CVE-2026-0558

creationtimestamp| type| source ---|---|--- 2026-03-29 18:33:36+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mi7rwhgj2f2e 2026-03-29 18:38:59+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mi7sa2n63j2r 2026-03-29 19:15:55+00:00|...

EUVD-2026-0558

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2020-0558

Improper buffer restrictions in kernel mode driver for IntelR PROSet/Wireless WiFi products before version 21.70 on Windows 10 may allow an unprivileged user to potentially enable denial of service via adjacent access...

CVE-2022-0558

Cross-site Scripting XSS - Stored in Packagist microweber/microweber prior to 1.2.11...

CVE-2025-0558

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

CVE-2025-0558

creationtimestamp| type| source ---|---|--- 2025-01-18 13:01:52+00:00| seen| https://infosec.exchange/users/cve/statuses/113849487328744611 2025-01-18 13:15:41+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfzfdiotlm27 2025-01-18 13:54:37+00:00| seen|...

CVE-2025-0558

CVE-2025-0558 affects TDuckCloud tduck-platform up to 4.0. The vulnerability lies in the function QueryProThemeRequest (src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java), where manipulation of the color parameter enables an SQL injection. Impact as described across sources: re...

CVE-2025-0558 TDuckCloud tduck-platform QueryProThemeRequest.java QueryProThemeRequest sql injection

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

CVE-2025-0558 TDuckCloud tduck-platform QueryProThemeRequest.java QueryProThemeRequest sql injection

A vulnerability classified as critical was found in TDuckCloud tduck-platform up to 4.0. This vulnerability affects the function QueryProThemeRequest of the file src/main/java/com/tduck/cloud/form/request/QueryProThemeRequest.java. The manipulation of the argument color leads to sql injection. Th...

openSUSE Security Advisory (SUSE-SU-2024:0558-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Expands Free Logging Capabilities for all U.S. Federal Agencies

Microsoft has expanded free logging capabilities to all U.S. federal agencies using Microsoft Purview Audit irrespective of the license tier, more than six months after a China-linked cyber espionage campaign targeting two dozen organizations came to light. "Microsoft will automatically enable th...

RHSA-2024:0558

creationtimestamp| type| source ---|---|--- 2024-01-30 12:16:59+00:00| seen| https://t.me/ctinow/175861...

RHEL 8 : tigervnc (RHSA-2024:0558)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0558 advisory. Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine...

CVE-2024-0558

creationtimestamp| type| source ---|---|--- 2024-01-15 18:26:26+00:00| seen| https://t.me/ctinow/168507 2024-01-24 01:16:28+00:00| seen| https://t.me/ctinow/172442 2024-02-03 11:41:17+00:00| seen| https://t.me/ctinow/178499 2025-06-11 20:35:47+00:00| published-proof-of-concept|...

CVE-2024-0558 DedeBIZ makehtml_freelist_action.php sql injection

A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability affects unknown code of the file /admin/makehtmlfreelistaction.php. The manipulation of the argument startid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed ...

CVE-2024-0558 DedeBIZ makehtml_freelist_action.php sql injection

A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability affects unknown code of the file /admin/makehtmlfreelistaction.php. The manipulation of the argument startid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed ...

CVE-2023-0558

creationtimestamp| type| source ---|---|--- 2024-01-04 12:38:54+00:00| seen| https://t.me/arpsyndicate/2457...

Storm-0558 Update: Takeaways from Microsoft's recent report

The Wiz research team examines Microsoft's latest Storm-0558 findings and summarizes the key learnings cloud customers should take away from the incident...

Outlook Hack: Microsoft Reveals How a Crash Dump Led to a Major Security Breach

Microsoft on Wednesday revealed that a China-based threat actor known as Storm-0558 acquired the inactive consumer signing key to forge tokens and access Outlook by compromising an engineer's corporate account. This enabled the adversary to access a debugging environment that contained informatio...

Results of Major Technical Investigations for Storm-0558 Key Acquisition

March 12, 2024 update As part of our continued commitment to transparency and trust outlined in Microsoft’s Secure Future Initiative, we are providing further information as it relates to our ongoing investigation. This new information does not change the customer guidance we previously shared, n...