Important: Red Hat Security Advisory: kpatch-patch-4_18_0-372_137_1, kpatch-patch-4_18_0-372_145_1, kpatch-patch-4_18_0-372_158_1, kpatch-patch-4_18_0-372_170_1, and kpatch-patch-4_18_0-372_181_1 security update

An update for multiple packages is now available for Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CVE-2026-3560

creationtimestamp| type| source ---|---|--- 2026-03-06 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-158/ 2026-05-31 14:07:07+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mn5qfwy5hx2x...

Amazon Linux 2023 : libcublas-13, libcublas-devel-13 (ALAS2023NVIDIA-2025-158)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-158 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successfu...

How One Bad Password Ended a 158-Year-Old Business

Most businesses don't make it past their fifth birthday - studies show that roughly 50% of small businesses fail within the first five years. So when KNP Logistics Group formerly Knights of Old celebrated more than a century and a half of operations, it had mastered the art of survival. For 158...

RHSA-2025:16045 Red Hat Security Advisory: kpatch-patch-4_18_0-372_118_1, kpatch-patch-4_18_0-372_131_1, kpatch-patch-4_18_0-372_137_1, kpatch-patch-4_18_0-372_145_1, and kpatch-patch-4_18_0-372_158_1 security update

Bulletin has no description...

Emerson Ovation Insufficient Verification of Data Authenticity (CVE-2022-30267)

The affected product was found to have no authentication of firmware signing and relies on an insecure checksum for integrity. This could allow an attacker to push malicious firmware images, cause a denial-of-service condition, or achieve remote code execution. This plugin only works with...

Amazon Linux 2023 : ruby3.2, ruby3.2-bundled-gems, ruby3.2-default-gems (ALAS2023-2023-158)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-158 advisory. A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution...

Debian: Security Advisory (DLA-158-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Upgraded Q -> H from 158 [1656140317935]

Judge has assessed an item in Issue 158 as High risk. The relevant finding follows: --- The text was updated successfully, but these errors were encountered: All reactions...

GSD-2022-1002518 CWE-158: Improper Neutralization of Null Byte or NUL Character in iPhone, iPad version ALL

In Apple iPhone, iPad version ALL a CWE-158: Improper Neutralization of Null Byte or NUL Character exists in the QR/Barcode Scanner that can be attacked via Phishing, Social engineering resulting in As other scanners checked, such as on various Android devices, escape or strip the QR with embedde...

CAN-2022-1002518 CWE-158: Improper Neutralization of Null Byte or NUL Character in iPhone, iPad version ALL

In Apple iPhone, iPad version ALL a CWE-158: Improper Neutralization of Null Byte or NUL Character exists in the QR/Barcode Scanner that can be attacked via Phishing, Social engineering resulting in As other scanners checked, such as on various Android devices, escape or strip the QR with embedde...

Backdoor.Win32.Zdemon.10 Remote Command Execution

Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/d12f38e959d70af76fd263aa1933033c.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Backdoor.Win32.Zdemon.10 Vulnerability: Unauthenticated Remote Command Execution Description: Zdemon...

Slackware 14.2 / current : polkit (SSA:2021-158-02)

New polkit packages are available for Slackware 14.2 and -current to fix a security issue. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory 2021-158-02. The text itself is copyright C...

CVE-2020-14500 IMPROPER NEUTRALIZATION OF NULL BYTE OR NUL CHARACTER CWE-158

Secomea GateManager all versions prior to 9.2c, An attacker can send a negative value and overwrite arbitrary data...

CVE-2020-14500

The discovered bug occurs due to improper handling of some of the HTTP request headers provided by the client. This could allow an attacker to remotely exploit GateManager to achieve remote code execution without any authentication required. If carried out successfully, such an attack could resul...

doopi.be Cross Site Scripting vulnerability

Security Researcher RickChase Helped patch 158 vulnerabilities Received 2 Coordinated Disclosure badges Received 1 recommendations , a holder of 2 badges for responsible and coordinated disclosure, found a security vulnerability affecting doopi.be website and its users. Following coordinated and...

boucheabush.com Cross Site Scripting vulnerability

Security Researcher howardpotts Helped patch 158 vulnerabilities Received 3 Coordinated Disclosure badges , a holder of 3 badges for responsible and coordinated disclosure, found a security vulnerability affecting boucheabush.com website and its users. Following coordinated and responsible...

Rockwell Automation RSLinx Classic <= 3.90.01 Privilege Escalation (ICSA-18-158-01)

Binary data 720297.prm...

Rockwell Automation RSLinx Classic and FactoryTalk Linx Gateway Privilege Escalation

Summary RSLinx Classic is a software platform that allows Logix5000 Programmable Automation Controllers to connect to a wide variety of Rockwell Software applications, and FactoryTalk Linx Gateway is a software that provides an Open Platform Communications OPC Unified Architecture UA server...

CVE-2017-8185

ME906s-158 earlier than ME906SInstaller13.1805.10.3 versions has a privilege elevation vulnerability. An attacker could exploit this vulnerability to modify the configuration information containing malicious files and trick users into executing the files, resulting in the execution of arbitrary...