81 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-10197
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library...
CVE-2026-10197
creationtimestamp| type| source ---|---|--- 2026-05-31 22:58:58+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn6o4xjs3o23...
CVE-2026-10197 Assimp TF File glTF2Importer.cpp ImportEmbeddedTextures null pointer dereference
A vulnerability was detected in Assimp up to 6.0.4. Affected is the function glTF2Importer::ImportEmbeddedTextures in the library code/AssetLib/glTF2/glTF2Importer.cpp of the component TF File Handler. The manipulation results in null pointer dereference. The attack is only possible with local...
MiracleLinux 7 : samba-4.10.4-10.el7 (AXSA:2020-020:02)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-020:02 advisory. samba: Combination of parameters and permissions can allow user to escape from the share path definition CVE-2019-10197 samba: smb client vulnerable ...
CVE-2025-10197
A vulnerability was found in HJSoft HCM Human Resources Management System up to 20250822. Affected by this vulnerability is an unknown functionality of the file /templates/attestation/../../selfservice/lawresource/downlawbase. Performing manipulation of the argument ID results in sql injection...
CVE-2025-10197
creationtimestamp| type| source ---|---|--- 2025-09-10 02:01:36+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lyh5aif6n62m 2025-09-10 05:06:00+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lyhhk7vdbt2t...
CVE-2025-10197
CVE-2025-10197 concerns HJSoft HCM Human Resources Management System (up to 20250822). The vulnerability is a SQL injection in an unknown functionality of the file path /templates/attestation/../../selfservice/lawresource/downlawbase, triggered by manipulating the ID argument. Remote exploitation...
Alibaba Cloud Linux 3 : 0077: samba (ALINUX3-SA-2021:0077)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2021:0077 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-10197: A flaw was found in samba...
Linux Distros Unpatched Vulnerability : CVE-2016-10197
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The searchmakenew function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service out-of-bounds read via an empty hostname...
Security Bulletin: IBM MQ Appliance is affected by multiple Java vulnerabilities (CVE-2024-10197, CVE-2024-21208 and CVE-2024-21217)
Summary IBM MQ Appliance has addressed multiple Java vulnerabilities. Vulnerability Details CVEID:CVE-2024-21217 DESCRIPTION: Vulnerability in Java SE component: Serialization. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...
CVE-2024-10197
creationtimestamp| type| source ---|---|--- 2024-10-21 04:17:56+00:00| seen| https://t.me/cvedetector/8443...
CVE-2024-10197
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...
CVE-2024-10197 code-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scripting
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...
CVE-2024-10197 code-projects Pharmacy Management System Manage Supplier Page manage_supplier.php cross site scripting
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file /managesupplier.php of the component Manage Supplier Page. The manipulation of the argument address leads to cross site scripting. It is...
RHEL 6 : libevent (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libevent: Stack-buffer overflow in the nameparse function CVE-2016-10195 - The searchmakenew function in...
RHEL 5 : libevent (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libevent: Stack-buffer overflow in the nameparse function CVE-2016-10195 - Stack-based buffer overflow in...
Oracle Linux 7 : samba (ELSA-2020-1084)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1084 advisory. - resolves: 1764468 - Fix CVE-2019-10218 - resolves: 1746240 - Security fix for CVE-2019-10197 Tenable has extracted the preceding description block...
BELL-CVE-2016-10197 CVE-2016-10197 does not affect BellSoft software
Bulletin has no description...
K69511801: Samba vulnerability CVE-2019-10197
Security Advisory Description A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and...
SUSE CVE-2016-10197
The searchmakenew function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service out-of-bounds read via an empty hostname...