| Page(s) : 1 ... 969 970 971 972 973 974 975 976 977 978 [979] 980 981 982 983 984 985 986 987 988 989 ... | Result(s) : 300579 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 5.5 | 2025-02-12 | CVE-2025-21696 | cve | In the Linux kernel, the following vulnerability has been resolved: mm: clear uffd-wp PTE/PMD state on mremap() When mremap()ing a memory region previously registered with use... |
| 5.5 | 2025-02-12 | CVE-2025-21697 | cve | In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Ensure job pointer is set to NULL after job completion After a job completes, the corresponding po... |
| N/A | 2025-02-12 | CVE-2025-21698 | cve | Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. |
| 5.5 | 2025-02-12 | CVE-2025-21699 | cve | In the Linux kernel, the following vulnerability has been resolved: gfs2: Truncate address space when flipping GFS2_DIF_JDATA flag Truncate an inode's address space when ... |
| N/A | 2025-02-12 | CVE-2025-26339 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxtime/handleRoute.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attac... |
| N/A | 2025-02-12 | CVE-2025-26340 | cve | A CWE-321 "Use of Hard-coded Cryptographic Key" in the JWT signing in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to bypass the... |
| N/A | 2025-02-12 | CVE-2025-26341 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remot... |
| N/A | 2025-02-12 | CVE-2025-26342 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remot... |
| N/A | 2025-02-12 | CVE-2025-26343 | cve | A CWE-1390 "Weak Authentication" in the PIN authentication mechanism in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to brute-fo... |
| N/A | 2025-02-12 | CVE-2025-26344 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/guest-mode/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated rem... |
| N/A | 2025-02-12 | CVE-2025-26345 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/menu/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote at... |
| N/A | 2025-02-12 | CVE-2025-26346 | cve | A CWE-89 "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')" in maxprofile/menu/model.lua (editUserGroupMenu endpoint) in Q-Free Max... |
| N/A | 2025-02-12 | CVE-2025-26347 | cve | A CWE-306 "Missing Authentication for Critical Function" in maxprofile/menu/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote at... |
| N/A | 2025-02-12 | CVE-2025-26348 | cve | A CWE-89 "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')" in maxprofile/menu/model.lua (editUserMenu endpoint) in Q-Free MaxTime ... |
| N/A | 2025-02-12 | CVE-2025-26349 | cve | A CWE-23 "Relative Path Traversal" in the file upload mechanism in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to overwrite arbit... |
| N/A | 2025-02-12 | CVE-2025-26350 | cve | A CWE-434 "Unrestricted Upload of File with Dangerous Type" in the template file uploads in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote at... |
| N/A | 2025-02-12 | CVE-2025-26351 | cve | A CWE-35 "Path Traversal" in the template download mechanism in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to read sensitive fil... |
| N/A | 2025-02-12 | CVE-2025-26352 | cve | A CWE-35 "Path Traversal" in the template deletion mechanism in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to delete sensitive f... |
| N/A | 2025-02-12 | CVE-2025-26353 | cve | A CWE-35 "Path Traversal" in maxtime/api/sql/sql.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to read sensitive files via c... |
| N/A | 2025-02-12 | CVE-2025-26354 | cve | A CWE-35 "Path Traversal" in maxtime/api/database/database.lua (copy endpoint) in Q-Free MaxTime less than or equal to version 2.11.0 allows an authenticated remote attacker to ... |
| Page(s) : 1 ... 969 970 971 972 973 974 975 976 977 978 [979] 980 981 982 983 984 985 986 987 988 989 ... | Result(s) : 300579 |
