MiracleLinux 4 : krb5-1.8.2-3.AXS4.7 (AXSA:2011-157:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-157:03 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartex...

EUVD-2023-12334

Malicious code in bioql PyPI...

CVE-2014-0285

creationtimestamp| type| source ---|---|--- 2025-08-31 03:13:16+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

CVE-2020-0285

In Telephony, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID: A-156253479...

CVE-2013-0285

The nori gem 2.0.x before 2.0.2, 1.1.x before 1.1.4, and 1.0.x before 1.0.3 for Ruby does not properly restrict casts of string values, which allows remote attackers to conduct object-injection attacks and execute arbitrary code, or cause a denial of service memory and CPU consumption involving...

CVE-2012-0285

Multiple cross-site scripting XSS vulnerabilities in Stoneware webNetwork before 6.0.8.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

Siemens SCALANCE X-200RNA Switch Devices Cryptographic Issues (CVE-2015-0285)

The ssl3clienthello function in s3clnt.c in OpenSSL 1.0.2 before 1.0.2a does not ensure that the PRNG is seeded before proceeding with a handshake, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by sniffing the network and then conducting a brute-force...

CVE-2025-0285

Various Paragon Software products contain an arbitrary kernel memory mapping vulnerability within biontdrv.sys that is caused by a failure to properly validate the length of user supplied data, which can allow an attacker to perform privilege escalation exploits...

CVE-2025-0285

Various Paragon Software products contain an arbitrary kernel memory mapping vulnerability within biontdrv.sys that is caused by a failure to properly validate the length of user supplied data, which can allow an attacker to perform privilege escalation exploits...

CVE-2025-0285

CVE-2025-0285 affects Paragon Partition Manager/BioNTdrv.sys. The vulnerability is an arbitrary kernel memory mapping flaw caused by improper validation of user-supplied data lengths in biontdrv.sys (versions around 7.9.1). Exploitation can lead to LOCAL privilege escalation to SYSTEM; BYOVD use ...

CVE-2025-0285

creationtimestamp| type| source ---|---|--- 2025-03-03 15:46:13+00:00| exploited| https://t.me/truesecator/6798 2025-03-03 19:44:13+00:00| seen| https://t.me/cvedetector/19383 2025-03-04 03:03:45+00:00| seen| https://bsky.app/profile/hackingne.ws/post/3ljji4p2r3t2d 2025-03-04 15:31:09+00:00| seen...

Mageia: Security Advisory (MGASA-2024-0285)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-0285

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input...

CVE-2024-0285

CVE-2024-0285 affects OpenHarmony (Dsoftbus) v4.0.0 and earlier. The vulnerability arises from improper input validation in the Dsoftbus component, allowing a local attacker to trigger a denial of service. NVD notes a local attack vector with medium base score and high availability impact; OpenHa...

CVE-2024-0285 Dsoftbus has an improper input validation vulnerability

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input...

CVE-2024-0285 Dsoftbus has an improper input validation vulnerability

in OpenHarmony v4.0.0 and prior versions allow a local attacker cause DOS through improper input...

Security Bulletin: Vulnerabilities in OpenSSL affect IBM SAN b-type Switches

Summary OpenSSL issues from March 2015 containing 12 CVE were disclosed. This bulletin addresses the vulnerabilities that have been referred to as Open SSL used by IBM SAN b-type Switches. Vulnerability Details CVEID: CVE-2015-0291 DESCRIPTION: OpenSSL is vulnerable to a denial of service. By...

CVE-2023-0285

creationtimestamp| type| source ---|---|--- 2023-02-21 12:21:30+00:00| seen| https://t.me/cibsecurity/58575...

CVE-2023-0285 Real Media Library < 4.18.29 - Author+ Stored XSS

The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with the role of author and above to perform Stored Cross-Site Scripting attacks...

CVE-2023-0285 Real Media Library < 4.18.29 - Author+ Stored XSS

The Real Media Library WordPress plugin before 4.18.29 does not sanitise and escape the created folder names, which could allow users with the role of author and above to perform Stored Cross-Site Scripting attacks...