CVE-2026-0758

Summary of CVE-2026-0758 (mcp-server-siri-shortcuts) : A local privilege-escalation command-injection flaw in the shortcutName parameter of mcp-server-siri-shortcuts. The issue arises from insufficient validation of a user-supplied string before it is used in a system call, allowing a low-privile...

CVE-2026-0758 mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability

mcp-server-siri-shortcuts shortcutName Command Injection Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of mcp-server-siri-shortcuts. An attacker must first obtain the ability to execute low-privileged code on the...

MiracleLinux 3 : avahi-0.6.16-9.AXS3 (AXSA:2010-380:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-380:02 advisory. Avahi is a system which facilitates service discovery on a local network -- this means that you can plug your laptop or computer into a network and...

CVE-2026-0758

creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-024/ 2026-01-23 10:18:52+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md3hxwvw4r2o 2026-01-23 10:19:23+00:00| seen|...

EUVD-2026-0758

Not used...

CVE-2019-0961

An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-0758, CVE-2019-0882...

CVE-2025-0758

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

CVE-2025-0758

creationtimestamp| type| source ---|---|--- 2025-04-16 22:57:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/12167 2025-04-17 02:06:30+00:00| seen| https://t.me/cvedetector/23195 2025-04-17 02:48:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmy3rxwhzt2d...

CVE-2025-0758

CVE-2025-0758 affects Hitachi Vantara Pentaho Business Analytics Server. The root cause is that Karaf JMX beans are enabled and accessible by default, allowing a local-privilege user to leverage exposed functionality via these beans. Impact described across sources: read/modify a security-critica...

CVE-2025-0758 Hitachi Vantara Pentaho Business Analytics Server - Incorrect Permission Assignment for Critical Resource

Overview The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. CWE-732 Description Hitachi Vantara Pentaho Business Analytics Server prior to versions 10.2.0.2, including 9.3.x and 8.3.x, is installed...

Photon OS 4.0: Emacs PHSA-2025-4.0-0758

An update of the emacs package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0758. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2024-3.0-0758

Updates of 'linux-esx', 'linux-secure', 'linux-aws', 'linux-rt', 'linux' packages of Photon OS have been released...

SUSE: Security Advisory (SUSE-SU-2024:0758-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-0758

creationtimestamp| type| source ---|---|--- 2024-02-15 17:26:25+00:00| seen| https://t.me/ctinow/185708...

CVE-2024-0758

MolecularFaces before 0.3.0 is vulnerable to Cross-Site Scripting (XSS). A remote attacker can inject arbitrary JavaScript into a victim’s browser by crafting malicious molfiles, leveraging improper handling of user input in the viewer component. Affected version range is prior to 0.3.0; exploit ...

K4532: gzip vulnerabilities CAN-2005-0758, CAN-2005-0988, and CAN-2005-1228

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F5...

SUSE CVE-2013-0758

Mozilla Firefox before 18.0, Firefox ESR 10.x before 10.0.12 and 17.x before 17.0.2, Thunderbird before 17.0.2, Thunderbird ESR 10.x before 10.0.12 and 17.x before 17.0.2, and SeaMonkey before 2.15 allow remote attackers to execute arbitrary JavaScript code with chrome privileges by leveraging...

CVE-2023-0758

A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. This issue affects some unknown processing of the file src/main/java/com/pointlion/mvc/common/model/SysOrg.java. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

CVE-2023-0758

CVE-2023-0758 affects glorylion JFinalOA 1.0.2. A SQL injection flaw arises from the id parameter in SysOrg.java (src/main/java/com/pointlion/mvc/common/model/SysOrg.java). The issue can be exploited remotely and leads to high impact on confidentiality, integrity, and availability. Multiple conne...

CVE-2023-0758 glorylion JFinalOA SysOrg.java sql injection

A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. This issue affects some unknown processing of the file src/main/java/com/pointlion/mvc/common/model/SysOrg.java. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...