| Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ... | Result(s) : 297997 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| N/A | 2025-06-13 | CVE-2025-49597 | cve | handcraftedinthealps goodby-csv is a highly memory efficient, flexible and extendable open-source CSV import/export library. Prior to 1.4.3, goodby-csv could be used as part of ... |
| 8.4 | 2025-06-13 | CVE-2025-24311 | cve | An out-of-bounds read vulnerability exists in the cv_send_blockdata functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26.36. A sp... |
| 8.8 | 2025-06-13 | CVE-2025-24922 | cve | A stack-based buffer overflow vulnerability exists in the securebio_identify functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault3 Plus prior to 6.2.26... |
| 8.8 | 2025-06-13 | CVE-2025-25050 | cve | An out-of-bounds write vulnerability exists in the cv_upgrade_sensor_firmware functionality of Dell ControlVault3 prior to 5.15.10.14 and Dell ControlVault 3 Plus prior to 6.2.... |
| N/A | 2025-06-13 | CVE-2025-49598 | cve | conda-forge-ci-setup is a package installed by conda-forge each time a build is run on CI. The conda-forge-ci-setup-feedstock setup script is vulnerable due to the unsafe use of... |
| N/A | 2025-06-13 | CVE-2025-6083 | cve | In ExtremeCloud Universal ZTNA, a syntax error in the 'searchKeyword' condition caused queries to bypass the owner_id filter. This issue may allow users to search data... |
| N/A | 2025-06-13 | CVE-2025-28380 | cve | A cross-site scripting (XSS) vulnerability in OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the URL parameter. |
| N/A | 2025-06-13 | CVE-2025-28381 | cve | A credential leak in OpenC3 COSMOS v6.0.0 allows attackers to access service credentials as environment variables stored in all containers. |
| N/A | 2025-06-13 | CVE-2025-28382 | cve | An issue in the openc3-api/tables endpoint of OpenC3 COSMOS 6.0.0 allows attackers to execute a directory traversal. |
| N/A | 2025-06-13 | CVE-2025-28384 | cve | An issue in the /script-api/scripts/ endpoint of OpenC3 COSMOS 6.0.0 allows attackers to execute a directory traversal. |
| N/A | 2025-06-13 | CVE-2025-28386 | cve | A remote code execution (RCE) vulnerability in the Plugin Management component of OpenC3 COSMOS v6.0.0 allows attackers to execute arbitrary code via uploading a crafted .txt file. |
| N/A | 2025-06-13 | CVE-2025-28388 | cve | OpenC3 COSMOS v6.0.0 was discovered to contain hardcoded credentials for the Service Account. |
| N/A | 2025-06-13 | CVE-2025-28389 | cve | Weak password requirements in OpenC3 COSMOS v6.0.0 allow attackers to bypass authentication via a brute force attack. |
| N/A | 2025-06-13 | CVE-2025-36631 | cve | In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could overwrite arbitrary local system files with log content at SYSTEM ... |
| N/A | 2025-06-13 | CVE-2025-36633 | cve | In Tenable Agent versions prior to 10.8.5 on a Windows host, it was found that a non-administrative user could arbitrarily delete local system files with SYSTEM privilege, poten... |
| N/A | 2025-06-13 | CVE-2025-6029 | cve | Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key Fob Transmitter in KIA-branded Aftermarket Generic Smart Keyless Entry System, pr... |
| N/A | 2025-06-13 | CVE-2025-6030 | cve | Use of fixed learning codes, one code to lock the car and the other code to unlock it, in the Key Fob Transmitter in Cyclone Matrix TRF Smart Keyless Entry System, which allows... |
| N/A | 2025-06-13 | CVE-2025-48914 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal COOKiES Consent Management allows Cross-Site Scripting (XS... |
| N/A | 2025-06-13 | CVE-2025-48915 | cve | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Drupal COOKiES Consent Management allows Cross-Site Scripting (XS... |
| N/A | 2025-06-13 | CVE-2025-48916 | cve | Missing Authorization vulnerability in Drupal Bookable Calendar allows Forceful Browsing.This issue affects Bookable Calendar: from 0.0.0 before 2.2.13. |
| Page(s) : 1 2 3 4 [5] 6 7 8 9 10 11 12 13 14 15 ... | Result(s) : 297997 |
