12 matches found
SUSE CVE-2026-11787
A flaw was found in 389 Directory Server. The ldaputf8prev function reads bytes before the start of a buffer without bounds checking, causing a heap buffer over-read in string filter parsing that may influence internal filter processing behavior...
CVE-2026-11787 389-ds-base: 389-ds-base: heap buffer over-read in ldap_utf8prev() via str2simple filter parsing
A flaw was found in 389 Directory Server. The ldaputf8prev function reads bytes before the start of a buffer without bounds checking, causing a heap buffer over-read in string filter parsing that may influence internal filter processing behavior...
Linux Distros Unpatched Vulnerability : CVE-2026-11787
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in 389 Directory Server. The ldaputf8prev function reads bytes before the start of a buffer without bounds checking, causing a heap buffer...
OTFCC has an unspecified vulnerability (CNVD-2023-11787)
OTFCC is a C library and utility open sourced by Caryll. It is used to parse and write OpenType font files. OTFCC has a security vulnerability that stems from a segmentation violation located at its /release-x64/otfccdump 0x6badae. No detailed vulnerability details are currently available...
in-terre-actif.com Cross Site Scripting vulnerability OBB-1335824
Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has:       a. verified the vulnerability and confirmed its existence;       b. notified the website operator about its existence...
CVE-2020-11787
Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.68, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK20 before 2.3.5.26, RBR40 before 2.3.5.30,...
CVE-2020-11787
CVE-2020-11787 impacts multiple NETGEAR devices via stored XSS in the device web UI. Affected models/firmware windows include D7800 (<1.0.1.56), R7500v2 (<1.0.3.46), R7800 (<1.0.2.68), R8900 (<1.0.4.28), R9000 (<1.0.4.28), RAX120 (<1.0.0.78), RBR20 (<2.3.5.26), RBS20 (<2.3...
com.cibuddy:karaf.assembly (=1.0.0), com.kagurabi.services:kagura-assembly (>=1.5 <=1.9) +23 more potentially affected by CVE-2018-11787 via org.apache.karaf:apache-karaf (>=2.0.0 <=3.0.8)
org.apache.karaf:apache-karaf MAVEN version =2.0.0, =1.5, =1.5.6, =4.4.1, =1.1.2, =2.0.0, =2.0.6, =2.7.7, =3.0.0, =1.6.1-incubating, =1.6.1-incubating, =2.2.3, =2.0.0, =2.0.0, =2.2.11 and more Source cves: CVE-2018-11787 Source advisory: OSV:GHSA-CQ9C-55R7-455X...
ch.sourcepond.commons:smartswitch-tests (>=2.0.0 <=4.0.2), ch.sourcepond.io:checksum-tests (>=1.0.3 <=4.0.3) +10 more potentially affected by CVE-2018-11787 via org.apache.karaf:apache-karaf (>=4.0.0 <=4.0.8)
org.apache.karaf:apache-karaf MAVEN version =4.0.0, =2.0.0, =1.0.3, =1.0.0, =1.0.0, =1.0.0, =1.0, =2.18.0, =4.0.0, =4.0.0, =2.8.7, =2.6.5, =2.8.11 - org.code-house.validation:itests =4.0.0 Source cves: CVE-2018-11787 Source advisory: OSV:GHSA-CQ9C-55R7-455X...
CVE-2018-11787
CVE-2018-11787 affects Apache Karaf prior to 3.0.9, 4.0.9 and 4.1.1 where the webconsole opens a Gogo shell and, if Pax Web Extender Whiteboard is present, an unauthenticated /gogo URL can expose the Karaf console. Direct access to /system/console/gogo also requires authentication, but the /gogo ...
SuSE9 Security Update : subdomain-parser (YOU Patch Number 11787)
The following patch supports new language features in AppArmor which have been added to improve the confinement provided to applications executing other applications will confined by AppArmor. Two new execute modifiers: 'P' and 'U' are provided and are flavors of the exisiting 'p' and 'u' modifie...
CVE-2019-11787
CVE-2019-11787 is rejected/not used per the Initial Description.