS-20250813-11

A vulnerability in the SMM component of AMD GPU firmware is related to incorrect processing of some special address ranges with invalid entries in the device table DTE. device table entries DTE. Exploitation of the vulnerability could allow an attacker to escalate privileges on the system A...

10CVSS7.9AI score0.00622EPSS
Exploits2
Redos
Redos
•added 2025/08/06 12:0 a.m.•9 views

ROS-20250806-01

Squid proxy server vulnerability is related to buffer overflow in dynamic memory when processing URN headers. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by sending specially crafted HTTP requests. arbitrary code by sending specially crafted HTTP...

9.8CVSS7.7AI score0.22744EPSS
Exploits1
Redos
Redos
•added 2025/07/24 12:0 a.m.•9 views

ROS-20250724-06

A vulnerability in the Ruby websocket-extensions module that supports the implementation of WebSocket extensions is related to spending quadratic time parsing a header containing an unclosed string parameter value, which is a repeating two-byte sequence of backslash and some of backslash and some...

7.5CVSS7.4AI score0.04404EPSS
Exploits1
Total number of security vulnerabilities5000