RHEL 10 : kernel update (Important) (RHSA-2026:14926)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:14926 advisory. A special build of the kernel packages for Red Hat Enterprise Linux for NVIDIA. CVE-2026-31431 kernel: crypto: algifaead - Revert to operating...

01os (=0.0.14), 3-04-2025-ttm (=0.1.0) +3618 more potentially affected by CVE-2025-14926 via transformers (>=4.0.0 <=4.57.6)

transformers PYPI version =4.0.0, =0.10.11, =0.5.5, =0.0.4.80, =0.2.1, =0.1.0, =0.1.1, =1.3.8, =1.5.3 - acace-coherence-checker =0.1.0 - acace-compression-engine =0.1.0 - acace-semantic-analyzer =0.1.0 - acace-sentiment-analyzer =0.1.0 and more Source cves: CVE-2025-14926 Source advisory:...

adamix-gpt2 (>=0.0.1 <=0.0.2), allennlp (>=1.1.0 <=1.2.2) +67 more potentially affected by CVE-2025-14926 via transformers (>=3.0.0 <=3.5.1)

transformers PYPI version =3.0.0, =0.0.1, =1.1.0, =1.1.0, =0.0.2, =0.0.1, =0.0.7, =0.7.1, =0.2.4, =51.0.1, =0.0.1, =0.2.0, =0.4.1 and more Source cves: CVE-2025-14926 Source advisory: OSV:PYSEC-2025-214...

allennlp (>=1.0.0 <=1.1.0rc1.dev20200709), allennlp-models (>=1.0.0 <=1.1.0rc1.dev20200709) +35 more potentially affected by CVE-2025-14926 via transformers (>=2.10.0 <=2.11.0)

transformers PYPI version =2.10.0, =1.0.0, =1.0.0, =0.0.1, =0.1.2, =0.1.3, =0.5.2, =0.1.2, =3.0.1, =0.1.0, =1.8.0, =0.12.2.dev2, =0.12.2.dev4 and more Source cves: CVE-2025-14926 Source advisory: OSV:PYSEC-2025-214...

CVE-2025-14926

creationtimestamp| type| source ---|---|--- 2025-12-18 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-25-1147/ 2025-12-23 21:34:47+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115771027410495980...

CVE-2020-14926

CMS Made Simple 2.2.14 allows XSS via a Search Term to the admin/moduleinterface.php?mact=ModuleManager page...

Linux Distros Unpatched Vulnerability : CVE-2017-14926

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Poppler 0.59.0, a NULL Pointer Dereference exists in AnnotRichMedia::Content::Content in Annot.cc via a crafted PDF document. CVE-2017-14926 Note that Nessus...

RHEL 5 : poppler (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - poppler: recursive function call in JBIG2Stream::readGenericBitmap in JBIG2Stream.cc causing denial of...

CVE-2019-14926

creationtimestamp| type| source ---|---|--- 2024-01-29 10:41:39+00:00| seen| https://t.me/ctinow/175148...

SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2022:14926-1)

The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:14926-1 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported version...

CMS Made Simple < 2.2.15 XSS Vulnerability

CMS Made Simple is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Mitsubishi Electric Europe B.V. smartRTU and INEA ME-RTU Use of Hard-Coded Credentials (CVE-2019-14926)

An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard- coded SSH keys allow an attacker to gain unauthorised access or disclose encrypted data on the RTU due to the keys not being regenerated on initial installation or with firmware...

Mageia: Security Advisory (MGASA-2017-0378)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 2440-1] poppler security update

Debian LTS Advisory DLA-2440-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany November 08, 2020 https://wiki.debian.org/LTS Package : poppler Version : 0.48.0-2+deb9u4 CVE ID : CVE-2017-14926 CVE-2017-14928 CVE-2018-19058 CVE-2018-20650 CVE-2018-20662 CVE-2019-73...

CVE-2020-14926

CMS Made Simple 2.2.14 allows XSS via a Search Term to the admin/moduleinterface.php?mact=ModuleManager page...

CVE-2020-14926

CMS Made Simple 2.2.14 is affected by an XSS vulnerability reachable via the Search Term parameter to admin/moduleinterface.php?mact=ModuleManager. The issue stems from inadequate validation of client-side data, per CNVD-2020-60831 and corroborated by multiple feeds. Impact is client-side code ex...

CVE-2019-14926

An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard-coded SSH keys allow an attacker to gain unauthorised access or disclose encrypted data on the RTU due to the keys not being regenerated on initial installation or with...

CVE-2019-14926

CVE-2019-14926 concerns hard-coded SSH keys in Mitsubishi Electric ME-RTU (firmware up to 2.02) and INEA ME-RTU (up to 3.0). The root cause is static private-key values stored in /etc/ssh/ssh_host_rsa_key, /etc/ssh/ssh_host_ecdsa_key, and /etc/ssh/ssh_host_dsa_key that are publicly available from...

Ubuntu: Security Advisory (USN-3440-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2018-14926

Matera Banco 1.0.0 allows CSRF, as demonstrated by a /contingency/web/messageSend/messageSendHandler.jsp request...