MiracleLinux 3 : firefox-3.6.7-3.0.1.AXS3, xulrunner-1.9.2.7-3.0.1.AXS3 (AXSA:2010-391:05)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-391:05 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. XULRunner provides the XUL Runtime...

ECHO-EFA8-0654-2E47

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2016-0654

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in Oracle MySQL 5.7.10 and earlier allows local users to affect availability via vectors related to InnoDB, a different vulnerability...

CVE-2020-0654

A security feature bypass vulnerability exists in Microsoft OneDrive App for Android.This could allow an attacker to bypass the passcode or fingerprint requirements of the App.The security update addresses the vulnerability by correcting the way Microsoft OneDrive App for Android handles sharing...

CVE-2013-0654

CimWebServer in GE Intelligent Platforms Proficy HMI/SCADA - CIMPLICITY 4.01 through 8.0, and Proficy Process Systems with CIMPLICITY, allows remote attackers to execute arbitrary commands or cause a denial of service daemon crash via a crafted packet...

CVE-1999-0654

The OS/2 or POSIX subsystem in NT is enabled...

Linux Distros Unpatched Vulnerability : CVE-2007-0654

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer underflow in X MultiMedia System xmms 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin...

RHEL 4 : xmms (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - XMMS multiple issues CVE-2007-0654 CVE-2007-0653, CVE-2007-0654 Note that Nessus has not tested for these...

CVE-2024-0654

creationtimestamp| type| source ---|---|--- 2024-02-10 19:47:02+00:00| published-proof-of-concept| https://t.me/ctinow/182634...

CVE-2024-0654

A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22. Affected is an unknown function of the file mainscripts/Util.py. The manipulation leads to deserialization. Local access is required to approach this attack. The exploit has been...

CVE-2024-0654 DeepFaceLab Util.py deserialization

A vulnerability, which was classified as problematic, was found in DeepFaceLab pretrained DF.wf.288res.384.92.72.22. Affected is an unknown function of the file mainscripts/Util.py. The manipulation leads to deserialization. Local access is required to approach this attack. The exploit has been...

CVE-2024-0654

CVE-2024-0654 affects DeepFaceLab pretrained DF.wf.288res.384.92.72.22. The vulnerability is in the file mainscripts/Util.py and is described as a deserialization flaw that can be triggered with local access. The exploit has been publicly disclosed. No concrete remediation or patch version is pro...

CVE-2023-0654

creationtimestamp| type| source ---|---|--- 2023-08-29 20:40:55+00:00| seen| https://t.me/cibsecurity/69369...

CVE-2023-0654

CVE-2023-0654 affects the WARP Mobile Client for Android, prior to version 6.29. The vulnerability results from a misconfiguration that allows tapjacking, enabling a malicious app to deceive users into thinking the attacker’s UI is the WARP client (spoofing user activity loads). Evidence across m...

CVE-2023-0654 Spoofing User's Activity Loads in WARP Mobile Client (Android)

Due to a misconfiguration, the WARP Mobile Client 6.29 for Android was susceptible to a tapjacking attack. In the event that an attacker built a malicious application and managed to install it on a victim's device, the attacker would be able to trick the user into believing that the app shown on...

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to node-request-retry CVE-2022-0654

Summary Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to node-request-retry CVE-2022-0654 with details below Vulnerability Details CVEID: CVE-2022-0654 DESCRIPTION: node-request-retry could allow a remote attacker to obtain sensitive information, caused ...

SUSE SLES12 Security Update : php74 (SUSE-SU-2022:0654-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0654-1 advisory. - In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTERVALIDATEFLOAT filter...

CVE-2022-0654

creationtimestamp| type| source ---|---|--- 2022-02-23 02:12:53+00:00| seen| https://t.me/cibsecurity/37913...

CVE-2022-0654

Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository fgribreau/node-request-retry prior to 7.0.0...

CVE-2022-0654

CVE-2022-0654 affects node-request-retry in fgribreau/node-request-retry prior to 7.0.0. The vulnerability exposes sensitive information (cookies/credentials) to an unauthorized actor by leaking data to external sites during redirect-based requests, enabling potential credential abuse. Public ref...