Lucene search
K

8181 matches found

Redos
Redos
•added 2025/12/02 12:0 a.m.•6 views

ROS-20251202-09

A vulnerability in the Fullscreen component of the Google Chrome browser is related to presentation errors in the user interface in the user interface. Exploitation of the vulnerability could allow an attacker acting remotely, spoof the user interface using a specially crafted HTML page...

4.3CVSS6.6AI score0.0018EPSS
Exploits1
Redos
Redos
•added 2025/12/02 12:0 a.m.•6 views

ROS-20251202-06

A vulnerability in the Autofill component of the Google Chrome browser is related to presentation errors in the user interface user interface. Exploitation of the vulnerability could allow an attacker acting remotely, spoof the user interface using a specially crafted HTML page...

4.3CVSS6.6AI score0.00171EPSS
Exploits0
Redos
Redos
•added 2025/12/02 12:0 a.m.•4 views

ROS-20251202-08

Vulnerability in the Dawn component of Google Chrome browser is related to writing beyond buffer boundaries. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to affect the accessibility of protected information...

7.5CVSS6.8AI score0.00176EPSS
Exploits1
Redos
Redos
•added 2025/12/02 12:0 a.m.•5 views

ROS-20251202-04

A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to reading outside the boundaries of the buffer. Exploitation of the vulnerability could allow an attacker acting remotely to impact the availability of protected information Vulnerability in the WebApp Instal...

4.3CVSS6.4AI score0.00174EPSS
Exploits1
Redos
Redos
•added 2025/12/02 12:0 a.m.•6 views

ROS-20251202-05

A vulnerability in the DevTools component of the Google Chrome browser is related to an access control flaw in an isolated environment. of an isolated environment. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the sandbox protection mechanism. sandbox...

5.4CVSS6.9AI score0.00144EPSS
Exploits1
Redos
Redos
•added 2025/12/02 12:0 a.m.•10 views

ROS-20251202-03

Vulnerability in DecodeConfig component of Golang programming language is related to uncontrolled consumption of resources. resources. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial-of-service condition. denial of service A vulnerability in the Downloa...

8.8CVSS7.2AI score0.00276EPSS
Exploits5
Redos
Redos
•added 2025/12/02 12:0 a.m.•6 views

ROS-20251202-02

Vulnerability of recvmsg function of Linux kernel is related to buffer copying without input data verification. input data. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service Vulnerability of tlsrxmsgsize function of tls component of...

9.8CVSS5.9AI score0.08942EPSS
Exploits2
Redos
Redos
•added 2025/12/01 12:0 a.m.•3 views

ROS-20251201-04

Vulnerability of the lpfcelsretrydelay function of the drivers/scsi/lpfc/lpfcels.c module of the operating system kernel of Linux is related to improper resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability of bloomfilter.c,...

7.8CVSS6.8AI score0.0047EPSS
Exploits0
Redos
Redos
•added 2025/12/01 12:0 a.m.•11 views

ROS-20251201-03

A vulnerability in the Linux kernel NVMe driver is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service A vulnerability in the nvmetreqcomplete function in the drivers/nvme/target/tcp.c module of the NVMe...

7.5CVSS6.5AI score0.01549EPSS
Exploits0
Redos
Redos
•added 2025/12/01 12:0 a.m.•9 views

ROS-20251201-02

A vulnerability in the vfsinode.c component of the Linux kernel is related to the use of an uninitialized resource. of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the llcpsock.c component of the Lin...

7.1CVSS6.7AI score0.0025EPSS
Exploits0
Redos
Redos
•added 2025/12/01 12:0 a.m.•6 views

ROS-20251201-01

A vulnerability in the Core component of the Oracle VM VirtualBox virtualization software tool is related to insufficient protection of service data. Exploitation of the vulnerability could allow an attacker to gain unauthorized access to protected information Vulnerability of Core component of...

6.1CVSS6.8AI score0.005EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•4 views

ROS-20251128-05

Vulnerability of components inode.c, ioctl.c, root-tree.c, root-tree.h of Linux kernel is related to incorrect memory freeing before deleting the last link. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in omapprm.c component of Linux kernel ...

5.5CVSS6.6AI score0.00227EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•5 views

ROS-20251128-01

A vulnerability in the firstkexpacketfollows function of the libssh library is related to a lack of memory release memory after an effective lifetime. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remotely to cause a denial of service...

3.1CVSS6.8AI score0.00375EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•10 views

ROS-20251128-03

A vulnerability in the Vault access control system and Vault enterprise information archiving platform Enterprise is related to authentication bypass using an alternate path or channel in AWS authentication method. AWS authentication method. Exploitation of the vulnerability could allow an attack...

8.1CVSS6.9AI score0.00517EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•5 views

ROS-20251128-06

A vulnerability in the adevrelease function in the drivers/peci/cpu.c module of the Platform Environment Control driver Interface PECI module of the Linux kernel is related to the reuse of previously released memory. memory. Exploitation of the vulnerability could allow an attacker to impact the...

7.8CVSS6.5AI score0.00216EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•12 views

ROS-20251128-07

Vulnerability of the vhostnewmsg function in the drivers/vhost/vhost.c module of the vhost driver of the Linux kernel is related to incorrect initialization of memory for messages transferred between guests. Linux kernel is related to incorrect memory initialization for messages transferred betwe...

5.5CVSS6.6AI score0.00236EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•9 views

ROS-20251128-02

A vulnerability in OpenBao's secret management and encryption system is related to the fact that OpenBao's audit logs incorrectly edited fields when the corresponding subsystems sent byte response parameters rather than strings. strings. Exploitation of the vulnerability could allow an attacker...

5.7CVSS6.8AI score0.00299EPSS
Exploits0
Redos
Redos
•added 2025/11/28 12:0 a.m.•10 views

ROS-20251128-04

Vulnerability of the smb2isvalidoplockbreak function in the fs/smb/client/smb2misc.c module of the SMB client implementation of the Linux kernel is related to the reuse of the previously released SMB protocol client implementation of the Linux kernel is related to the reuse of previously freed...

7.1CVSS6.6AI score0.00239EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•8 views

ROS-20251125-01

A vulnerability in the cross-platform software development framework Qt is related to a bug in the data boundary checking when reading data from Bluetooth L2CAP socket in processUnsolicitedReply and processReply in bluetooth/qlowenergycontrollerbluez.cpp. Exploitation of the vulnerability could...

3.1CVSS7.9AI score0.00172EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•8 views

ROS-20251125-06

A vulnerability in the Moodle virtual learning environment is related to the disclosure of hidden group names to users, who have permission to create events in the calendar. Exploitation of the vulnerability could allow an attacker, acting remotely, to gain unauthorized access to protected...

6.5CVSS6.9AI score0.00246EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•13 views

ROS-20251125-03

WSGI server gunicorn vulnerability is related to flaws in HTTP request handling. Exploitation of the vulnerability could allow an attacker acting remotely to bypass the existing security restrictions and execute an HTTP request smuggling attack...

7.5CVSS7AI score0.00738EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•6 views

ROS-20251125-02

A vulnerability in the Apache MINA open source Java network application environment is related to an infinite loop in the processing of HTTP requests. loop when processing HTTP requests. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service. remote...

7.5CVSS6.7AI score0.02978EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•9 views

ROS-20251125-04

A vulnerability in OpenBao's secret management and encryption system is related to the fact that the software stores sensitive information in log files. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to confidential information...

7.5CVSS6.8AI score0.00286EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•11 views

ROS-20251125-05

A vulnerability in HashiCorp's Vault and Vault Enterprise enterprise information archiving platforms is related to authentication bypass using an alternate path or channel in AWS authentication method AWS authentication method. Exploitation of the vulnerability could allow an attacker acting...

8.1CVSS6.9AI score0.00489EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•11 views

ROS-20251125-09

Apache Tomcat application server vulnerability is related to incorrect resource release. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Apache Tomcat application server vulnerability is associated with failure to take measures to...

9.6CVSS7.5AI score0.66535EPSS
Exploits4
Redos
Redos
•added 2025/11/25 12:0 a.m.•10 views

ROS-20251125-07

Apache Tomcat application server vulnerability is related to incorrect resource release. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Apache Tomcat application server vulnerability is associated with failure to take measures to...

9.6CVSS7.5AI score0.66535EPSS
Exploits4
Redos
Redos
•added 2025/11/25 12:0 a.m.•3 views

ROS-20251125-11

A vulnerability in the Redis database management system DBMS is associated with boundary checking errors in the command XACKDEL. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS7.1AI score0.06867EPSS
Exploits2
Redos
Redos
•added 2025/11/25 12:0 a.m.•9 views

ROS-20251125-12

Vulnerability of QuerySet and Q objects of Django web application development platform is related to failure to take measures to protect the SQL query structure when processing an argument with the connector keyword. Exploitation of the vulnerability could allow an attacker acting remotely to...

9.1CVSS7.1AI score0.19396EPSS
Exploits10
Redos
Redos
•added 2025/11/25 12:0 a.m.•4 views

ROS-20251125-10

The vulnerability of the Brotli data compression algorithm is related to a flaw in the mechanism for checking the size of copied data. data. Exploitation of the vulnerability could allow an attacker acting remotely to compromise the integrity of the data integrity, as well as cause a denial of...

6.5CVSS6.8AI score0.03217EPSS
Exploits0
Redos
Redos
•added 2025/11/25 12:0 a.m.•5 views

ROS-20251125-13

A vulnerability in the maskedPaths feature of the isolated container runc tool is related to the runc state that allows link tracking. Exploitation of the vulnerability could allow an attacker to Affect the confidentiality, integrity and availability of protected information...

7.8CVSS6.7AI score0.0067EPSS
Exploits2
Redos
Redos
•added 2025/11/25 12:0 a.m.•10 views

ROS-20251125-08

Apache Tomcat application server vulnerability is related to incorrect resource release. Exploitation exploitation of the vulnerability could allow a remote attacker to cause a denial of service. Apache Tomcat application server vulnerability is associated with failure to take measures to...

9.6CVSS7.5AI score0.66535EPSS
Exploits4
Redos
Redos
•added 2025/11/24 12:0 a.m.•8 views

ROS-20251124-11

A vulnerability in the Libraries component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to impact data integrity...

7.5CVSS6.8AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-12

A vulnerability in the Security component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read,...

7.5CVSS6.7AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-14

A vulnerability in the Security component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read,...

7.5CVSS6.7AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•6 views

ROS-20251124-13

A vulnerability in the Security component of Oracle GraalVM Enterprise Edition virtual machines, Oracle GraalVM for JDK and Oracle Java SE software platform is related to access control weaknesses. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to read,...

7.5CVSS6.7AI score0.00633EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•4 views

ROS-20251124-09

The vulnerability of the MySQL database access library aiomysql is related to the fact that client-side settings are not checked before sending local files to a remote MySQL server. client side settings are not checked before sending local files to a remote MySQL server. Exploitation vulnerabilit...

8.2CVSS6.6AI score0.00354EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-10

The Kea open source DHCP server vulnerability is related to the use of a pointer offset outside the range. Exploitation of the vulnerability could allow an attacker to escalate privileges on the system...

7.5CVSS7.1AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•4 views

ROS-20251124-06

A vulnerability in the 3D model import library Open Asset Import Library Assimp is related to manipulation of the Q3DImporter::InternReadFile function of assimp/code/AssetLib/Q3D/Q3DLoader.cpp file. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS6.7AI score0.00581EPSS
Exploits2
Redos
Redos
•added 2025/11/24 12:0 a.m.•8 views

ROS-20251124-05

The Redis database management system DBMS vulnerability is related to the use of memory after its release. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

9.9CVSS7.1AI score0.86767EPSS
Exploits14
Redos
Redos
•added 2025/11/24 12:0 a.m.•6 views

ROS-20251124-01

A vulnerability in the ASP.NET Core software platform and Microsoft's software development tool, Visual Studio, is related to authentication bypass. Visual Studio is related to authentication bypass. Exploitation of the vulnerability could allow an attacker, acting remotely to escalate their...

7CVSS7.3AI score0.00911EPSS
Exploits1
Redos
Redos
•added 2025/11/24 12:0 a.m.•7 views

ROS-20251124-02

Vulnerability of the software tool for implementing network routing on Unix-like systems FRRouting is related to insufficient validation of OSPF LSA packets in the ospfteparsete function in ospfd/ospfte.c. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial...

6.5CVSS6.7AI score0.0032EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•5 views

ROS-20251124-04

Go programming language vulnerability is related to unrestricted resource allocation. Exploitation The vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS6.8AI score0.00385EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•8 views

ROS-20251124-03

A vulnerability in the PHP programming language is related to the execution of a loop with an unreachable exit condition. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.9AI score0.00565EPSS
Exploits0
Redos
Redos
•added 2025/11/24 12:0 a.m.•5 views

ROS-20251124-07

Vulnerability of WINS name resolution server implementation of Samba networking software package exists due to failure to take measures to neutralize special elements. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by sending a specially crafted request ...

10CVSS7.7AI score0.40121EPSS
Exploits2
Redos
Redos
•added 2025/11/24 12:0 a.m.•2 views

ROS-20251124-08

A vulnerability in the cross-platform Xen hypervisor of the Linux operating system kernel is related to a bug in the bounds checking in the vpmaskset function when processing a sparse HVVPSET format. Exploitation of the of the vulnerability could allow an attacker acting remotely to escalate...

7.5CVSS6.6AI score0.00347EPSS
Exploits0
Redos
Redos
•added 2025/11/17 12:0 a.m.•9 views

ROS-20251117-08

Vulnerability of the ksmbdexpiresession function in the fs/smb/server/mgmt/usersession.c module of the in-core CIFS/SMB3 ksmbd server kernel of the Linux operating system is related to reuse of previously of previously freed memory. Exploitation of the vulnerability could allow an attacker to...

7.8CVSS8.1AI score0.00267EPSS
Exploits0
Redos
Redos
•added 2025/11/17 12:0 a.m.•6 views

ROS-20251117-06

A vulnerability in the vfs.c component of the Linux operating system kernel is related to reading outside the allowed boundaries of the of the data buffer. Exploitation of the vulnerability could allow an attacker to impact the integrity of the data integrity...

7.8CVSS6.7AI score0.00204EPSS
Exploits1
Redos
Redos
•added 2025/11/17 12:0 a.m.•7 views

ROS-20251117-07

A vulnerability in the recv function of the tls component of the Linux kernel is related to an inaccessible exit condition. exit. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...

5.5CVSS6.8AI score0.00175EPSS
Exploits2
Redos
Redos
•added 2025/11/17 12:0 a.m.•6 views

ROS-20251117-05

A vulnerability in the LXD container and lightweight virtual machine management system is related to redundant API data output. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to potentially sensitive information The vulnerability in the LXD container and...

8.8CVSS7.1AI score0.00541EPSS
Exploits9
Redos
Redos
•added 2025/11/17 12:0 a.m.•5 views

ROS-20251117-03

Vulnerability of the xdrtrrqmessage function of the protocol.cpp module of the Red Database Management System is related to dereferencing of a null pointer. Data" is related to dereferencing of a null pointer. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a...

7.5CVSS6.7AI score0.0051EPSS
Exploits0
Total number of security vulnerabilities8181