Page 2 of 13471 results (0.010 seconds)

CVSS: 4.7EPSS: 0%CPEs: -EXPL: 0

17 Jul 2025 — NVIDIA Jetson Linux contains a vulnerability in the kernel where an attacker may cause an exposure of sensitive information due to a shared microarchitectural predictor state that influences transient execution. A successful exploit of this vulnerability may lead to information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5662 • CWE-1423: Exposure of Sensitive Information caused by Shared Microarchitectural Predictor State that Influences Transient Execution •

CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0

17 Jul 2025 — NVIDIA Jetson Linux contains a vulnerability in UEFI Management mode, where an unprivileged local attacker may cause exposure of sensitive information via a side channel vulnerability. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, and information disclosure. • https://nvidia.custhelp.com/app/answers/detail/a_id/5662 • CWE-392: Missing Report of Error Condition •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0

17 Jul 2025 — HCL Connections is vulnerable to an information disclosure vulnerability that could allow a user to obtain sensitive information they are not entitled to, which is caused by improper handling of request data. • https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0122628 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 9.0EPSS: 0%CPEs: 2EXPL: 1

17 Jul 2025 — A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service. • https://github.com/jpts/cve-2025-23266-poc • CWE-426: Untrusted Search Path •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

16 Jul 2025 — The JetElements plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.7.7. • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

16 Jul 2025 — The JetPopup plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.0.15. • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 0

15 Jul 2025 — VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to exploit this issue to leak memory from processes communicating with vSoc... • https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/35877 • CWE-908: Use of Uninitialized Resource •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

15 Jul 2025 — (Chromium security severity: High) Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. • https://chromereleases.googleblog.com/2025/07/stable-channel-update-for-desktop_15.html •

CVSS: 10.0EPSS: 2%CPEs: 1EXPL: 1

15 Jul 2025 — (Chromium security severity: High) Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. • https://github.com/allinsthon/CVE-2025-6558-exp •

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

15 Jul 2025 — (Chromium security severity: High) Security issues were discovered in Chromium which could result in the execution of arbitrary code, denial of service, or information disclosure. • https://chromereleases.googleblog.com/2025/07/stable-channel-update-for-desktop_15.html •