24 matches found
Security update for sqlite3 (important)
openSUSE security update: security update for sqlite3 ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:21090-1 Rating: important References: bsc1268012 bsc1268013 Cross-References: CVE-2026-11822 CVE-2026-11824 CVSS scores: CVE-2026-11822 SUSE : 7.8...
Photon OS 5.0: Sqlite PHSA-2026-5.0-0889
An update of the sqlite package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0889. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
SUSE-SU-2026:22218-1 Security update for sqlite3
This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution bsc1268012. - CVE-2026-11824: heap-based...
SUSE-SU-2026:22166-1 Security update for sqlite3
This update for sqlite3 fixes the following issues Update to 3.53.2: - CVE-2026-11822: memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution bsc1268012. - CVE-2026-11824: heap-based...
ROOT-OS-DEBIAN-13-CVE-2026-11824 CVE-2026-11824 in rootio-sqlite3 - Patched by Root
Root has patched CVE-2026-11824 in the rootio-sqlite3 package for Root:Debian:13. Multiple fixed versions available...
SQLite < 3.53.2 Multiple Heap Buffer Overflows
The version of SQLite installed on the remote host is prior to 3.53.2. It is, therefore, affected by multiple vulnerabilities: - A heap-based buffer overflow vulnerability in the FTS5 full-text search extension allows attackers to cause a crash or execute arbitrary code by supplying a crafted...
CVE-2026-11824 affecting package sqlite for versions less than 3.44.0-4
CVE-2026-11824 affecting package sqlite for versions less than 3.44.0-4. A patched version of the package is available...
CVE-2026-11824
creationtimestamp| type| source ---|---|--- 2026-06-09 21:46:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnv6c5utvl2h 2026-06-09 22:23:24+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mnvadonscf2q 2026-06-18 17:10:38+00:00| seen|...
CVE-2025-11824
creationtimestamp| type| source ---|---|--- 2025-10-22 08:43:33+00:00| seen| Telegram/GmKwxUHHc6Za3j7f-Y77l7mXvAeoVSxOGshcgf7qWwywKI...
WordPress Cinza Grid plugin <= 1.2.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Skin Content Field vulnerability
Authenticated Contributor+ Stored Cross-Site Scripting via Skin Content Field vulnerability discovered by Nabil Irawan in WordPress Plugin Cinza Grid versions = 1.2.1...
CVE-2024-11824
creationtimestamp| type| source ---|---|--- 2025-08-11 18:27:49+00:00| seen| MISP/3e4b778d-5810-4171-a915-f1d106684af4...
CVE-2024-11824
A stored cross-site scripting XSS vulnerability exists in langgenius/dify version latest, specifically in the chat log functionality. The vulnerability arises because certain HTML tags like and are not disallowed, allowing an attacker to inject malicious HTML into the log via prompts. When an adm...
CVE-2024-11824 Stored XSS in langgenius/dify
A stored cross-site scripting XSS vulnerability exists in langgenius/dify version latest, specifically in the chat log functionality. The vulnerability arises because certain HTML tags like and are not disallowed, allowing an attacker to inject malicious HTML into the log via prompts. When an adm...
CVE-2024-11824
CVE-2024-11824 is a stored XSS in langgenius/dify (chat log functionality). The issue arises because certain HTML tags, such as and , are not disallowed, enabling an attacker to inject malicious HTML via prompts. When an admin views the compromised log, credentials or sensitive information could...
CVE-2019-11824
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2018-11824
CVE-2018-11824 describes a stack-based buffer overflow in a firmware routine of Qualcomm/ Snapdragon components ( Snapdragon Mobile, Snapdragon Wear ) affecting multiple platform variants (MDM9206, MDM9607, MDM9650, SD 210/212/205, SD 835, SD 845, SD 850, SDA660). The root cause is a overflow in ...
CVE-2018-11824
A stack-based buffer overflow can occur in a firmware routine in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835, SD 845, SD 850, SDA660...
CVE-2018-11824
A stack-based buffer overflow can occur in a firmware routine in Snapdragon Mobile, Snapdragon Wear in version MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 835, SD 845, SD 850, SDA660...
CVE-2017-11824
The CVE-2017-11824 entry describes an Elevation of Privilege in the Windows Graphics Component due to improper handling of objects in memory, allowing code execution with elevated privileges. The Connected documents (KB/MS updates) indicate this vulnerability is among a broader set addressed by c...
Windows 2008 October 2017 Multiple Security Updates (KRACK)
The remote Windows host is missing multiple security updates released on 2017/10/10. It is, therefore, affected by multiple vulnerabilities : - A buffer overflow vulnerability exists in the Microsoft JET Database Engine that could allow remote code execution on an affected system. An attacker who...