VGPU Software (Virtual GPU Manager - Citrix Hypervisor, VMware VSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KVM) Security Vulnerabilities

CVE-2024-24758 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-24758 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2024-25629 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-25629 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2023-6237 affecting package nodejs for versions less than 20.14.0-1

CVE-2023-6237 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2023-48795 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-48795 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2024-24786 affecting package ig for versions less than 0.29.0-1

CVE-2024-24786 affecting package ig for versions less than 0.29.0-1. An upgraded version of the package is available that resolves this...

CVE-2024-1013 affecting package unixODBC for versions less than 2.3.12-2

CVE-2024-1013 affecting package unixODBC for versions less than 2.3.12-2. A patched version of the package is...

CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2

CVE-2023-44487 affecting package sriov-network-device-plugin for versions less than 3.5.1-2. An upgraded version of the package is available that resolves this...

CVE-2022-41717 affecting package golang for versions less than 1.17.13-2,1.18.8-2,1.21.6-1

CVE-2022-41717 affecting package golang for versions less than 1.17.13-2,1.18.8-2,1.21.6-1. A patched version of the package is...

CVE-2023-39325 affecting package etcd for versions less than 3.5.6-11

CVE-2023-39325 affecting package etcd for versions less than 3.5.6-11. An upgraded version of the package is available that resolves this...

CVE-2024-3177 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-3177 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2024-33877 affecting package hdf5 for versions less than 1.14.4.3-1

CVE-2024-33877 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this...

CVE-2019-19391 affecting package sysbench for versions less than 1.0.20-3

CVE-2019-19391 affecting package sysbench for versions less than 1.0.20-3. A patched version of the package is...

CVE-2022-1292 affecting package hvloader for versions less than 1.0.1-2

CVE-2022-1292 affecting package hvloader for versions less than 1.0.1-2. An upgraded version of the package is available that resolves this...

CVE-2024-32613 affecting package hdf5 for versions less than 1.14.4.3-1

CVE-2024-32613 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this...

CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1

CVE-2024-32605 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this...

CVE-2024-30260 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-30260 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2024-30261 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-30261 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2024-29159 affecting package hdf5 for versions less than 1.14.4.3-1

CVE-2024-29159 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this...

CVE-2024-29163 affecting package hdf5 for versions less than 1.14.4.3-1

CVE-2024-29163 affecting package hdf5 for versions less than 1.14.4.3-1. An upgraded version of the package is available that resolves this...

CVE-2022-28805 affecting package ntopng for versions less than 5.2.1-3

CVE-2022-28805 affecting package ntopng for versions less than 5.2.1-3. A patched version of the package is...

CVE-2023-52425 affecting package expat for versions less than 2.6.2-1

CVE-2023-52425 affecting package expat for versions less than 2.6.2-1. An upgraded version of the package is available that resolves this...

CVE-2024-0567 affecting package gnutls for versions less than 3.8.3-1

CVE-2024-0567 affecting package gnutls for versions less than 3.8.3-1. An upgraded version of the package is available that resolves this...

CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1

CVE-2024-21626 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1

CVE-2023-45288 affecting package kubernetes for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2024-21890 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-21890 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2023-44487 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-44487 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2023-39325 affecting package cri-o for versions less than 1.30.1-1

CVE-2023-39325 affecting package cri-o for versions less than 1.30.1-1. An upgraded version of the package is available that resolves this...

CVE-2024-21896 affecting package nodejs for versions less than 20.14.0-1

CVE-2024-21896 affecting package nodejs for versions less than 20.14.0-1. An upgraded version of the package is available that resolves this...

CVE-2024-24806 affecting package cmake for versions less than 3.28.2-6

CVE-2024-24806 affecting package cmake for versions less than 3.28.2-6. A patched version of the package is...

FriendlyCaptcha Plugin for TYPO3 Captcha Check Bypass

An issue was discovered in the friendlycaptcha_official (aka Integration of Friendly Captcha) extension before 0.1.4 for TYPO3. The extension fails to check the requirement of the captcha field in submitted form data, allowing a remote user to bypass the captcha check. This only affects the...

FriendlyCaptcha Plugin for TYPO3 Captcha Check Bypass

An issue was discovered in the friendlycaptcha_official (aka Integration of Friendly Captcha) extension before 0.1.4 for TYPO3. The extension fails to check the requirement of the captcha field in submitted form data, allowing a remote user to bypass the captcha check. This only affects the...

events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability

An issue was discovered in the events2 (aka Events 2) extension before 8.3.8 and 9.x before 9.0.6 for TYPO3. Missing access checks in the management plugin lead to an insecure direct object reference (IDOR) vulnerability with the potential to activate or delete various events for unauthenticated...

events2 TYPO3 extension insecure direct object reference (IDOR) vulnerability

An issue was discovered in the events2 (aka Events 2) extension before 8.3.8 and 9.x before 9.0.6 for TYPO3. Missing access checks in the management plugin lead to an insecure direct object reference (IDOR) vulnerability with the potential to activate or delete various events for unauthenticated...

Improper Input Validation

github.com/lightningnetwork/lnd is vulnerable to Improper Input Validation. The vulnerability is due to excessive memory allocation during the parsing process, which creates a Denial-Of-Service (DoS)...

CGA-p2qq-w8qw-6vjp

Bulletin has no...

Path Traversal

github.com/go-skynet/LocalAI is vulnerable to path traversal. The vulnerability is due to insufficient input validation of the model parameter during the model deletion process, which allows an attacker to delete arbitrary files on the host file...

SolarWinds Serv-U Vulnerability Under Active Attack - Patch Immediately

A recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in the wild. The vulnerability, tracked as CVE-2024-28995 (CVSS score: 8.6), concerns a directory transversal bug that could allow attackers to read sensitive...

US bans Kaspersky, warns: “Immediately stop using that software”

The US government will ban the sale of Kaspersky antivirus products to new customers in the United States starting July 20, with a follow-on deadline to prohibit the cybersecurity company from providing users with software updates after September 29. The move follows years of allegations that the.....

SQL Injection

Gin-vue-admin is vulnerable to SQL injection. The vulnerability is due to insufficient validation user input which allows an attacker to execute arbitrary SQL...

CGA-hv8x-jmgj-fp3m

Bulletin has no...

CGA-hm7p-55gr-6rwf

Bulletin has no...

CGA-xw46-g57p-x8jh

Bulletin has no...

CGA-6qmv-w6v4-7g8w

Bulletin has no...

CGA-ggfp-f887-7www

Bulletin has no...

CGA-4qv7-4gh9-g2pj

Bulletin has no...

CGA-2974-f63r-wqfr

Bulletin has no...

CGA-xg53-gr2g-vffm

Bulletin has no...

CGA-fh4x-g9g6-mcx4

Bulletin has no...

CGA-93gv-hv4c-83gx

Bulletin has no...

CGA-5xfh-j46h-x23q

Bulletin has no...