Multiple vulnerabilities in iroha Board

Overview iroha Board provided by iroha Soft Co., Ltd. contains multiple vulnerabilities listed below. Forced browsing CWE-425 - CVE-2025-41404 Cross-site request forgery CWE-352 - CVE-2025-48497 Yuji Tounai of Mitsui Bussan Secure Directions, Inc. reported these vulnerabilities to IPA. JPCERT/CC...

CVE-2024-4181

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

CVE-2024-4181 Command Injection in run-llama/llama_index

A command injection vulnerability exists in the RunGptLLM class of the llamaindex library, version 0.9.47, used by the RunGpt framework from JinaAI to connect to Language Learning Models LLMs. The vulnerability arises from the improper use of the eval function, allowing a malicious or compromised...

SUSE CVE-2005-3313

The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service infinite loop...

SUSE CVE-2010-2994

Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression...

PT-2020-8890 · Caddy · Caddy

Name of the Vulnerable Software and Affected Versions: Caddy versions prior to 0.10.13 Description: The issue is related to the mishandling of TLS client authentication. This is caused by the lack of the StrictHostMatching mode, allowing an attacker to bypass TLS client authentication. An attacke...

DEBIAN-CVE-2010-2994

Stack-based buffer overflow in the ASN.1 BER dissector in Wireshark 0.10.13 through 1.0.14 and 1.2.0 through 1.2.9 has unknown impact and remote attack vectors. NOTE: this issue exists because of a CVE-2010-2284 regression...

CVE-2009-2560

Multiple unspecified vulnerabilities in Wireshark 1.2.0 allow remote attackers to cause a denial of service application crash via a file that records a malformed packet trace and is processed by the 1 Bluetooth L2CAP, 2 RADIUS, or 3 MIOP dissector. NOTE: it was later reported that the RADIUS issu...

CentOS 3 / 4 : ethereal (CESA-2005:809)

Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ethereal package is a program for monitoring network traffic. A number of security flaws have been...

[SA18229] Ethereal GTP Dissector Denial of Service Vulnerability

TITLE: Ethereal GTP Dissector Denial of Service Vulnerability SECUNIA ADVISORY ID: SA18229 VERIFY ADVISORY: http://secunia.com/advisories/18229/ CRITICAL: Not critical IMPACT: DoS WHERE: From remote SOFTWARE: Ethereal 0.x http://secunia.com/product/1228/ DESCRIPTION: A vulnerability has been...

CVE-2005-3313

The IRC protocol dissector in Ethereal 0.10.13 allows remote attackers to cause a denial of service infinite loop...

PT-2005-4124 · Ethereal · Ethereal

Name of the Vulnerable Software and Affected Versions: Ethereal version 0.10.13 Description: The issue is related to the IRC protocol dissector, which allows remote attackers to cause a denial of service by triggering an infinite loop. Recommendations: For Ethereal version 0.10.13, consider...

ethereal security update

CentOS Errata and Security Advisory CESA-2005:809-01 Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ethereal package is a program for monitoring network...

RHEL 2.1 / 3 / 4 : ethereal (RHSA-2005:809)

Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ethereal package is a program for monitoring network traffic. A number of security flaws have been...

Moderate: Red Hat Security Advisory: ethereal security update

Updated Ethereal packages that fix various security vulnerabilities are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ethereal package is a program for monitoring network traffic. A number of security flaws have been...