Lucene search
K
RedosMost viewed

8181 matches found

Redos
Redos
•added 2025/11/25 12:0 a.m.•8 views

ROS-20251125-06

A vulnerability in the Moodle virtual learning environment is related to the disclosure of hidden group names to users, who have permission to create events in the calendar. Exploitation of the vulnerability could allow an attacker, acting remotely, to gain unauthorized access to protected...

6.5CVSS6.9AI score0.00246EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•8 views

ROS-20251125-01

A vulnerability in the cross-platform software development framework Qt is related to a bug in the data boundary checking when reading data from Bluetooth L2CAP socket in processUnsolicitedReply and processReply in bluetooth/qlowenergycontrollerbluez.cpp. Exploitation of the vulnerability could...

3.1CVSS7.9AI score0.00172EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•8 views

ROS-20251124-03

A vulnerability in the PHP programming language is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.9AI score0.00565EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•8 views

ROS-20251124-11

A vulnerability in the Libraries component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to impact data integrity...

7.5CVSS6.8AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/13 12:0 a.m.•8 views

ROS-20251113-04

The MinIO object storage server vulnerability is related to flaws in the authorization mechanism. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to escalate their privileges...

8.1CVSS6.8AI score0.00523EPSS
Exploits1
Redos
Redos
•added 2025/11/12 12:0 a.m.•8 views

ROS-20251112-04

The FreeIpa server vulnerability is related to the fact that the application does not check the canonical name root@REALM, which can also be used as a realm administrator name. Exploitation of the vulnerability could allow an attacker acting remotely to escalate privileges from the host level to...

9.1CVSS6.8AI score0.00523EPSS
Exploits0
Redos
Redos
•added 2025/11/11 12:0 a.m.•8 views

ROS-20251111-01

A vulnerability in the libxml2 library for manipulating XML and HTML files is related to uncontrolled recursion during the XPath computation in the xmlXPathRunEval function in xpath.c. Exploitation of the vulnerability could allow an an attacker to cause a denial of service A vulnerability in the...

6.2CVSS4.5AI score0.00144EPSS
Exploits1
Redos
Redos
•added 2025/11/11 12:0 a.m.•8 views

ROS-20251111-10

Vulnerability of processsymtab function of eu-readelf component of ELF Elfutils binary modification and analysis utility is related to copying buffer without checking input data size. ELF Elfutils is related to buffer copying without checking input data size. Exploitation vulnerability could allo...

7.8CVSS6.1AI score0.00327EPSS
Exploits3
Redos
Redos
•added 2025/11/10 12:0 a.m.•8 views

ROS-20251110-01

FFmpeg multimedia library vulnerability is related to null pointer dereferencing error in HLS playlists parsing. when parsing HLS playlists. Exploitation of the vulnerability could allow an attacker acting remotely, cause a denial of service A vulnerability in the audioelementobu function of the...

8.7CVSS6.8AI score0.00544EPSS
Exploits1
Redos
Redos
•added 2025/11/05 12:0 a.m.•8 views

ROS-20251105-07

The vulnerability of Microsoft .NET Framework, .NET software platforms, and Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Exploitation...

9.9CVSS6.7AI score0.66258EPSS
Exploits5
Redos
Redos
•added 2025/10/30 12:0 a.m.•8 views

ROS-20251030-10

A vulnerability in the qDecodeDataUrl function of the QtCore module of the Qt cross-platform development framework Qt software development framework is related to insufficient input data validation when processing the parameter charset. Exploitation of the vulnerability could allow an attacker...

8.4CVSS6.8AI score0.00309EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•8 views

ROS-20251030-06

A vulnerability in the Perl data structure to JSON conversion module Cpanel::JSON::XS is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code on the target system...

5.6CVSS7.2AI score0.00405EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•8 views

ROS-20251029-01

Gstreamer multimedia framework vulnerability is related to a buffer overflow on the stack. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS8.2AI score0.00734EPSS
Exploits0
Redos
Redos
•added 2025/10/23 12:0 a.m.•8 views

ROS-20251023-01

A vulnerability in the cifscomposemountoptions function of the fs/smb/client/cifsproto.h module of the SMB client support kernel of the Linux operating system is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a...

8.1CVSS7AI score0.00915EPSS
Exploits0
Redos
Redos
•added 2025/10/23 12:0 a.m.•8 views

ROS-20251023-02

Vulnerability of ip6makeskb function of net/ipv6/ip6output.c module of Linux kernel IPv6 protocol implementation is related to the use of uninitialized resource. of Linux operating system is related to the use of an uninitialized resource. Exploitation the vulnerability could allow an attacker to...

8.1CVSS7AI score0.00915EPSS
Exploits0
Redos
Redos
•added 2025/10/14 12:0 a.m.•8 views

ROS-20251014-05

A vulnerability in the interface of the Grafana monitoring and surveillance platform is related to the failure to take measures to protect the web page structure when processing the /swagger endpoint. web page structure when processing the /swagger endpoint. Exploitation of the vulnerability coul...

6AI score
Exploits0
Redos
Redos
•added 2025/09/29 12:0 a.m.•8 views

ROS-20250929-08

Intel processor firmware vulnerability is linked to information disclosure. Exploitation exploitation of the vulnerability could allow an intruder to gain unauthorized access to protected information A vulnerability in the cross-platform Xen hypervisor of the Linux operating system kernel is...

9.8CVSS8.2AI score0.00554EPSS
Exploits0
Redos
Redos
•added 2025/09/25 12:0 a.m.•8 views

ROS-20250925-05

A vulnerability in the NVIDIA GPU Display Driver is related to incorrect authorization authorization. Exploitation of the vulnerability could allow an attacker to gain elevated privileges on the system A vulnerability in the NVIDIA GPU Display Driver software driver is related to an operation tha...

8.2CVSS8.2AI score0.00338EPSS
Exploits0
Redos
Redos
•added 2025/09/24 12:0 a.m.•8 views

ROS-20250924-06

A vulnerability in the Django web application software platform is related to insufficient cleanup of the user data in FilteredRelation column aliases. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary SQL queries in the database A vulnerability in the...

8.1CVSS8.1AI score0.15602EPSS
Exploits4
Redos
Redos
•added 2025/09/11 12:0 a.m.•8 views

ROS-20250911-02

Vulnerability of the rterawcksummbuf function of the vhost library of the DPDK suite of libraries and drivers for fast packet processing is related to the operation exceeding the memory buffer boundary while processing the len parameter. DPDK packet processing is related to the operation exceedin...

7.4CVSS7.4AI score0.00551EPSS
Exploits0
Redos
Redos
•added 2025/09/05 12:0 a.m.•8 views

ROS-20250905-04

A vulnerability in the radosgw daemon of the Ceph data storage system is related to insufficient authentication of the when processing JWT tokens. Exploitation of the vulnerability could allow an intruder acting remotely to bypass the authentication procedure...

8.1CVSS7.2AI score0.00192EPSS
Exploits0
Redos
Redos
•added 2025/08/22 12:0 a.m.•8 views

ROS-20250822-07

Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...

7.5CVSS6.4AI score0.00693EPSS
Exploits0
Redos
Redos
•added 2025/08/22 12:0 a.m.•8 views

ROS-20250822-13

Vulnerability of HTTP/2 protocol implementation is related to the possibility of forming a stream of requests within an already established network connection without opening new network connections and without confirming receipt of requests. The vulnerability of the HTTP/2 protocol implementatio...

7.5CVSS7.9AI score0.99999EPSS
Exploits19
Redos
Redos
•added 2025/08/22 12:0 a.m.•8 views

ROS-20250822-22

A vulnerability in the PHP programming language interpreter is related to insufficient null byte checking in the implementation of the fsockopen function when handling hostnames. Exploitation of the vulnerability could allow an attacker acting remotely to perform SSRF attacks A vulnerability in t...

7.5CVSS7AI score0.00953EPSS
Exploits2
Redos
Redos
•added 2025/08/22 12:0 a.m.•8 views

ROS-20250822-09

The vulnerability of the package designed to work with JSON Web Tokens jwt-go is related to incorrect checking of the data when processing data transmitted via m"aud". Exploitation of the vulnerability could allow an attacker, acting remotely, to bypass the authentication process...

7.5CVSS6.2AI score0.02158EPSS
Exploits0
Redos
Redos
•added 2025/08/22 12:0 a.m.•8 views

ROS-20250822-24

A vulnerability in the PHP programming language interpreter is related to insufficient null byte checking in the implementation of the fsockopen function when handling hostnames. Exploitation of the vulnerability could allow an attacker acting remotely to perform SSRF attacks A vulnerability in t...

7.5CVSS7AI score0.00953EPSS
Exploits2
Redos
Redos
•added 2025/08/19 12:0 a.m.•8 views

ROS-20250819-06

Vulnerability of TarFile.extractall and TarFile.extract functions of tarfile module of Python programming language interpreter CPython is related to incorrect restriction of path name of restricted directory. Python programming language interpreter CPython functions TarFile.extractall and...

9.4CVSS5.9AI score0.01184EPSS
Exploits11
Redos
Redos
•added 2025/08/19 12:0 a.m.•8 views

ROS-20250819-05

Vulnerability of TarFile.extractall and TarFile.extract functions of tarfile module of Python programming language interpreter CPython is related to incorrect restriction of path name of restricted directory. Python programming language interpreter CPython functions TarFile.extractall and...

9.4CVSS5.9AI score0.01184EPSS
Exploits11
Redos
Redos
•added 2025/08/13 12:0 a.m.•8 views

ROS-20250813-07

A vulnerability in the Java dnsjava DNS implementation is related to incorrect response checking during processing of DNS queries. Exploitation of the vulnerability could allow a remote attacker to bypass the implemented security restrictions. enforced security restrictions...

8.9CVSS7.4AI score0.00392EPSS
Exploits0
Redos
Redos
•added 2025/08/08 12:0 a.m.•8 views

ROS-20250808-03

A vulnerability in the Networking component of the Oracle Java SE software platform and Oracle Virtual Machine GraalVM Enterprise Edition is related to access control weaknesses. Exploitation of the vulnerability could allow a remote intruder to gain unauthorized access to protected information...

8.6CVSS7.1AI score0.00501EPSS
Exploits0
Redos
Redos
•added 2025/08/07 12:0 a.m.•8 views

ROS-20250807-04

Git distributed version control system vulnerability in software development tools Microsoft Visual Studio is related to the use of an unreliable search path when spell checking of cloned repositories. Exploitation of the vulnerability could allow an attacker to execute arbitrary code when clonin...

8.6CVSS8AI score0.02775EPSS
Exploits10
Redos
Redos
•added 2025/08/06 12:0 a.m.•8 views

ROS-20250806-12

A vulnerability in the mtr network diagnostic tool is related to improper handling of an item specified in the MTRPACKET environment variable. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

7.8CVSS6.1AI score0.00142EPSS
Exploits0
Redos
Redos
•added 2025/08/06 12:0 a.m.•8 views

ROS-20250806-11

A vulnerability in the HTTP Requests library of the Python Requests programming language is related to insufficient protection of registration data. inadequate protection of login credentials. Exploitation of the vulnerability could allow an attacker acting remotely to gain unauthorized access to...

5.3CVSS4AI score0.00846EPSS
Exploits1
Redos
Redos
•added 2025/08/04 12:0 a.m.•8 views

ROS-20250804-03

Vulnerability of NCompress::NRar5::CDecoder method of RAR5 decoder of 7-Zip archiver is related to possibility of heap-based buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service Vulnerability of NArchive::NCom::CHandler::GetStream metho...

7.5CVSS6.3AI score0.00635EPSS
Exploits2
Redos
Redos
•added 2025/08/04 12:0 a.m.•8 views

ROS-20250804-04

Vulnerability of the vsockremovesock function of the net/vmwvsock/afvsock.c module of the Linux kernel network functions implementation of Linux operating system is related to reuse of previously freed memory. Exploitation exploitation of the vulnerability could allow an intruder to affect the...

7.8CVSS7.5AI score0.00844EPSS
Exploits3
Redos
Redos
•added 2025/07/24 12:0 a.m.•8 views

ROS-20250724-04

The vulnerability of the fstrflocaltime function of the jq functional programming language is related to the use of memory after its release. memory after it has been freed. Exploitation of the vulnerability could allow an attacker acting remotely, affect the availability of protected information...

8.1CVSS5.9AI score0.00352EPSS
Exploits1
Redos
Redos
•added 2025/07/24 12:0 a.m.•8 views

ROS-20250724-01

Vulnerability of amdgpucswaitallfences function in drivers/gpu/drm/amd/amdgpu/amdgpucs.c driver module amdgpu of AMD Radeon video cards in the Linux kernel is related to the reuse of previously released memory due to competitive access to the resource race condition. Exploitation of the...

7.8CVSS7AI score0.00319EPSS
Exploits0
Redos
Redos
•added 2025/07/24 12:0 a.m.•8 views

ROS-20250724-11

Vulnerability in Apache HTTP Server web server kernel is related to access control bypass with resume session resumption in modssl. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the enforced security restrictions...

9.1CVSS6.1AI score0.0097EPSS
Exploits1
Redos
Redos
•added 2025/07/17 12:0 a.m.•8 views

ROS-20250717-02

Vulnerability of the auxiliary ticket escalation tool in the Escalade GLPI plugin is related to incorrect access controls. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive information...

6.5CVSS7.2AI score0.00242EPSS
Exploits0
Redos
Redos
•added 2025/07/10 12:0 a.m.•8 views

ROS-20250710-08

A vulnerability in the OpenWire command handler of the Apache ActiveMQ software platform is related to a lack of control over user input. control over user input. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by sending specially crafted...

7.5CVSS6.2AI score0.08594EPSS
Exploits2
Redos
Redos
•added 2025/07/10 12:0 a.m.•8 views

ROS-20250710-14

Apache Tomcat application server vulnerability is related to unrestricted resource allocation. Exploitation of the vulnerability could allow a remote attacker to cause a denial of service...

7.5CVSS7.3AI score0.53228EPSS
Exploits1
Redos
Redos
•added 2025/07/07 12:0 a.m.•8 views

ROS-20250707-06

Vulnerability of the sudo system administration program is related to insufficient implementation of security measures when running sudo with the -h option --host. security measures when sudo is run with the -h --host option. Exploiting the vulnerability could allow an attacker to elevate their...

9.3CVSS9.9AI score0.47467EPSS
Exploits77
Redos
Redos
•added 2025/07/03 12:0 a.m.•8 views

ROS-20250703-02

A vulnerability in the Go programming language is related to improper syntax correctness checking of input. Exploitation of the vulnerability allows an attacker acting remotely to cause a denial of service...

7.5CVSS7AI score0.00804EPSS
Exploits0
Redos
Redos
•added 2025/06/25 12:0 a.m.•8 views

ROS-20250625-09

A vulnerability in the Apache Commons Configuration library is related to mismanagement of code generation. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using specially crafted script, dns, and url requests. using specially crafted script, dn...

9.8CVSS6.4AI score0.42646EPSS
Exploits3
Redos
Redos
•added 2025/06/24 12:0 a.m.•8 views

ROS-20250624-11

A vulnerability in the Perl data structure to JSON conversion module Cpanel::JSON::XS is related to access beyond the beyond the allocated memory buffer, acting remotely, obtaining sensitive information or cause a denial of service...

9.1CVSS9.2AI score0.00788EPSS
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•8 views

ROS-2-197

2.197 Notification on updating of the Anti-Malware Protection System "RED OS" No. RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need t...

7AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•8 views

ROS-2-157

2.157 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•8 views

ROS-2-395

2.395 Notification on update of the Red OS OPERATION SYSTEM RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a standard...

7AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•8 views

ROS-2-742

2.742 Notification on update of the Red OS OPERATION SYSTEM RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a standard...

7AI score
Exploits0
Redos
Redos
•added 2025/05/13 12:0 a.m.•8 views

ROS-2-162

2.162 Notification on update of the RAND OPERATION SYSTEM "RED OS" RU.29926343.02.01-01-24 RED SOFT LLC notifies about the completion of the testing procedure and release of the updated RED OS 7.3 distribution. In order to update your copy of RED OS to the current state, you need to perform a...

7.1AI score
Exploits0
Total number of security vulnerabilities5000