77 matches found
OESA-2026-2918 openvpn security update
OpenVPN is a full-featured open source SSL VPN solution that accommodates a wide range of configurations, including remote access, site-to-site VPNs, Wi-Fi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls. Starting with the...
Linux Distros Unpatched Vulnerability : CVE-2026-11771
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vulnerability exists due to a 1-byte buffer overrun condition within the NTLMv2 proxy authentication parsing pipeline. When configured to route traffic...
Debian dsa-6376 : openvpn - security update
The remote Debian 13 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-6376 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6376-1 [email protected] https://www.debian.org/securit...
UBUNTU-CVE-2026-11771
1-byte buffer overrun on NTLMv2 proxy responses...
DEBIAN-CVE-2026-11771
Bulletin has no description...
CVE-2025-11771
The Cryptocurrency Token, Launchpad Presale, ICO & IDO, Airdrop by TokenICO plugin for WordPress is vulnerable to unauthenticated and unauthorized modification of data due to missing authentication and capability checks on the 'createSaleRecord' function in all versions up to, and including, 2.4....
Linux Distros Unpatched Vulnerability : CVE-2018-11771
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When reading a specially crafted ZIP archive, the read method of Apache Commons Compress 1.7 to 1.17's ZipArchiveInputStream can fail to return the correct EOF...
Security Bulletin: Multiple security vulnerabilities have been identified in IBM® DB2® shipped with IBM PureData System for Operational Analytics
Summary IBM® DB2® is shipped as a component of IBM PureData System for Operational Analytics. Information about security vulnerabilities affecting IBM DB2 have been published in a security bulletin. Vulnerability Details CVEID:CVE-2017-12973 DESCRIPTION: Connect2id Nimbus JOSE+JWT could provide...
CVE-2024-11771
Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality...
CVE-2024-11771
Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality...
CVE-2024-11771
creationtimestamp| type| source ---|---|--- 2025-02-11 15:23:30+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113985939700497507 2025-02-11 15:25:14+00:00| seen| https://infosec.exchange/users/cve/statuses/113985946487899400 2025-02-11 15:40:14+00:00| seen|...
CVE-2024-11771
Ivanti CSA (Cloud Services Appliance) is affected by CVE-2024-11771: a path traversal vulnerability in versions before 5.0.5 allows a remote unauthenticated attacker to access restricted functionality. The CVSS v3.1 base score is 5.3 (Medium); attack vector NETWORK, no privileges required, no use...
CVE-2024-11771
Path traversal in Ivanti CSA before version 5.0.5 allows a remote unauthenticated attacker to access restricted functionality...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation Application Manager July 2019 CPU (CVE-2019-2816, CVE-2019-11771, CVE-2019-4473)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Tivoli System Automation Application Manager 4.1.0.0 - 4.1.0.1 . These issues were disclosed as part of the IBM Java SDK updates in July 2019. There are multiple vulnerabilities in IBM® SDK Java...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli System Automation for Multiplatforms July 2019 CPU (CVE-2019-2816, CVE-2019-11771, CVE-2019-4473)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 used by IBM Tivoli System Automation for Multiplatforms 4.1.0.0 to 4.1.0.3. These issues were disclosed as part of the IBM Java SDK updates in July 2019. There are multiple vulnerabilities in IBM® SDK Java™...
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Spectrum Control (formerly Tivoli Storage Productivity Center) (CVE-2019-2684, CVE-2019-4473, CVE-2019-11771)
Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped and used by IBM Spectrum Control formerly Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates for April 2019 and July 2019. Vulnerability Details CVEID:...
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Snapshot on AIX (CVE-2019-4473, CVE-2019-11771)
Summary Multiple vulnerabilities in IBM Runtime Environment Java were disclosed as part of the IBM Java SDK updates in July 2019. IBM Runtime Environment Java is used by IBM Spectrum Protect Snapshot formerly Tivoli Storage FlashCopy Manager on AIX. Vulnerability Details CVEID: CVE-2019-4473...
Mageia: Security Advisory (MGASA-2019-0001)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Eclipse OpenJ9 could allow a local attacker to gain elevated privileges on the system and Multiple binaries in IBM SDK, Java Technology Edition on the AIX platform use insecure absolute RPATHs CVE-2019-4473 and CVE-2019-11771
Summary Multiple binaries in IBM SDK, Java Technology Edition 7, 7R, and 8 on the AIX platform use insecure absolute RPATHs, which may facilitate code injection and privilege elevation by local users. IBM X-Force ID: 163984. Eclipse OpenJ9 could allow a local attacker to gain elevated privileges ...
SUSE SLES11 Security Update : java-1_7_1-ibm (SUSE-SU-2019:14160-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2019:14160-1 advisory. - AIX builds of Eclipse OpenJ9 before 0.15.0 contain unused RPATHs which may facilitate code injection and privilege elevation by local users...