144 matches found
PT-2026-52290
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A slab out-of-bounds write exists in the kl5kusb105 USB serial driver. The function klsi 105 prepare write buffer incorrectly handles the bulk-out buffer by storing a two-byte length...
Astra Linux – Vulnerability in Firefox and Thunderbird
A out-of-bounds read can occur during the decoding of H264 videos. This can lead to a potentially exploitable crash. This vulnerability affects Firefox ESR 102.3, Thunderbird 102.3, and Firefox 105...
Astra Linux – Vulnerability in Chromium
Inappropriate implementation in the iframe Sandbox in Google Chrome prior to 105.0.5195.52 allowed a remote attacker to leak cross-origin data through a crafted HTML page...
Astra Linux – Vulnerability in Chromium
“Type Confusion” in MathML in Google Chrome prior to version 105.0.5195.52 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...
Astra Linux – Vulnerability in Chromium
The use of “after free” in PDFs in Google Chrome before version 105.0.5195.125 allowed a remote attacker to potentially exploit heap corruption through a crafted PDF file. Chromium security severity: High...
CVE-2026-2033
creationtimestamp| type| source ---|---|--- 2026-02-13 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-105/ 2026-02-21 00:02:32+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdd2ldott2h...
MiracleLinux 7 : qemu-kvm-1.5.3-105.el7.4 (AXSA:2016-232:02)
The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-232:02 advisory. qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together with the K...
Malicious code in riyanto-105 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a74b179e907300f46c498dc1b09b51647609feefe9fc0622cb81bbd597f1ebc This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...
JLSEC-2025-130 FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the av_...
FFmpeg v.n6.1-3-g466799d4f5 allows memory consumption when using the colorcorrect filter, in the avmalloc function in libavutil/mem.c:105:9 component...
EUVD-2014-4552
Malware in sbrugna...
EUVD-2016-2311
Malware in sbrugna...
EUVD-2023-58401
Malicious code in bioql PyPI...
EUVD-2023-2836
Malicious code in bioql PyPI...
ASB-A-336268889
In multiple locations, there is a possible way to conduct local privilege escalation due to memory corruption. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Security Bulletin: Information disclosure vulnerability in IBM WebSphere Application Server Liberty affect IBM Business Automation Workflow - CVE-2023-44483
Summary IBM WebSphere Application Server Liberty is shipped as a component of IBM Business Automation Workflow for User Management Services and Process Federation Server. IBM WebSphere Applciation Server Liberty is also the basis for containerized IBM Business Automation Workflow. A security...
Security Bulletin: IBM Match 360 is vulnerable to Apache Santuario used within IBM WebSphere Application Server Liberty (CVE-2023-44483)
Summary IBM Match 360 is vulnerable to Apache Santuario used within IBM WebSphere Application Server Liberty. Apache Santuario could allow a remote authenticated attacker to obtain sensitive information, caused by the storage of a private key in the log files when using the JSR 105 API. By gainin...
Security Bulletin: Vulnerability in Santuario affects IBM Process Mining CVE-2023-44483
Summary There is a vulnerability in Santuario that could allow a remote authenticated attacker to obtain sensitive information on the system. The code is used by IBM Process Mining. This bulletin identifies the security fixes to apply to address the vulnerability. Vulnerability Details...
CVE-2023-6150
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105...
CVE-2023-6150
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users.This issue affects e-municipality module: before v.105...
CVE-2023-6151
Incorrect Use of Privileged APIs vulnerability in ESKOM Computer e-municipality module allows Collect Data as Provided by Users. This issue affects e-municipality module: before v.105...