Latest CVE Feed
-
9.8
CRITICALCVE-2014-9843
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.... Read more
- EPSS Score: %1.09
- Published: Mar. 20, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2014-4966
Ansible before 1.6.7 does not prevent inventory data with "{{" and "lookup" substrings, and does not prevent remote data with "{{" substrings, which allows remote attackers to execute arbitrary code via (1) crafted lookup('pipe') calls or (2) crafted Jinj... Read more
Affected Products : ansible- EPSS Score: %4.75
- Published: Feb. 18, 2020
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2014-3622
Use-after-free vulnerability in the add_post_var function in the Posthandler component in PHP 5.6.x before 5.6.1 might allow remote attackers to execute arbitrary code by leveraging a third-party filter extension that accesses a certain ksep value.... Read more
Affected Products : php- EPSS Score: %2.34
- Published: Feb. 19, 2020
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2014-3600
XML external entity (XXE) vulnerability in Apache ActiveMQ 5.x before 5.10.1 allows remote consumers to have unspecified impact via vectors involving an XPath based selector when dequeuing XML messages.... Read more
Affected Products : activemq- EPSS Score: %0.53
- Published: Oct. 27, 2017
- Modified: Apr. 20, 2025
-
9.8
CRITICALCVE-2013-7390
Unrestricted file upload vulnerability in AgentLogUploadServlet in ManageEngine DesktopCentral 7.x and 8.0.0 before build 80293 allows remote attackers to execute arbitrary code by uploading a file with a jsp extension, then accessing it via a direct requ... Read more
Affected Products : manageengine_desktop_central- EPSS Score: %66.78
- Published: Jan. 27, 2020
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2013-5017
SNMPConfig.php in the management console in Symantec Web Gateway (SWG) before 5.2.1 allows remote attackers to execute arbitrary commands via unspecified vectors.... Read more
Affected Products : web_gateway- EPSS Score: %24.96
- Published: Jun. 18, 2014
- Modified: Apr. 12, 2025
-
9.8
CRITICALCVE-2012-1710
Unspecified vulnerability in the Oracle WebCenter Forms Recognition component in Oracle Fusion Middleware 10.1.3.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Designer, a different vulnerab... Read more
Affected Products : fusion_middleware- Actively Exploited
- EPSS Score: %74.57
- Published: May. 03, 2012
- Modified: Apr. 11, 2025
-
9.8
CRITICALCVE-2011-3145
When mount.ecrpytfs_private before version 87-0ubuntu1.2 calls setreuid() it doesn't also set the effective group id. So when it creates the new version, mtab.tmp, it's created with the group id of the user running mount.ecryptfs_private.... Read more
Affected Products : mount.ecrpytfs_private- EPSS Score: %0.23
- Published: Apr. 22, 2019
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2008-3465
Heap-based buffer overflow in an API in GDI in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows context-dependent attackers to cause a denial of service or execute arbitrary code via a WMF fil... Read more
Affected Products : windows_server_2008 windows_2000 windows_2003_server windows_server_2003 windows_vista windows_xp- EPSS Score: %41.36
- Published: Dec. 10, 2008
- Modified: Apr. 09, 2025
-
9.8
CRITICALCVE-2008-2374
src/sdp.c in bluez-libs 3.30 in BlueZ, and other bluez-libs before 3.34 and bluez-utils before 3.34 versions, does not validate string length fields in SDP packets, which allows remote SDP servers to cause a denial of service or possibly have unspecified ... Read more
- EPSS Score: %6.04
- Published: Jul. 07, 2008
- Modified: Apr. 09, 2025
-
9.8
CRITICALCVE-2007-4559
Directory traversal vulnerability in the (1) extract and (2) extractall functions in the tarfile module in Python allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in filenames in a TAR archive, a related issue... Read more
Affected Products : python- EPSS Score: %92.99
- Published: Aug. 28, 2007
- Modified: Apr. 09, 2025
-
9.8
CRITICALCVE-2002-0059
The decompression algorithm in zlib 1.1.3 and earlier, as used in many different utilities and packages, causes inflateEnd to release certain memory more than once (a "double free"), which may allow local and remote attackers to execute arbitrary code via... Read more
Affected Products : zlib- EPSS Score: %33.67
- Published: Mar. 15, 2002
- Modified: Apr. 03, 2025
-
9.8
CRITICALCVE-2025-43237
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6. An app may be able to cause unexpected system termination.... Read more
Affected Products : macos- Published: Jul. 30, 2025
- Modified: Aug. 01, 2025
- Vuln Type: Memory Corruption
-
9.8
CRITICALCVE-2025-30472
Corosync through 3.1.9, if encryption is disabled or the attacker knows the encryption key, has a stack-based buffer overflow in orf_token_endian_convert in exec/totemsrp.c via a large UDP packet.... Read more
Affected Products : corosync- Published: Mar. 22, 2025
- Modified: Apr. 01, 2025
- Vuln Type: Memory Corruption
-
9.8
CRITICALCVE-2025-25291
ruby-saml provides security assertion markup language (SAML) single sign-on (SSO) for Ruby. An authentication bypass vulnerability was found in ruby-saml prior to versions 1.12.4 and 1.18.0 due to a parser differential. ReXML and Nokogiri parse XML differ... Read more
- Published: Mar. 12, 2025
- Modified: Aug. 01, 2025
- Vuln Type: Authentication
-
9.8
CRITICALCVE-2025-2152
A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. This issue affects the function Assimp::BaseImporter::ConvertToUTF8 of the file BaseImporter.cpp of the component File Handler. The manipulation l... Read more
Affected Products : assimp- Published: Mar. 10, 2025
- Modified: Mar. 13, 2025
- Vuln Type: Memory Corruption
-
9.8
CRITICALCVE-2024-6385
An issue was discovered in GitLab CE/EE affecting all versions starting from 15.8 prior to 16.11.6, starting from 17.0 prior to 17.0.4, and starting from 17.1 prior to 17.1.2, which allows an attacker to trigger a pipeline as another user under certain ci... Read more
Affected Products : gitlab- Published: Jul. 11, 2024
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2024-6047
Certain EOL GeoVision devices fail to properly filter user input for the specific functionality. Unauthenticated remote attackers can exploit this vulnerability to inject and execute arbitrary system commands on the device.... Read more
Affected Products : gv-dsp_lpr_firmware gv-dsp_lpr gvlx_4_firmware gvlx_4 gv_ipcamd_gv_bx130_firmware gv_ipcamd_gv_bx130 gv_ipcamd_gv_bx1500_firmware gv_ipcamd_gv_bx1500 gv_ipcamd_gv_cb220_firmware gv_ipcamd_gv_cb220 +27 more products- Actively Exploited
- Published: Jun. 17, 2024
- Modified: May. 09, 2025
-
9.8
CRITICALCVE-2024-5699
In violation of spec, cookie prefixes such as `__Secure` were being ignored if they were not correctly capitalized - by spec they should be checked with a case-insensitive comparison. This could have resulted in the browser not correctly honoring the beha... Read more
Affected Products : firefox- Published: Jun. 11, 2024
- Modified: Apr. 04, 2025
-
9.8
CRITICALCVE-2024-50557
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M8... Read more
Affected Products : scalance_s615_firmware scalance_m804pb_firmware scalance_m826-2_firmware scalance_m874-2_firmware scalance_m874-3_firmware scalance_m876-3_firmware scalance_m876-4_firmware ruggedcom_rm1224_lte\(4g\)_eu_firmware ruggedcom_rm1224_lte\(4g\)_nam_firmware scalance_m812-1_adsl-router_firmware +48 more products- Published: Nov. 12, 2024
- Modified: Nov. 13, 2024