MiracleLinux 7 : openssl-1.0.2k-19.el7 (AXSA:2019-4126:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4126:04 advisory. openssl: 0-byte record padding oracle CVE-2019-1559 openssl: timing side channel attack in the DSA signature algorithm CVE-2018-0734 Tenable has...

CVE-2021-0734

In Settings, there is a possible way to determine whether an app is installed without query permissions, due to side channel information disclosure. This could lead to local information disclosure of an installed package, without proper query permissions, with no additional execution privileges...

CVE-2022-0734

A cross-site scripting vulnerability was identified in the CGI program of Zyxel USG/ZyWALL series firmware versions 4.35 through 4.70, USG FLEX series firmware versions 4.50 through 5.20, ATP series firmware versions 4.35 through 5.20, and VPN series firmware versions 4.35 through 5.20, that coul...

openssl: Fix of CVE-2018-0734

CVE-2018-0734: fix timing side channel attack in DSA signature algorithm...

CLSA-2025-1760559298 openssl: Fix of CVE-2018-0734

CVE-2018-0734: fix timing side channel attack in DSA signature algorithm...

CLSA-2025-1760556795 openssl: Fix of CVE-2018-0734

CVE-2018-0734: fix timing side channel attack in DSA signature algorithm...

EUVD-2022-0734

Malicious code in bioql PyPI...

TencentOS Server 2: openssl (TSSA-2023:0333)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0333 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

CVE-2025-0734

A vulnerability has been found in yproject RuoYi up to 4.8.0 and classified as critical. This vulnerability affects the function getBeanName of the component Whitelist. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public an...

CVE-2024-0734

A vulnerability was found in Smsot up to 2.12. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /get.php. The manipulation of the argument tid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the...

CVE-2020-0734

A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server, aka 'Remote Desktop Client Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0681...

CVE-2023-0734

creationtimestamp| type| source ---|---|--- 2025-03-06 16:33:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6695...

Linux Distros Unpatched Vulnerability : CVE-2018-0734

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm t...

CVE-2025-0734

creationtimestamp| type| source ---|---|--- 2025-01-27 19:16:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqnp6rbo727 2025-01-27 21:51:59+00:00| seen| https://t.me/cvedetector/16507...

CVE-2025-0734 y_project RuoYi Whitelist getBeanName deserialization

A vulnerability has been found in yproject RuoYi up to 4.8.0 and classified as critical. This vulnerability affects the function getBeanName of the component Whitelist. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public an...

CVE-2025-0734

CVE-2025-0734 affects y_project RuoYi

CVE-2025-0734 y_project RuoYi Whitelist getBeanName deserialization

A vulnerability has been found in yproject RuoYi up to 4.8.0 and classified as critical. This vulnerability affects the function getBeanName of the component Whitelist. The manipulation leads to deserialization. The attack can be initiated remotely. The exploit has been disclosed to the public an...

edk2 security update

Mon Sep 09 2024 Aaron Young - Create new 20240909 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK...

Photon OS 3.0: Linux PHSA-2024-3.0-0734

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0734. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHEL 8 : ovmf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssl: 0-byte record padding oracle CVE-2019-1559 - openssl: timing attack in RSA Decryption...