Lucene search
K
RedosMost viewed

8244 matches found

Redos
Redos
•added 2026/01/12 12:0 a.m.•7 views

ROS-20260112-7320

A vulnerability in the drivers/media/i2c/et8ek8/et8ek8 component of the Linux kernel is associated with a resource leak. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data and cause a denial of service...

5.5CVSS7.1AI score0.00215EPSS
Exploits0
Redos
Redos
•added 2026/01/12 12:0 a.m.•7 views

ROS-20260112-7319

A vulnerability in the ax25addrax25dev function of module net/ax25/ax25dev.c of the Linux operating system kernel is related to resource leakage. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.9AI score0.00212EPSS
Exploits0
Redos
Redos
•added 2026/01/12 12:0 a.m.•7 views

ROS-20260112-7314

A vulnerability in the dmirrordeviceevictchunk function of the lib/testhmm.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.9AI score0.00241EPSS
Exploits0
Redos
Redos
•added 2026/01/12 12:0 a.m.•7 views

ROS-20260112-7305

A vulnerability in the genradixiterpeek function of the include/linux/generic-radix-tree.h module of the Linux operating system kernel is related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.3AI score0.00241EPSS
Exploits0
Redos
Redos
•added 2025/12/26 12:0 a.m.•7 views

ROS-20251226-7306

A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to information disclosure. Exploitation of the vulnerability could allow a remote attacker to disclose protected information...

9.8CVSS6.3AI score0.00385EPSS
Exploits0
Redos
Redos
•added 2025/12/26 12:0 a.m.•7 views

ROS-20251226-7302

A vulnerability in the Twisted network framework is related to the failure to take measures to protect the structure of a web page. Exploitation of the vulnerability allows a remote attacker to gain access to sensitive data and compromise its integrity...

5.4CVSS5.9AI score0.01156EPSS
Exploits1
Redos
Redos
•added 2025/12/26 12:0 a.m.•7 views

ROS-20251226-7303

A vulnerability in the twisted.web.util.redirectTo function of the Twisted networking framework is related to the failure to take measures to protect the structure of a web page. Exploitation of the vulnerability could allow a remote attacker to gain access to sensitive data and compromise its...

6.1CVSS6AI score0.01109EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7314

A vulnerability in the Snapshot/Restore commands of the AdminServer component of the centralized service for maintaining configuration information, naming, providing distributed synchronization, and provisioning Apache ZooKeeper group services is related to incorrect handling of insufficient...

4.3CVSS7.7AI score0.00294EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7313

Vulnerability in iputils related to integer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

6.5CVSS6.8AI score0.00322EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7307

Vulnerability in python3 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

4.3CVSS6.7AI score0.00353EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7309

Vulnerability in python3.11 related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

4.3CVSS6.7AI score0.00353EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7301

Vulnerability in ImageMagick related to memory re-release bug. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

6.1CVSS6.6AI score0.00142EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7320

Vulnerability in jenkins related to unencrypted storage of credentials. Exploitation of the vulnerability may allow an attacker to gain unauthorized access to protected information...

4.3CVSS6.8AI score0.00134EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7318

Vulnerability in jenkins related to a flaw in the authorization procedure. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS6.9AI score0.00208EPSS
Exploits0
Redos
Redos
•added 2025/12/23 12:0 a.m.•7 views

ROS-20251223-7323

A vulnerability in the urllib.parse.urlsplit and urlparse functions of the Python programming language interpreter is related to insufficient validation of incoming requests. Exploitation of the vulnerability could allow an attacker acting remotely to affect data integrity...

6.3CVSS6.8AI score0.0067EPSS
Exploits0
Redos
Redos
•added 2025/12/19 12:0 a.m.•7 views

ROS-20251219-7304

Vulnerability in mongodb-org related to flaws in authorization procedure. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

6.5CVSS6.9AI score0.00192EPSS
Exploits0
Redos
Redos
•added 2025/12/19 12:0 a.m.•7 views

ROS-20251219-7302

Vulnerability in chromium is related to speculative race conditions that can lead to access to already freed memory areas in case of incorrect prediction of code branches by the processor. Exploitation of the vulnerability could allow an attacker to access protected memory from a program without...

4.7CVSS7.1AI score0.00168EPSS
Exploits0
Redos
Redos
•added 2025/12/17 12:0 a.m.•7 views

ROS-20251217-7312

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code using a specially crafted HTML page...

8.8CVSS7.5AI score0.04835EPSS
Exploits1
Redos
Redos
•added 2025/12/17 12:0 a.m.•7 views

ROS-20251217-7310

A vulnerability in Mozilla Firefox and Firefox ESR browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to conduct spoofing attacks...

3.4CVSS6.5AI score0.00226EPSS
Exploits0
Redos
Redos
•added 2025/12/16 12:0 a.m.•7 views

ROS-20251216-7358

A vulnerability in the Extensions component of Google Chrome and Microsoft Edge browsers is related to flaws in the implementation of security checks for standard elements. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...

6.5CVSS6.5AI score0.0017EPSS
Exploits0
Redos
Redos
•added 2025/12/16 12:0 a.m.•7 views

ROS-20251216-7335

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to access control flaws. Exploitation of the vulnerability could allow an attacker to gain full control over the application...

8.2CVSS7AI score0.00187EPSS
Exploits0
Redos
Redos
•added 2025/12/16 12:0 a.m.•7 views

ROS-20251216-7320

Vulnerability in virtualbox-guest-additions related to insecure privilege management. Exploitation of the vulnerability could allow an attacker to escalate privileges...

6.5CVSS7.1AI score0.00176EPSS
Exploits0
Redos
Redos
•added 2025/12/16 12:0 a.m.•7 views

ROS-20251216-7360

A vulnerability in the V8 JavaScript script handler of Google Chrome and Microsoft Edge browsers is related to errors in the implementation of security checks for standard elements. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...

4.3CVSS6.6AI score0.0025EPSS
Exploits0
Redos
Redos
•added 2025/12/16 12:0 a.m.•7 views

ROS-20251216-7362

A vulnerability in the Omnibox component of Google Chrome and Microsoft Edge browsers is related to information presentation errors in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely to spoof the user interface using a specially crafted HTML page...

5.4CVSS6.2AI score0.0022EPSS
Exploits0
Redos
Redos
•added 2025/12/15 12:0 a.m.•7 views

ROS-20251215-7305

A vulnerability in the net component of the Go programming language is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.9CVSS6.9AI score0.01001EPSS
Exploits0
Redos
Redos
•added 2025/12/15 12:0 a.m.•7 views

ROS-20251215-7302

A vulnerability in the net/sched/schhfsc.c component of the Linux kernel is associated with the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its integrity, and cause a denial of servi...

5.5CVSS8.3AI score0.00369EPSS
Exploits3
Redos
Redos
•added 2025/12/03 12:0 a.m.•7 views

ROS-20251203-06

A vulnerability in Varnish web content caching software is related to incorrect HTTP/1 requests HTTP/1 request validation. Exploitation of the vulnerability could allow a remote attacker, Perform HTTP request spoofing attacks...

5.4CVSS5.7AI score0.003EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•7 views

ROS-20251203-17

Vulnerabilities in GLPI's computer hardware request, incident, and inventory system are related to insufficient cleansing of user-supplied data. Exploitation of the vulnerability could allow A remote attacker to use malicious code to steal recipient credentials mail...

7.5CVSS7AI score0.06576EPSS
Exploits0
Redos
Redos
•added 2025/12/03 12:0 a.m.•7 views

ROS-20251203-08

The aiohttp HTTP client vulnerability is related to the fact that the final sections of an HTTP request are not analyzed. Exploitation of the vulnerability could allow an attacker acting remotely to perform spoofing attacks on HTTP requests. HTTP requests...

7.5CVSS7.5AI score0.00297EPSS
Exploits0
Redos
Redos
•added 2025/12/02 12:0 a.m.•7 views

ROS-20251202-09

A vulnerability in the Fullscreen component of the Google Chrome browser is related to presentation errors in the user interface in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely, spoof the user interface using a specially crafted HTML page...

4.3CVSS6.6AI score0.0018EPSS
Exploits1
Redos
Redos
•added 2025/12/02 12:0 a.m.•7 views

ROS-20251202-06

A vulnerability in the Autofill component of the Google Chrome browser is related to presentation errors in the user interface user interface. Exploitation of the vulnerability could allow an attacker acting remotely, spoof the user interface using a specially crafted HTML page...

4.3CVSS6.6AI score0.00171EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-02

Vulnerability of the software tool for implementing network routing on Unix-like systems FRRouting is related to insufficient validation of OSPF LSA packets in the ospfteparsete function in ospfd/ospfte.c. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial...

6.5CVSS6.7AI score0.0032EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-10

The Kea open source DHCP server vulnerability is related to the use of a pointer offset outside the range. Exploitation of the vulnerability could allow an attacker to escalate privileges on the system...

7.5CVSS7.1AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-14

A vulnerability in the Security component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read,...

7.5CVSS6.7AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-12

A vulnerability in the Security component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read,...

7.5CVSS6.7AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/17 12:0 a.m.•7 views

ROS-20251117-07

A vulnerability in the recv function of the tls component of the Linux kernel is related to an inaccessible exit condition. exit. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

5.5CVSS6.8AI score0.00175EPSS
Exploits2
Redos
Redos
•added 2025/11/13 12:0 a.m.•7 views

ROS-20251113-07

The BIND DNS server vulnerability is related to a pseudo-random number generator PRNG vulnerability. Exploitation exploitation of the vulnerability could allow a remote attacker to compromise the integrity of data in the DNS system A vulnerability in the BIND DNS server is related to the loading ...

8.6CVSS5.5AI score0.1096EPSS
Exploits1
Redos
Redos
•added 2025/11/12 12:0 a.m.•7 views

ROS-20251112-01

Squid proxy server vulnerability related to data boundary checking errors during encoding processing ASN.1 long SNMP OIDs in asnbuildobjid function in lib/snmplib/asn1.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service Vulnerability of emailerrdata...

10CVSS6.5AI score0.6332EPSS
Exploits2
Redos
Redos
•added 2025/11/11 12:0 a.m.•7 views

ROS-20251111-08

A vulnerability in the Python module that provides an interface to c-ares pycares is related to an error in the use of memory after release, caused by incorrect handling of callback references when destroying the Channel object. Exploitation of the vulnerability could allow an attacker acting...

8.2CVSS6.5AI score0.00389EPSS
Exploits0
Redos
Redos
•added 2025/11/10 12:0 a.m.•7 views

ROS-20251110-02

A vulnerability in the 7-Zip file archiver is related to incorrect symbolic link detection before file access. before accessing a file. Exploitation of the vulnerability could allow an attacker to execute arbitrary code if a user opens a specially crafted ZIP archive. provided the user opens a...

7.8CVSS7.6AI score0.27017EPSS
Exploits11
Redos
Redos
•added 2025/11/06 12:0 a.m.•7 views

ROS-20251106-01

The vulnerability in the Portainer container management platform is related to a vulnerability in the server side, API, registry list output logic, and/or a component that returned fields with secrets. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to...

8.8CVSS7AI score0.00244EPSS
Exploits0
Redos
Redos
•added 2025/11/06 12:0 a.m.•7 views

ROS-20251106-08

A vulnerability in the Gstreamer multimedia framework is related to a null pointer dereferencing bug in the SubRip subtitle parser. SubRip subtitle parser. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service Gstreamer multimedia framework vulnerability...

5.6CVSS7AI score0.00428EPSS
Exploits3
Redos
Redos
•added 2025/10/30 12:0 a.m.•7 views

ROS-20251030-05

Vulnerability of Erlang programming language OTP library set is related to incorrect checking of ZIP archives in "zip:unzip/1,2" and "zip:extract/1,2" procedures of Erlang/OTP standard library ZIP archives in the "zip:unzip/1,2" and "zip:extract/1,2" procedures of the Erlang/OTP standard library...

7.1CVSS7.3AI score0.00442EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•7 views

ROS-20251029-04

A plug-in vulnerability in the Grafana-Zabbix web-based data submission tool is related to maximum CPU utilization. Exploitation of the vulnerability could allow an attacker due to a custom request with a regular expression, acting remotely, to cause a denial of service...

4.3CVSS6.7AI score0.00323EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•7 views

ROS-20251029-02

The vulnerability in the RabbitMQ messaging and streaming broker is due to the fact that the software stores sensitive information in log files. Exploitation of the vulnerability could allow an attacker to gain access to sensitive information...

6.7CVSS6.8AI score0.00194EPSS
Exploits1
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-07

A vulnerability in the library commands for Exiv2 media file metadata management is related to the following quadratic algorithm in the ICC profile analysis code in jpegBase::readMetadata can lead to a prolonged Exiv2. Exploitation of the vulnerability could allow an attacker to cause a denial of...

5.5CVSS7.1AI score0.00226EPSS
Exploits1
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-11

A vulnerability in the NVIDIA Container Toolkit container creation and launch software and the NVIDIA GPU Operator resource management software is associated with synchronization errors. NVIDIA GPU Operator resource management software is associated with synchronization errors when using a shared...

9CVSS8AI score0.37055EPSS
Exploits7
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-09

A vulnerability in the Java library for JSON-lib bean-component conversion is related to improper handling unbalanced comment strings. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service...

5.3CVSS6.8AI score0.15413EPSS
Exploits0
Redos
Redos
•added 2025/10/27 12:0 a.m.•7 views

ROS-20251027-02

A vulnerability in the NVIDIA CUDA GPU parallel computing software toolkit is related to insufficient validation of user input data. Toolkit is related to insufficient verification of user input in the command line tool nvdisasm. Exploitation of the vulnerability could allow an attacker to cause ...

7.8CVSS7.7AI score0.00263EPSS
Exploits1
Redos
Redos
•added 2025/10/22 12:0 a.m.•7 views

ROS-20251022-03

ProFTPD FTP server vulnerability is related to a null pointer dereferencing error in the function tlsverifycrl in ProFTPD when processing data returned by OpenSSL function skX509REVOKEDvalue when detecting an empty certificate revocation list set by the system administrator. Exploitation of the...

9CVSS6.7AI score0.10985EPSS
Exploits1
Total number of security vulnerabilities5000