CVE-2025-15528

A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may...

CVE-2025-15528

creationtimestamp| type| source ---|---|--- 2026-01-17 01:58:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mclj727ehe2x...

CVE-2025-15528 Open5GS GTPv2 Bearer Response denial of service

A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may...

EUVD-2022-39637

Malicious code in bioql PyPI...

CVE-2022-36980

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

Authentication flaw

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

CVE-2022-36980

This vulnerability allows remote attackers to bypass authentication on affected installations of Ivanti Avalanche 6.3.2.3490. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the...

CVE-2022-36980

CVE-2022-36980 affects Ivanti Avalanche 6.3.2.3490. The vulnerability is an authentication bypass in the EnterpriseServer service caused by lack of proper locking during authentication, enabling remote attackers to bypass authentication. Connected sources identify ZDI-22-785 and related advisorie...

CVE-2020-15528

An issue was discovered in GOG Galaxy Client 2.0.17. Local escalation of privileges is possible when a user starts or uninstalls a game because of weak file permissions and missing file integrity checks...

CVE-2020-15528

CVE-2020-15528 affects the GOG Galaxy Client version 2.0.17. The issue is a local privilege escalation caused by weak file permissions and missing file integrity checks, enabling a non-privileged user to elevate privileges when starting or uninstalling a game. Publicly available connected documen...

CVE-2019-15528

The CVE-2019-15528 issue affects D-Link DIR-823G devices running firmware V1.0.2B05. A command injection vulnerability exists in HNAP1 when using SetStaticRouteSettings, triggered by shell metacharacters in the Interface field. The underlying cause is unsanitized input in the Interface parameter,...

CVE-2018-15528

Reflected Cross-Site Scripting exists in the Java System Solutions SSO plugin 4.0.13.1 for BMC MyIT. A remote attacker can abuse this issue to inject client-side scripts into the "selectsso" function. The payload is triggered when the victim opens a prepared /ux/jss-sso/arslogin?XSS link and then...

CVE-2018-15528

CVE-2018-15528 affects the Java System Solutions SSO plugin for BMC MyIT (version 4.0.13.1). The issue is a reflected XSS in the select_sso() function, where a victim loading a crafted /ux/jss-sso/arslogin?... link and pressing Login can cause client-side scripts to run. The vulnerability enables...

BMC MyIT Java System Solutions SSO Plugin 4.0.13.1 Cross Site Scripting Vulnerability

Exploit for java platform in category web applications Title: ====== Reflected XSS in Java System Solutions SSO Plugin 4.0.13.1 for BMC MyIT Description: ============ Reflected Cross-Site Scripting in Java System Solutions' BMC MyIT SSO Plugin version 4.0.13.1 was identified during a penetration...

CVE-2017-15528

CVE-2017-15528 affects the Norton Security for Mac installer (pre-7.6). The vulnerability is a failure to properly validate SSL certificates during HTTPS connections, enabling a man‑in‑the‑middle where an attacker can spoof a valid server and modify or spoof content retrieved over HTTPS. The prac...

Fedora Update for drupal7 FEDORA-2014-15528

Check the version of drupal7 SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.868536";...