Latest CVE Feed
-
3.2
LOWCVE-2020-25084
QEMU 5.0.0 has a use-after-free in hw/usb/hcd-xhci.c because the usb_packet_map return value is not checked.... Read more
- EPSS Score: %0.02
- Published: Sep. 25, 2020
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2020-25742
pci_change_irq_level in hw/pci/pci.c in QEMU before 5.1.1 has a NULL pointer dereference because pci_get_bus() might not return a valid pointer.... Read more
Affected Products : qemu- EPSS Score: %0.04
- Published: Oct. 06, 2020
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2023-44976
Hangzhou Shunwang Rentdrv2 before 2024-12-24 allows local users to terminate EDR processes and possibly have unspecified other impact via DeviceIoControl with control code 0x22E010, as exploited in the wild in October 2023.... Read more
Affected Products :- Published: Aug. 01, 2025
- Modified: Aug. 04, 2025
- Vuln Type: Denial of Service
-
3.2
LOWCVE-2014-6595
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than... Read more
- EPSS Score: %0.08
- Published: Jan. 21, 2015
- Modified: Apr. 12, 2025
-
3.2
LOWCVE-2014-6590
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox before 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability than... Read more
- EPSS Score: %0.11
- Published: Jan. 21, 2015
- Modified: Apr. 12, 2025
-
3.2
LOWCVE-2013-5883
Unspecified vulnerability in Oracle Solaris 8 allows local users to affect integrity and availability via unknown vectors related to Kernel.... Read more
- EPSS Score: %0.07
- Published: Jan. 15, 2014
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2013-2192
The RPC protocol implementation in Apache Hadoop 2.x before 2.0.6-alpha, 0.23.x before 0.23.9, and 1.x before 1.2.1, when the Kerberos security features are enabled, allows man-in-the-middle attackers to disable bidirectional authentication and obtain sen... Read more
Affected Products : hadoop- EPSS Score: %0.11
- Published: Jan. 24, 2014
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2015-0427
Unspecified vulnerability in the Oracle VM VirtualBox component in Oracle Virtualization VirtualBox prior to 4.3.20 allows local users to affect integrity and availability via vectors related to VMSVGA virtual graphics device, a different vulnerability th... Read more
- EPSS Score: %0.10
- Published: Jan. 21, 2015
- Modified: Apr. 12, 2025
-
3.2
LOWCVE-2021-25351
Improper Access Control in EmailValidationView in Samsung Account prior to version 10.7.0.7 and 12.1.1.3 allows physically proximate attackers to log out user account on device without user password.... Read more
- EPSS Score: %0.05
- Published: Mar. 25, 2021
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2020-25741
fdctrl_write_data in hw/block/fdc.c in QEMU 5.0.0 has a NULL pointer dereference via a NULL block pointer for the current drive.... Read more
Affected Products : qemu- EPSS Score: %0.18
- Published: Oct. 02, 2020
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2020-2748
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 5.2.40, prior to 6.0.20 and prior to 6.1.6. Easily exploitable vulnerability allows high privileged attacker wi... Read more
- EPSS Score: %0.13
- Published: Apr. 15, 2020
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2025-29431
Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting (XSS) in /pages/department.php via the id, code, and name parameters.... Read more
Affected Products : online_class_and_exam_scheduling_system- Published: Mar. 17, 2025
- Modified: Apr. 02, 2025
- Vuln Type: Cross-Site Scripting
-
3.2
LOWCVE-2022-26354
A flaw was found in the vhost-vsock device of QEMU. In case of error, an invalid element was not detached from the virtqueue before freeing its memory, leading to memory leakage and other unexpected results. Affected QEMU versions <= 6.2.0.... Read more
- EPSS Score: %0.01
- Published: Mar. 16, 2022
- Modified: Nov. 21, 2024
-
3.2
LOWCVE-2010-3508
Unspecified vulnerability in Oracle Solaris 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Zones.... Read more
Affected Products : solaris- EPSS Score: %0.16
- Published: Oct. 14, 2010
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2010-2376
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors related to Solaris Management Console.... Read more
Affected Products : solaris- EPSS Score: %0.06
- Published: Jul. 13, 2010
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2010-2382
Unspecified vulnerability in Oracle Solaris 8, 9, and 10 allows local users to affect confidentiality and integrity via unknown vectors.... Read more
Affected Products : solaris- EPSS Score: %0.19
- Published: Jul. 13, 2010
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2023-20573
A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially resulting in guests not receiving expected debug information. ... Read more
Affected Products : epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_7373x_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware epyc_7443p_firmware epyc_7453_firmware +120 more products- EPSS Score: %0.09
- Published: Jan. 11, 2024
- Modified: Jun. 20, 2025
-
3.2
LOWCVE-2010-2383
Unspecified vulnerability in Oracle Solaris 8, 9, and 10, and OpenSolaris, allows local users to affect confidentiality and integrity, related to NFS.... Read more
- EPSS Score: %0.19
- Published: Jul. 13, 2010
- Modified: Apr. 11, 2025
-
3.2
LOWCVE-2015-5011
IBM WebSphere Message Broker 8 before 8.0.0.6 and Integration Bus 9 before 9.0.0.4 do not check authorization for MQSISTARTMSGFLOW and MQSISTOPMSGFLOW commands, which allows local users to bypass intended access restrictions, and start or stop a service, ... Read more
- EPSS Score: %0.12
- Published: Oct. 26, 2015
- Modified: Apr. 12, 2025
-
3.2
LOWCVE-2025-52991
The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories with pre-existing content, potentially l... Read more
Affected Products : nix- Published: Jun. 27, 2025
- Modified: Jun. 30, 2025
- Vuln Type: Misconfiguration