Honeywell Win-pak 4.7.2, Web And Prior Versions Security Vulnerabilities

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS

PT-2021-02: Encryption bypass when downloading a firmware update in Diebold-Nixdorf RM3/CRS RM3/CRS dispenser firmware (all versions up to and including 41128 1002 RM3_CRS.BTR + 170329 2332 RM3_CRS.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5

PT-2021-01: Encryption bypass when downloading a firmware update in Diebold-Nixdorf CMDv5 CMDv5 dispenser firmware (all versions up to and including 141128 1002 CD5_ATM.BTR + 170329 2332 CD5_ATM.FRM) Severity: Severity level: High Encryption bypass when downloading a firmware update in...

Tuesday, July 2, 2024 Security Releases

Summary The Node.js project will release new versions of the 22.x, 20.x, 18.x releases lines on or shortly after, Tuesday, July 2, 2024 in order to address: 1 high severity issues. 2 medium severity issues. 3 low severity issues. Node.js fetch will be upgraded to undici v6.19.2 on Node.js 18.x...

CVE-2023-41419 vulnerabilities

Vulnerabilities for packages: kubeflow-jupyter-web-app,...

GHSA-X7M3-JPRG-WC5G vulnerabilities

Vulnerabilities for packages: kubeflow-jupyter-web-app,...

GHSA-2G68-C3QC-8985 vulnerabilities

Vulnerabilities for packages: py3-werkzeug, superset, kubeflow-volumes-web-app, kubeflow-jupyter-web-app,...

CVE-2024-34069 vulnerabilities

Vulnerabilities for packages: py3-werkzeug, superset, kubeflow-volumes-web-app, kubeflow-jupyter-web-app,...

GHSA-84PR-M4JR-85G5 vulnerabilities

Vulnerabilities for packages: py3-flask-cors, kubeflow-jupyter-web-app,...

CVE-2024-3651 vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, datadog-agent, kubeflow-pipelines-visualization-server, confluent-docker-utils, az, jwt-tool, k8s-sidecar, kubeflow-pipelines, dask-gateway, py3.10-tensorflow-core, py3-idna, kubeflow-katib, kubeflow-jupyter-web-app,...

GHSA-JJG7-2V4V-X38H vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, datadog-agent, kubeflow-pipelines-visualization-server, confluent-docker-utils, az, jwt-tool, k8s-sidecar, kubeflow-pipelines, dask-gateway, py3.10-tensorflow-core, py3-idna, kubeflow-katib, kubeflow-jupyter-web-app,...

GHSA-H75V-3VVJ-5MFJ vulnerabilities

Vulnerabilities for packages: superset, confluent-docker-utils, dask-gateway, py3-jinja2, reflex, pytorch, kubeflow-jupyter-web-app,...

GHSA-G4MX-Q9VG-27P4 vulnerabilities

Vulnerabilities for packages: py3-urllib3, jwt-tool, py3-tensorflow-serving-api, kubeflow-jupyter-web-app,...

CVE-2024-34064 vulnerabilities

Vulnerabilities for packages: superset, confluent-docker-utils, dask-gateway, py3-jinja2, reflex, pytorch, kubeflow-jupyter-web-app,...

CVE-2023-45803 vulnerabilities

Vulnerabilities for packages: py3-urllib3, jwt-tool, py3-tensorflow-serving-api, kubeflow-jupyter-web-app,...

CVE-2024-1681 vulnerabilities

Vulnerabilities for packages: py3-flask-cors, kubeflow-jupyter-web-app,...

CVE-2024-37891 vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, superset, py3-urllib3, airflow, confluent-docker-utils, az, k8s-sidecar, kubeflow-pipelines, dask-gateway, mlflow, reflex, kubeflow-katib, kubeflow-jupyter-web-app,...

GHSA-9WX4-H78V-VM56 vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, superset, datadog-agent, airflow, confluent-docker-utils, az, jwt-tool, k8s-sidecar, kubeflow-pipelines, patroni, mlflow, reflex, py3.10-tensorflow-core, kubeflow-katib, kubeflow-jupyter-web-app,...

GHSA-V845-JXX5-VC9F vulnerabilities

Vulnerabilities for packages: py3-urllib3, k8s-sidecar, dask-gateway, kube-downscaler, kubeflow-jupyter-web-app,...

CVE-2023-43804 vulnerabilities

Vulnerabilities for packages: py3-urllib3, k8s-sidecar, dask-gateway, kube-downscaler, kubeflow-jupyter-web-app,...

CVE-2023-46136 vulnerabilities

Vulnerabilities for packages: py3-werkzeug, airflow, py3-tensorflow-serving-api, kubeflow-jupyter-web-app,...

CVE-2024-35195 vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, superset, datadog-agent, airflow, confluent-docker-utils, az, jwt-tool, k8s-sidecar, kubeflow-pipelines, patroni, mlflow, reflex, py3.10-tensorflow-core, kubeflow-katib, kubeflow-jupyter-web-app,...

GHSA-HRFV-MQP8-Q5RW vulnerabilities

Vulnerabilities for packages: py3-werkzeug, airflow, py3-tensorflow-serving-api, kubeflow-jupyter-web-app,...

GHSA-34JH-P97F-MPXF vulnerabilities

Vulnerabilities for packages: ggshield, py3-cassandra-medusa, superset, py3-urllib3, airflow, confluent-docker-utils, az, k8s-sidecar, kubeflow-pipelines, dask-gateway, mlflow, reflex, kubeflow-katib, kubeflow-jupyter-web-app,...

CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5

CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5. No patch is available...

CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5

CVE-2020-17527 affecting package tomcat for versions less than 9.0.39-5. No patch is available...

CVE-2020-1472 affecting package samba for versions less than 4.12.5-4

CVE-2020-1472 affecting package samba for versions less than 4.12.5-4. A patched version of the package is...

CVE-2023-39326 affecting package golang for versions less than 1.21.6-1

CVE-2023-39326 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-24536 affecting package golang for versions less than 1.21.6-1

CVE-2023-24536 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-45284 affecting package golang for versions less than 1.21.6-1

CVE-2023-45284 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-44487 affecting package golang for versions less than 1.21.6-1

CVE-2023-44487 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2016-8681 affecting package libdwarf for versions less than 0.9.0

CVE-2016-8681 affecting package libdwarf for versions less than 0.9.0. A patched version of the package is...

CVE-2023-5678 affecting package edk2 for versions less than 20230301gitf80f052277c8-38

CVE-2023-5678 affecting package edk2 for versions less than 20230301gitf80f052277c8-38. A patched version of the package is...

CVE-2023-44487 affecting package prometheus for versions less than 2.37.0-10

CVE-2023-44487 affecting package prometheus for versions less than 2.37.0-10. A patched version of the package is...

CVE-2023-44487 affecting package moby-cli for versions less than 20.10.25-2

CVE-2023-44487 affecting package moby-cli for versions less than 20.10.25-2. A patched version of the package is...

CVE-2023-24538 affecting package golang for versions less than 1.19.8-1

CVE-2023-24538 affecting package golang for versions less than 1.19.8-1. A patched version of the package is...

CVE-2022-41725 affecting package msft-golang for versions less than 1.19.6-1

CVE-2022-41725 affecting package msft-golang for versions less than 1.19.6-1. A patched version of the package is...

CVE-2021-33454 affecting package yasm for versions less than 1.3.0-15

CVE-2021-33454 affecting package yasm for versions less than 1.3.0-15. No patch is available...

CVE-2023-45287 affecting package golang for versions less than 1.21.6-1

CVE-2023-45287 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2020-8277 affecting package python-gevent for versions less than 21.1.2-3

CVE-2020-8277 affecting package python-gevent for versions less than 21.1.2-3. A patched version of the package is...

CVE-2023-48795 affecting package moby-engine for versions less than 20.10.27-1

CVE-2023-48795 affecting package moby-engine for versions less than 20.10.27-1. A patched version of the package is...

CVE-2023-7008 affecting package systemd for versions less than 123

CVE-2023-7008 affecting package systemd for versions less than 123. A patched version of the package is...

CVE-2023-48795 affecting package jsch for versions less than 0.1.55-2

CVE-2023-48795 affecting package jsch for versions less than 0.1.55-2. A patched version of the package is...

CVE-2023-45285 affecting package golang for versions less than 1.21.6-1

CVE-2023-45285 affecting package golang for versions less than 1.21.6-1. A patched version of the package is...

CVE-2023-44487 affecting package flannel for versions less than 0.14.0-18

CVE-2023-44487 affecting package flannel for versions less than 0.14.0-18. A patched version of the package is...

CVE-2023-25801 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25801 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-25660 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25660 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-25658 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25658 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is...

CVE-2023-3817 affecting package rust for versions less than 1.68.2-5

CVE-2023-3817 affecting package rust for versions less than 1.68.2-5. A patched version of the package is...

CVE-2023-29406 affecting package golang for versions less than 1.20.7-1

CVE-2023-29406 affecting package golang for versions less than 1.20.7-1. A patched version of the package is...

CVE-2023-29403 affecting package golang for versions less than 1.20.7-1

CVE-2023-29403 affecting package golang for versions less than 1.20.7-1. A patched version of the package is...