CVE-2026-1139 UTT 进取 520W ConfigExceptMSN strcpy buffer overflow

A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/ConfigExceptMSN. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...

CVE-2026-1139

A vulnerability has been found in UTT 进取 520W 1.7.7-180627. This vulnerability affects the function strcpy of the file /goform/ConfigExceptMSN. The manipulation leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...

CVE-2025-14425

creationtimestamp| type| source ---|---|--- 2025-12-17 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1139/...

CVE-2025-1139

creationtimestamp| type| source ---|---|--- 2025-08-20 18:18:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwtzzybp5v2u...

CVE-2025-1139 IBM Edge Application Manager incorrect permissions

IBM Edge Application Manager 4.5 could allow a local user to read or modify resources that they should not have authorization to access due to incorrect permission assignment...

CVE-2025-1139

CVE-2025-1139 affects IBM Edge Application Manager 4.5. A local user can read or modify resources due to incorrect permission assignment. Root cause: improper/incorrect permission provisioning. Impact: unauthorized access to resources on the device. Mitigation: upgrade to patched IBM Edge Applica...

PT-2025-34061 · Ibm · Edge Application Manager

Name of the Vulnerable Software and Affected Versions: IBM Edge Application Manager version 4.5 Description: IBM Edge Application Manager 4.5 may allow a local user to read or modify resources without proper authorization due to incorrect permission assignment. Recommendations: At the moment, the...

Amazon Linux 2023 : mod_security, mod_security-mlogc (ALAS2023-2025-1139)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1139 advisory. ModSecurity is an open source, cross platform web application firewall WAF engine for Apache, IIS and Nginx. In versions 2.9.8 to before 2.9.11, an empty XML tag can cause a segmentation fault. If...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.12.57 security update

Red Hat OpenShift Container Platform release 4.12.57 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.12. Red Hat Product Security has rated this update as having a...

Rocky Linux 9 : keylime (RLSA-2024:1139)

The remote Rocky Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:1139 advisory. - A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate...

SUSE: Security Advisory (SUSE-SU-2024:1139-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.10 bug fix and security update

Red Hat OpenShift Container Platform release 4.15.10 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a...

Oracle Linux 9 : keylime (ELSA-2024-1139)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-1139 advisory. 7.3.0-13 - Backport fix for CVE-2023-3674 Resolves: RHEL-21013 Tenable has extracted the preceding description block directly from the Oracle Linux security...

CVE-2023-1139

Delta Electronics InfraSuite Device Master versions prior to 1.0.5 are affected by a deserialization vulnerability in the Device-gateway service that can be exploited to achieve remote code execution without authentication. The issue is listed as CVE-2023-1139, with a CVSS v3 base score of 8.8 (N...

CVE-2023-1139

creationtimestamp| type| source ---|---|--- 2023-03-23 14:19:08+00:00| seen| https://t.me/truesecator/4205 2023-03-27 18:19:56+00:00| seen| https://t.me/cibsecurity/60776 2025-01-16 21:56:26+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/2058...

SUSE CVE-2018-1139

A flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1 authentication even when NTLMv1 was explicitly disabled. A man-in-the-middle attacker could use this flaw to read the credential and other details passed between the samba server and client...

CVE-2022-1139

creationtimestamp| type| source ---|---|--- 2022-07-23 07:24:24+00:00| seen| https://t.me/cibsecurity/46864...

CVE-2022-1139

Inappropriate implementation in Background Fetch API in Google Chrome prior to 100.0.4896.60 allowed a remote attacker to leak cross-origin data via a crafted HTML page...

CVE-2022-1139

CVE-2022-1139 refers to an inappropriate implementation in Chrome’s Background Fetch API that could allow a remote attacker to leak cross-origin data via a crafted HTML page. The issue is associated with Chrome/Chromium before version 100.0.4896.60 and was acknowledged in Google’s March 29, 2022 ...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2022:0112-1 Rating: important References: 1194511 1194512 1194513 1194514 1197680 1198053 1198361 Cross-References: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-1125 CVE-2022-1127 CVE-2022-1128...