Lucene search
K

8181 matches found

Redos
Redos
•added 2025/11/05 12:0 a.m.•4 views

ROS-20251105-05

Vulnerability of passwordchange.cgi script of Webmin hosting control panel and web-interface for unix-like systems Usermin is related to flaws in error reporting mechanism. unix-like systems Usermin is related to a flaw in the error reporting mechanism. Exploitation of the vulnerability could all...

5.3CVSS6.9AI score0.02621EPSS
Exploits5
Redos
Redos
•added 2025/11/05 12:0 a.m.•3 views

ROS-20251105-08

Zabbix universal monitoring system vulnerability is related to authorization errors. Exploitation vulnerability can allow a remote attacker to gain unauthorized access to protected information. protected information Vulnerability of Zabbix universal monitoring system is related to a logical error...

6.5CVSS6.6AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/05 12:0 a.m.•6 views

ROS-20251105-04

A vulnerability in the debugtypesamep function of the objdump component of the GNU Binutils development tool is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability of the elfgcsweep...

7.8CVSS6.8AI score0.00235EPSS
Exploits2
Redos
Redos
•added 2025/11/05 12:0 a.m.•4 views

ROS-20251105-09

Zabbix universal monitoring system vulnerability is related to authorization errors. Exploitation vulnerability can allow a remote attacker to gain unauthorized access to protected information. protected information Vulnerability of Zabbix universal monitoring system is related to a logical error...

6.5CVSS6.6AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/05 12:0 a.m.•8 views

ROS-20251105-07

The vulnerability of Microsoft .NET Framework, .NET software platforms, and Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Microsoft Visual Studio software development tool is related to insufficiently strong data encryption. Exploitation...

9.9CVSS6.7AI score0.66258EPSS
Exploits5
Redos
Redos
•added 2025/11/05 12:0 a.m.•4 views

ROS-20251105-11

Zabbix universal monitoring system vulnerability is related to authorization errors. Exploitation vulnerability can allow a remote attacker to gain unauthorized access to protected information. protected information Vulnerability of Zabbix universal monitoring system is related to a logical error...

6.5CVSS6.6AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/05 12:0 a.m.•5 views

ROS-20251105-10

Zabbix universal monitoring system vulnerability is related to authorization errors. Exploitation vulnerability can allow a remote attacker to gain unauthorized access to protected information. protected information Vulnerability of Zabbix universal monitoring system is related to a logical error...

6.5CVSS6.6AI score0.00387EPSS
Exploits0
Redos
Redos
•added 2025/11/05 12:0 a.m.•11 views

ROS-20251105-01

A vulnerability in the Apache Log4cxx C++ logging framework is related to the fact that when using the HTMLLayout, logger names are not properly escaped when written to an HTML file. Exploitation of the vulnerability could allow an attacker acting remotely to obtain sensitive data A vulnerability...

7.8CVSS7.2AI score0.0788EPSS
Exploits3
Redos
Redos
•added 2025/11/05 12:0 a.m.•6 views

ROS-20251105-02

A vulnerability in the LibTIFF library is related to a bounds checking bug in the setrow function in tools/thumbnail.c. Exploitation of the vulnerability could allow an attacker to execute arbitrary code on the target system A vulnerability in the LibTIFF library is related to a bounds checking b...

8.8CVSS7.8AI score0.00739EPSS
Exploits6
Redos
Redos
•added 2025/10/31 12:0 a.m.•4 views

ROS-20251031-05

A vulnerability in the nvdisasm command line utility of the NVIDIA CUDA Toolkit parallel computing software toolkit is related to reading outside the allowed range. NVIDIA CUDA Toolkit GPUs is related to reading outside the allowed range in memory. memory. Exploitation of the vulnerability could...

7.8CVSS7.8AI score0.00207EPSS
Exploits0
Redos
Redos
•added 2025/10/31 12:0 a.m.•4 views

ROS-20251031-01

Vulnerability of MongoDB database management system is related to incorrect processing of certain accumulator functions when additional parameters are specified in the $group operation. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.00289EPSS
Exploits0
Redos
Redos
•added 2025/10/31 12:0 a.m.•10 views

ROS-20251031-03

A vulnerability in the Apache ActiveMQ software platform is related to the recovery of invalid data in memory data. Exploitation of the vulnerability could allow a remote attacker to execute arbitrary code by creating an OpenWire class. arbitrary code by creating a class over the OpenWire protoco...

10CVSS7.9AI score0.99654EPSS
Exploits31
Redos
Redos
•added 2025/10/31 12:0 a.m.•5 views

ROS-20251031-02

A vulnerability in the nvJPEG library of the NVIDIA CUDA Toolkit, a software tool for parallel computing on graphics processors, is related to buffer overruns. The NVIDIA CUDA Toolkit GPU parallel computing software nvJPEG library vulnerability is related to writing outside buffer boundaries...

7.1CVSS6.8AI score0.00127EPSS
Exploits0
Redos
Redos
•added 2025/10/31 12:0 a.m.•6 views

ROS-20251031-04

Vulnerability of cuobjdump file of parallel computing software tool for GPUs NVIDIA CUDA Toolkit is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in the cuobjdump file of the NVIDIA CUDA Toolkit GPU parallel...

7.8CVSS7.9AI score0.00306EPSS
Exploits1
Redos
Redos
•added 2025/10/30 12:0 a.m.•8 views

ROS-20251030-10

A vulnerability in the qDecodeDataUrl function of the QtCore module of the Qt cross-platform development framework Qt software development framework is related to insufficient input data validation when processing the parameter charset. Exploitation of the vulnerability could allow an attacker...

8.4CVSS6.8AI score0.00309EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•5 views

ROS-20251030-09

A vulnerability in the qDecodeDataUrl function of the QtCore module of the Qt cross-platform development framework Qt software development framework is related to insufficient input data validation when processing the parameter charset. Exploitation of the vulnerability could allow an attacker...

8.4CVSS6.8AI score0.00309EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•5 views

ROS-20251030-01

A vulnerability in the NVIDIA Virtual GPU Manager component of the NVIDIA Virtual GPU driver Virtual GPU is associated with incorrectly assigning permissions to a critical resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in the NVIDIA...

5.5CVSS7AI score0.00235EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•5 views

ROS-20251030-03

A vulnerability in the MongoDB database management system is related to misconfiguration of the lsid field. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.00254EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•5 views

ROS-20251030-02

A vulnerability in the NVIDIA Virtual GPU Manager component of the NVIDIA Virtual GPU driver Virtual GPU is associated with incorrectly assigning permissions to a critical resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability in the NVIDIA...

5.5CVSS7AI score0.00235EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•3 views

ROS-20251030-07

The vulnerability of SeekBlob and WriteBlob functions of ImageMagick console graphic editor is related to writing outside of buffer boundaries. Exploitation of the vulnerability could allow a remote attacker, execute arbitrary code...

9.8CVSS7.6AI score0.00274EPSS
Exploits1
Redos
Redos
•added 2025/10/30 12:0 a.m.•3 views

ROS-20251030-08

The vulnerability of SeekBlob and WriteBlob functions of ImageMagick console graphic editor is related to writing outside of buffer boundaries. Exploitation of the vulnerability could allow a remote attacker, execute arbitrary code...

9.8CVSS7.6AI score0.00274EPSS
Exploits1
Redos
Redos
•added 2025/10/30 12:0 a.m.•2 views

ROS-20251030-04

A vulnerability in the MongoDB database management system is related to misconfiguration of the lsid field. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

6.5CVSS6.7AI score0.00254EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•8 views

ROS-20251030-06

A vulnerability in the Perl data structure to JSON conversion module Cpanel::JSON::XS is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code on the target system...

5.6CVSS7.2AI score0.00405EPSS
Exploits0
Redos
Redos
•added 2025/10/30 12:0 a.m.•7 views

ROS-20251030-05

Vulnerability of Erlang programming language OTP library set is related to incorrect checking of ZIP archives in "zip:unzip/1,2" and "zip:extract/1,2" procedures of Erlang/OTP standard library ZIP archives in the "zip:unzip/1,2" and "zip:extract/1,2" procedures of the Erlang/OTP standard library...

7.1CVSS7.3AI score0.00442EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•13 views

ROS-20251029-07

The vulnerability in the Golang programming language is related to the implementation of a function where a string is accumulated via repeated concatenation without effectively managing memory or time complexity. Exploitation of the vulnerability could allow an attacker to cause a denial of servi...

7.5CVSS7.1AI score0.00626EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•6 views

ROS-20251029-06

Vulnerability of drm/amdgpu components of Linux kernel is related to dereferencing of pointer NULL. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the Redis database management system DBMS is related to integer overflow. Exploitation of t...

9.9CVSS7.7AI score0.86767EPSS
Exploits15
Redos
Redos
•added 2025/10/29 12:0 a.m.•7 views

ROS-20251029-04

A plug-in vulnerability in the Grafana-Zabbix web-based data submission tool is related to maximum CPU utilization. Exploitation of the vulnerability could allow an attacker due to a custom request with a regular expression, acting remotely, to cause a denial of service...

4.3CVSS6.7AI score0.00323EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•3 views

ROS-20251029-05

The vulnerability in the pgAdmin 4 database management tool is related to a flaw in the mechanism for source validation. Exploitation of the vulnerability could allow an attacker acting remotely, gain unauthorized access to protected information...

7.9CVSS6.6AI score0.00213EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•6 views

ROS-20251029-02

The vulnerability in the RabbitMQ messaging and streaming broker is due to the fact that the software stores sensitive information in log files. Exploitation of the vulnerability could allow an attacker to gain access to sensitive information...

6.7CVSS6.8AI score0.00194EPSS
Exploits1
Redos
Redos
•added 2025/10/29 12:0 a.m.•8 views

ROS-20251029-01

Gstreamer multimedia framework vulnerability is related to a buffer overflow on the stack. Exploitation exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS8.2AI score0.00734EPSS
Exploits0
Redos
Redos
•added 2025/10/29 12:0 a.m.•4 views

ROS-20251029-03

A vulnerability in the tarfile module of the Python programming language is related to incorrect definition of symbolic links during file access. symbolic links during file access. Exploitation of the vulnerability could allow an attacker acting remotely to affect the integrity of protected...

5.9CVSS6.6AI score0.00438EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•5 views

ROS-20251028-06

The vulnerability of the Pgpool-II database connection pooling management utility is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to the sensitive data...

7.5CVSS6.9AI score0.00528EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-07

A vulnerability in the library commands for Exiv2 media file metadata management is related to the following quadratic algorithm in the ICC profile analysis code in jpegBase::readMetadata can lead to a prolonged Exiv2. Exploitation of the vulnerability could allow an attacker to cause a denial of...

5.5CVSS7.1AI score0.00226EPSS
Exploits1
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-09

A vulnerability in the Java library for JSON-lib bean-component conversion is related to improper handling unbalanced comment strings. Exploitation of the vulnerability could allow an attacker, acting remotely, to cause a denial of service...

5.3CVSS6.8AI score0.15413EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•11 views

ROS-20251028-01

A vulnerability in the Webmin hosting control panel CGI request handler is associated with errors in processing input data. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code with root privileges...

9.9CVSS7.1AI score0.32018EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•7 views

ROS-20251028-11

A vulnerability in the NVIDIA Container Toolkit container creation and launch software and the NVIDIA GPU Operator resource management software is associated with synchronization errors. NVIDIA GPU Operator resource management software is associated with synchronization errors when using a shared...

9CVSS8AI score0.37055EPSS
Exploits7
Redos
Redos
•added 2025/10/28 12:0 a.m.•5 views

ROS-20251028-10

A vulnerability in the NVIDIA Container Toolkit container creation and launch software and the NVIDIA GPU Operator resource management software is associated with synchronization errors. NVIDIA GPU Operator resource management software is associated with synchronization errors when using a shared...

9CVSS8AI score0.37055EPSS
Exploits7
Redos
Redos
•added 2025/10/28 12:0 a.m.•5 views

ROS-20251028-05

The vulnerability of the Pgpool-II database connection pooling management utility is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to the sensitive data...

7.5CVSS6.9AI score0.00528EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•5 views

ROS-20251028-04

The vulnerability of the Pgpool-II database connection pooling management utility is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to the sensitive data...

7.5CVSS6.9AI score0.00528EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•5 views

ROS-20251028-02

The vulnerability of the Pgpool-II database connection pooling management utility is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to the sensitive data...

7.5CVSS6.9AI score0.00528EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•4 views

ROS-20251028-03

The vulnerability of the Pgpool-II database connection pooling management utility is related to disclosure of information. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to the sensitive data...

7.5CVSS6.9AI score0.00528EPSS
Exploits0
Redos
Redos
•added 2025/10/28 12:0 a.m.•4 views

ROS-20251028-08

A vulnerability in the NetworkPkg/IScsiDxe/IScsiProto.c component of the EDK2 development environment for UEFI applications is associated with an with integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to compromise the integrity of the component. remotely...

7.5CVSS8.2AI score0.05966EPSS
Exploits0
Redos
Redos
•added 2025/10/27 12:0 a.m.•7 views

ROS-20251027-02

A vulnerability in the NVIDIA CUDA GPU parallel computing software toolkit is related to insufficient validation of user input data. Toolkit is related to insufficient verification of user input in the command line tool nvdisasm. Exploitation of the vulnerability could allow an attacker to cause ...

7.8CVSS7.7AI score0.00263EPSS
Exploits1
Redos
Redos
•added 2025/10/27 12:0 a.m.•4 views

ROS-20251027-01

Vulnerability in the implementation of application protocols that use the UDP protocol is related to the possibility of of spoofing attacks. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service by sending specially crafted packets...

7.5CVSS6.7AI score0.05397EPSS
Exploits0
Redos
Redos
•added 2025/10/23 12:0 a.m.•8 views

ROS-20251023-01

A vulnerability in the cifscomposemountoptions function of the fs/smb/client/cifsproto.h module of the SMB client support kernel of the Linux operating system is related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a...

8.1CVSS7AI score0.00915EPSS
Exploits0
Redos
Redos
•added 2025/10/23 12:0 a.m.•8 views

ROS-20251023-02

Vulnerability of ip6makeskb function of net/ipv6/ip6output.c module of Linux kernel IPv6 protocol implementation is related to the use of uninitialized resource. of Linux operating system is related to the use of an uninitialized resource. Exploitation the vulnerability could allow an attacker to...

8.1CVSS7AI score0.00915EPSS
Exploits0
Redos
Redos
•added 2025/10/22 12:0 a.m.•7 views

ROS-20251022-03

ProFTPD FTP server vulnerability is related to a null pointer dereferencing error in the function tlsverifycrl in ProFTPD when processing data returned by OpenSSL function skX509REVOKEDvalue when detecting an empty certificate revocation list set by the system administrator. Exploitation of the...

9CVSS6.7AI score0.10985EPSS
Exploits1
Redos
Redos
•added 2025/10/22 12:0 a.m.•5 views

ROS-20251022-06

Vulnerability of amdgpuhmmregister function in drivers/gpu/drm/amd/amdgpu/amdgpuhmm.c driver module amdgpu of the Linux kernel is related to the reuse of previously freed memory. memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the...

7.1CVSS8.4AI score0.0028EPSS
Exploits0
Redos
Redos
•added 2025/10/22 12:0 a.m.•6 views

ROS-20251022-04

A vulnerability in the sdhciwritedataport function of the QEMU hardware emulator is related to an overflow of the buffer in the heap via the s-datacount and s-fifobuffer parameters. Exploitation of the vulnerability could allow an an attacker to cause a denial of service...

6CVSS6.7AI score0.00552EPSS
Exploits1
Redos
Redos
•added 2025/10/22 12:0 a.m.•4 views

ROS-20251022-05

Vulnerability of the mtkclksimpleprobe function of the drivers/clk/mediatek/clk-mtk.c module of the drivers/clk/mediatek/clk-mtk.c kernel of the Linux operating system is related to insufficient blocking of the resource. Linux kernel is related to insufficient resource locking. Exploitation of th...

7.8CVSS6.6AI score0.00272EPSS
Exploits0
Total number of security vulnerabilities8181