CVE-2025-12838

creationtimestamp| type| source ---|---|--- 2025-11-11 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-988/...

RockyLinux 9 : mod_security (RLSA-2025:12838)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:12838 advisory. modsecurity: ModSecurity Denial of Service Vulnerability CVE-2025-48866 Tenable has extracted the preceding description block directly from the RockyLinux securi...

Linux Distros Unpatched Vulnerability : CVE-2019-12838

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection. CVE-2019-12838 Note that Nessus relies on the presence of the package as...

Oracle Linux 9 : mod_ (ELSA-2025-12838)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-12838 advisory. 2.9.6-2.1 - Resolves: RHEL-100102 - CVE-2025-48866 modsecurity: ModSecurity Denial of Service Vulnerability Tenable has extracted the preceding description blo...

CVE-2024-12838

The passwordless login mechanism in CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability, allowing remote attackers with regular privileges to send a crafted request to switch to the identity of any user, including administrators...

CVE-2024-12838

creationtimestamp| type| source ---|---|--- 2024-12-31 01:36:06+00:00| seen| https://infosec.exchange/users/cve/statuses/113744869181833797 2024-12-31 03:40:09+00:00| seen| https://t.me/cvedetector/13969...

CVE-2024-12838

CVE-2024-12838 affects CGFIDO (passwordless login) from Changing Information Technology. The vulnerability is an Authentication Bypass in the passwordless login mechanism, enabling remote attackers with regular privileges to send a crafted request and switch to the identity of any user, including...

CVE-2024-12838 Changing Information Technology CGFIDO - Authentication Bypass

The passwordless login mechanism in CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability, allowing remote attackers with regular privileges to send a crafted request to switch to the identity of any user, including administrators...

CVE-2024-12838 Changing Information Technology CGFIDO - Authentication Bypass

The passwordless login mechanism in CGFIDO from Changing Information Technology has an Authentication Bypass vulnerability, allowing remote attackers with regular privileges to send a crafted request to switch to the identity of any user, including administrators...

CVE-2019-12838

SchedMD Slurm 17.11.x, 18.08.0 through 18.08.7, and 19.05.0 allows SQL Injection...

Debian DLA-2886-1 : slurm-llnl - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2886 advisory. Multiple security issues were discovered in the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system, which...

SUSE: Security Advisory (SUSE-SU-2019:2229-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-12838

The CVE-2020-12838 entry concerns ismartgate PRO 1.5.9. The vulnerability enables privilege escalation by appending PHP code to /cron/mailAdmin.php, affecting multiple disclosures (Red Hat, NVD, CNVD, etc.). The risk is described as high/critical in CVSS terms (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H...

CVE-2020-12838

ismartgate PRO 1.5.9 is vulnerable to privilege escalation by appending PHP code to /cron/mailAdmin.php...

[SECURITY] [DLA 2143-1] slurm-llnl security update

Package : slurm-llnl Version : 14.03.9-5+deb8u5 CVE ID : CVE-2019-6438 CVE-2019-12838 Debian Bug : 920997 931880 Several issue were found in Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system. CVE-2019-6438 SchedMD Slurm mishandles 32-bit...

openSUSE: Security Advisory for slurm (openSUSE-SU-2020:0085_1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : slurm (openSUSE-2020-85)

This update for slurm to version 18.08.9 fixes the following issues : Security issues fixed : - CVE-2019-19728: Fixed a privilege escalation with srun, where --uid might have unintended side effects bsc1159692. - CVE-2019-12838: Fixed SchedMD Slurm SQL Injection issue bnc1140709. - CVE-2019-19727...

SUSE SLED15 / SLES15 Security Update : slurm (SUSE-SU-2020:0110-1)

This update for slurm to version 18.08.9 fixes the following issues : Security issues fixed : CVE-2019-19728: Fixed a privilege escalation with srun, where --uid might have unintended side effects bsc1159692. CVE-2019-12838: Fixed SchedMD Slurm SQL Injection issue bnc1140709. CVE-2019-19727: Fixe...

SUSE SLES12 Security Update : slurm (SUSE-SU-2019:3080-1)

This update for slurm fixes the following issues : Security issue fixed : CVE-2019-6438: Fixed a heap overflow on 32-bit systems in xmalloc bsc1123304. CVE-2019-12838: Fixed an SQL injection bsc1140709. Note that Tenable Network Security has extracted the preceding description block directly from...

SUSE-SU-2019:3080-1 Security update for slurm

This update for slurm fixes the following issues: Security issue fixed: - CVE-2019-6438: Fixed a heap overflow on 32-bit systems in xmalloc bsc1123304. - CVE-2019-12838: Fixed an SQL injection bsc1140709...