CVE-2015-0454

DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2015. Notes: none...

MiracleLinux 4 : java-1.7.0-openjdk-1.7.0.55-2.4.7.1.AXS4 (AXSA:2014-273:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-273:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2014-0429 Unspecified vulnerability in Oracle Java SE 5.0u61, 6u71, 7u5...

CVE-2020-0454

In callCallbackForRequest of ConnectivityService.java, there is a possible permission bypass due to a missing permission check. This could lead to local information disclosure of the current SSID with User execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2025-0454

A Server-Side Request Forgery SSRF vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to v0.4.0. The vulnerability arises due to a hostname confusion between the urlparse function from the urllib.parse library and the requests library. A malicious...

CVE-2025-0454

creationtimestamp| type| source ---|---|--- 2025-03-20 10:19:39+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8195 2025-03-20 13:03:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lksr44ptdf26 2025-03-20 13:13:09+00:00| seen|...

CVE-2025-0454

A Server-Side Request Forgery SSRF vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to v0.4.0. The vulnerability arises due to a hostname confusion between the urlparse function from the urllib.parse library and the requests library. A malicious...

CVE-2025-0454 SSRF Check Bypass in Requests Utility in significant-gravitas/autogpt

A Server-Side Request Forgery SSRF vulnerability was identified in the Requests utility of significant-gravitas/autogpt versions prior to v0.4.0. The vulnerability arises due to a hostname confusion between the urlparse function from the urllib.parse library and the requests library. A malicious...

RHEL 9 : python3.9 (RHSA-2024:0454)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:0454 advisory. Python is an interpreted, interactive, object-oriented programming language, which includes modules, classes, exceptions, very high level dynamic dat...

CVE-2024-0454

The CVE-2024-0454 issue affects Dell EMC ELAN Match-on-Chip FPR solutions, where a design fault can cause valid SID leakage and enumeration with a spoof sensor, enabling bypass of Windows Hello by cloning the SID to break account identity on the Dell Inspiron platform. Documented affected version...

SUSE: Security Advisory (SUSE-SU-2023:0454-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES15 Security Update : ucode-intel (SUSE-SU-2023:0454-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0454-1 advisory. - Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may...

SUSE CVE-2014-0454

Unspecified vulnerability in Oracle Java SE 7u51 and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Security...

CVE-2023-0454

creationtimestamp| type| source ---|---|--- 2023-02-01 07:13:47+00:00| seen| https://t.me/cibsecurity/57235...

CVE-2023-0454

OrangeScrum version 2.0.11 allows an authenticated external attacker to delete arbitrary local files from the server. This is possible because the application uses an unsanitized attacker-controlled parameter to construct an internal path...

CVE-2023-0454

OrangeScrum 2.0.11 is affected by a path traversal vulnerability. An authenticated external attacker can delete arbitrary local files on the server due to an unsanitized attacker-controlled parameter used to construct internal paths. The CVE-2023-0454 entry does not specify a remediation in the p...

CVE-2023-0454

OrangeScrum version 2.0.11 allows an authenticated external attacker to delete arbitrary local files from the server. This is possible because the application uses an unsanitized attacker-controlled parameter to construct an internal path...

Mageia: Security Advisory (MGASA-2022-0454)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: SONAS Fix Available for SONAS CIFS Attribute Vulnerability (CVE-2013-0454)

Abstract SONAS includes a version of Samba that is affected by a vulnerability that sets incorrect attributes to a SONAS CIFS export. Content VULNERABILITY DETAILS: CVE ID: CVE-2013-0454 DESCRIPTION: A flaw in the Samba code for handling attributes of SONAS CIFS shares is resulting in a serious...

Security Bulletin: Storwize V7000 Unified Fix Available for CIFS Attribute Vulnerability (CVE-2013-0454)

Abstract Storwize V7000 Unified includes a version of Samba that is affected by a vulnerability that sets incorrect attributes to a Storwize V7000 Unified CIFS export. Content VULNERABILITY DETAILS: CVE ID:CVE-2013-0454 DESCRIPTION: A flaw in the Samba code for handling attributes of Storwize V70...

DEBIAN-CVE-2022-0454

Heap buffer overflow in ANGLE in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...