Debian dla-4479 : libwireshark-data - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4479 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-4479-1 [email protected]...

SUSE: Security Advisory (SUSE-SU-2026:20222-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES16 Security Update : wireshark (SUSE-SU-2026:20222-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:20222-1 advisory. Update to Wireshark 4.4.13: - CVE-2025-11626: MONGO dissector infinite loop bsc1251933. - CVE-2025-13499: Kafka dissector crash...

SUSE CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

Wireshark Security Update (wnpa-sec-2025-07) - Windows

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

Wireshark Security Update (wnpa-sec-2025-07) - Linux

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

Wireshark Security Update (wnpa-sec-2025-07) - Mac OS x

Wireshark is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"...

CVE-2025-13945

creationtimestamp| type| source ---|---|--- 2025-12-03 08:39:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m732naxu6u2s 2025-12-04 14:50:18+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3m767tcd64v2o...

DEBIAN-CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

CVE-2025-13945

CVE-2025-13945 affects Wireshark 4.6.0 and 4.6.1, where the HTTP3 dissector crash can lead to denial of service. Connected advisories indicate that multiple distributions address this by upgrading Wireshark to version 4.4.13 (e.g., Debian/SUSE/openSUSE/SUSE advisories). The available sources do n...

CVE-2025-13945

HTTP3 dissector crash in Wireshark 4.6.0 and 4.6.1 allows denial of service...

CVE-2024-13945

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

CVE-2024-13945

creationtimestamp| type| source ---|---|--- 2025-05-23 09:47:55+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17375 2025-05-23 11:22:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lptjbxlxxn2y...

CVE-2024-13945

CVE-2024-13945 describes a Stored Absolute Path Traversal affecting ABB products: ASPECT-Enterprise, NEXUS Series, and MATRIX Series (through version 3.*). Root cause is a path traversal flaw in the ASPECT component that can lead to sensitive data exposure when administrator credentials are compr...

CVE-2024-13945 Stored Absolute Path Traversal

Stored Absolute Path Traversal vulnerabilities in ASPECT could expose sensitive data if administrator credentials become compromised. This issue affects ASPECT-Enterprise: through 3.; NEXUS Series: through 3.; MATRIX Series: through 3...

CVE-2020-13945

In Apache APISIX, the user enabled the Admin API and deleted the Admin API access IP restriction rules. Eventually, the default token is allowed to access APISIX management data. This affects versions 1.2, 1.3, 1.4, 1.5...

CVE-2019-13945

creationtimestamp| type| source ---|---|--- 2024-03-11 07:07:12+00:00| seen| https://t.me/ctinow/204470...

CVE-2017-13945

Rejected reason: This candidate is unused by its CNA...

Apache APISIX 1.2 <= 1.5 Information Disclosure

The version of Apache APISIX installed on the remote host is 1.2 prior to or equal to 1.5. It is, therefore, affected by an information disclosure vulnerability. An authenticated, remote attacker could exploit this to access Apache APISIX management data. Note that Nessus has not tested for these...

APISIX Admin API default access token RCE

Apache APISIX has a default, built-in API token edd1c9f034335f136f87ad84b625c8f1 that can be used to access all of the admin API, which leads to remote LUA code execution through the script parameter added in the 2.x version. This module also leverages another vulnerability to bypass the IP...