Microsoft Windows Multiple Vulnerabilities (KB5000802)
This host is missing a critical security update according to Microsoft...
9.9CVSS
7.4AI Score
0.861EPSS
Microsoft Windows Multiple Vulnerabilities (KB4534273)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.1AI Score
0.969EPSS
Microsoft Windows Multiple Vulnerabilities (KB4534306)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.3AI Score
0.975EPSS
9.8CVSS
9AI Score
0.783EPSS
9.8CVSS
9AI Score
0.783EPSS
Moderate: rpm-ostree security update
The rpm-ostree tool binds together the RPM packaging model with the OSTree model of bootable file system trees. It provides commands that can be used both on client systems and on server-side composes. The rpm-ostree-client package provides commands for client systems to perform upgrades and...
7.5AI Score
A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. Users whose accounts are configured to have fewer user.....
7.5CVSS
8AI Score
0.01EPSS
Microsoft Windows Multiple Vulnerabilities (KB5039225)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.2AI Score
0.003EPSS
Moderate: rpm-ostree security update
The rpm-ostree tool binds together the RPM packaging model with the OSTree model of bootable file system trees. It provides commands that can be used both on client systems and on server-side composes. The rpm-ostree-client package provides commands for client systems to perform upgrades and...
6.2CVSS
6.9AI Score
0.0004EPSS
CVE-2023-23752 - Joomla Improper Access Check An issue has...
5.3CVSS
6.9AI Score
0.949EPSS
Microsoft Windows Multiple Vulnerabilities (KB4577041)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.1AI Score
0.109EPSS
Microsoft Windows Multiple Vulnerabilities (KB4565513)
This host is missing a critical security update according to Microsoft...
8.8CVSS
6.9AI Score
0.868EPSS
Microsoft Windows Multiple Vulnerabilities (KB4561649)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.2AI Score
0.26EPSS
Microsoft Windows Multiple Vulnerabilities (KB4561643)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.26EPSS
Microsoft Windows Multiple Vulnerabilities (KB4550930)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.954EPSS
7.1CVSS
6.6AI Score
0.0004EPSS
An information disclosure vulnerability exists in SymCrypt during the OAEP decryption stage. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. To exploit this vulnerability, an attacker would have to log on to an affected...
5.6CVSS
5.2AI Score
0.001EPSS
On Windows 10, when using the 'Save As' functionality, an attacker could have tricked the browser into saving the file with a disallowed extension such as .url by including an invalid character in the extension. Note: This issue only affected Windows operating systems. Other operating systems are.....
5.5AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB4580328)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.1AI Score
0.868EPSS
Microsoft Windows Multiple Vulnerabilities (KB4537820)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.5AI Score
0.973EPSS
Microsoft Windows Multiple Vulnerabilities (KB4577049)
This host is missing a critical security update according to Microsoft...
8.8CVSS
6.9AI Score
0.041EPSS
Microsoft Windows Multiple Vulnerabilities (KB4565541)
This host is missing a critical security update according to Microsoft...
10CVSS
7AI Score
0.944EPSS
Microsoft Windows Multiple Vulnerabilities (KB4598242)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.1AI Score
0.016EPSS
Microsoft Windows Multiple Vulnerabilities (KB4586793)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.2AI Score
0.365EPSS
Microsoft Windows Multiple Vulnerabilities (KB4586786)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.2AI Score
0.365EPSS
Microsoft Windows Multiple Vulnerabilities (KB4577671)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.1AI Score
0.225EPSS
6.5AI Score
0.002EPSS
NetHack is a single player dungeon exploration game. Starting with version 3.6.2 and prior to version 3.6.7, illegal input to the "C" (call) command can cause a buffer overflow and crash the NetHack process. This vulnerability may be a security issue for systems that have NetHack installed...
5.5CVSS
5.8AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB5039214)
This host is missing an important security update according to Microsoft...
9.8CVSS
7.2AI Score
0.003EPSS
Microsoft Windows Multiple Vulnerabilities (KB4561602)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.26EPSS
Microsoft Windows Multiple Vulnerabilities (KB4550927)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.954EPSS
rpm-ostree bug fix and enhancement update
An update is available for rpm-ostree. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The rpm-ostree tool binds together the RPM packaging model with the...
7.4AI Score
8.1CVSS
6.7AI Score
0.972EPSS
In the Linux kernel, the following vulnerability has been resolved: mlxsw: thermal: Fix out-of-bounds memory accesses Currently, mlxsw allows cooling states to be set above the maximum cooling state supported by the driver: # cat /sys/class/thermal/thermal_zone2/cdev0/type mlxsw_fan # cat...
6.5AI Score
0.0004EPSS
Summary Java on z/OS properties files not read correctly under certain locales / codepages vulnerability exists in IBM® SDK Java™ Technology Edition, Version 8, which is used by IBM Tivoli Network Configuration Manager IP Edition v6.4.2 Vulnerability Details ** IBM X-Force ID: PSIRT-ADV0103951 ...
6.2AI Score
An elevation of privilege vulnerability exists in the way that the PsmServiceExtHost.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. To exploit the vulnerability, a locally authenticated attacker could run a...
7CVSS
7.5AI Score
0.0004EPSS
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...
4.4CVSS
7.5AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB4571692)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.2AI Score
0.549EPSS
Microsoft Windows Multiple Vulnerabilities (KB4540693)
This host is missing a critical security update according to Microsoft...
9.8CVSS
7.2AI Score
0.54EPSS
Fedora: Security Advisory for qt5-qtx11extras (FEDORA-2024-2e27372d4c)
The remote host is missing an update for...
6.8AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB5039212)
This host is missing an important security update according to Microsoft...
9.8CVSS
7.2AI Score
0.003EPSS
[SECURITY] Fedora 40 Update: qt5-qtx11extras-5.15.14-1.fc40
The X11 Extras module provides features specific to platforms using X11, e.g. Linux and UNIX-like systems including embedded Linux systems that use the X Window...
6.6AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB5039217)
This host is missing an important security update according to Microsoft...
9.8CVSS
7.2AI Score
0.003EPSS
Microsoft Windows Multiple Vulnerabilities (KB4565511)
This host is missing a critical security update according to Microsoft...
10CVSS
7AI Score
0.944EPSS
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...
4.4CVSS
7.4AI Score
0.0004EPSS
Microsoft Windows Multiple Vulnerabilities (KB4577032)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.1AI Score
0.109EPSS
Microsoft Windows Multiple Vulnerabilities (KB4549951)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.954EPSS
Microsoft Windows Multiple Vulnerabilities (KB4549949)
This host is missing a critical security update according to Microsoft...
8.8CVSS
7.3AI Score
0.954EPSS
CVE-2023-43208 - Mirth Connect Remote Code Execution (RCE)...
9.8CVSS
8.2AI Score
0.956EPSS
Impacts on ICS from the updated Cyber Assessment Framework (CAF)
NCSC has released an update of the Cyber Assessment Framework (CAF). The CAF represents where the rubber hits the road for the UK’s NIS regulations. TL;DR The NCSC CAF has been updated to version 3.2. There has been a material change to three aspects of the CAF. The changes are broadly sensible...
7.5AI Score