Alibaba Cloud Linux 3 : 0033: resource-agents (ALINUX3-SA-2026:0033)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2026:0033 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2026-23490: pyasn1 is a generic ASN.1 library f...

MGASA-2026-0033 Updated nginx packages fix security vulnerability

MitM injection. CVE-2026-1642...

RHEL 8 : xorg-x11-server-Xwayland (RHSA-2026:0033)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2026:0033 advisory. Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg: xmayland: Use-after-free in XPresentNotify structure...

GCVE-1-2025-0033

creationtimestamp| type| source ---|---|--- 2025-12-08 13:51:07+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115684269529208752...

CVE-2025-0033

creationtimestamp| type| source ---|---|--- 2025-10-13 13:27:41+00:00| seen| https://gist.github.com/Darkcrai86/31c57a16ea59b4f99398467046656642 2025-10-13 17:21:01+00:00| seen| https://poliverso.org/objects/0477a01e-d4ab947b-bbf3024f4ce7f8f7 2025-10-14 02:38:02+00:00| seen|...

PT-2025-41795

Name of the Vulnerable Software and Affected Versions AMD EPYC and EPYC Embedded series processors versions prior to BIOS updates from OEM partners AMD EPYC processors using Secure Encrypted Virtualization – Secure Nested Paging SEV-SNP affected versions not specified Description A critical issue...

CVE-2023-0033

The PDF Viewer WordPress plugin before 1.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

CVE-2020-0033

In CryptoPlugin::decrypt of CryptoPlugin.cpp, there is a possible out of bounds write due to stale pointer. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0...

Photon OS 5.0: Syslinux PHSA-2023-5.0-0033

An update of the syslinux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-5.0-0033. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-0033

creationtimestamp| type| source ---|---|--- 2024-02-16 03:21:52+00:00| seen| https://t.me/ctinow/186085...

CVE-2024-0033

In multiple functions of ashmem-dev.cpp, there is a possible missing seal due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

CVE-2024-0033

CVE-2024-0033 concerns Android’s ashmem-dev.cpp, where a heap buffer overflow may cause a missing seal. The effect is local elevation of privilege with no extra user interaction required, per the documents. The available sources consistently describe the issue’s presence in ashmem-dev.cpp and its...

RHSA-2024:0033

creationtimestamp| type| source ---|---|--- 2024-01-04 06:16:50+00:00| seen| https://t.me/ctinow/162779...

Mageia: Security Advisory (MGASA-2023-0033)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: The IBM FlashSystem 840 product is affected by vulnerabilities in Apache Tomcat

Summary Security vulnerabilities have been discovered in Apache Tomcat Vulnerability Details CVE-ID: CVE-2013-4286, CVE-2013-4322, & CVE-2014-0033 DESCRIPTION: FlashSystem 840 uses Apache Tomcat. FlashSystem 840 runs an Apache Tomcat web server which enables the systems’ browser-based...

CVE-2023-0033

The CVE-2023-0033 entry concerns the PDF Viewer WordPress plugin (versions before 1.0.0). The issue is a failure to validate/escape a shortcode attribute, enabling Stored Cross-Site Scripting for users with a role as low as contributor. Affected component: shortcode handling in the plugin; root c...

CVE-2023-0033 PDF Viewer < 1.0.0 - Contributor+ Stored XSS via Shortcode

The PDF Viewer WordPress plugin before 1.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

CVE-2023-0033 PDF Viewer < 1.0.0 - Contributor+ Stored XSS via Shortcode

The PDF Viewer WordPress plugin before 1.0.0 does not validate and escape one of its shortcode attributes, which could allow users with a role as low as contributor to perform Stored Cross-Site Scripting attack...

VMware Workstation 16.0.x < 16.2.5 Vulnerability (VMSA-2022-0033)

The version of VMware Workstation installed on the remote host is 16.0.x prior to 16.2.5. It is, therefore, affected by a vulnerability. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable,...

WordPress PDF Viewer Plugin < 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software PDF Viewer Type Plugin Vulnerable versions 1.0.0 Fixed in 1.0.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0033 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 6e3ff2a57463 Credits István Márton Required...