CVE-2026-1659

Removed by vendor...

GitLab 9.0 < 18.9.7 / 18.10 < 18.10.6 / 18.11 < 18.11.3 (CVE-2026-1659)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Allocation of Resources Without Limits or Throttling in GitLab CVE-2026-1659 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version numbe...

CVE-2026-1659

creationtimestamp| type| source ---|---|--- 2026-04-29 18:32:15+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mknqcffu222x 2026-04-29 18:32:16+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mknqchvkt22x 2026-05-14 07:52:53+00:00| seen|...

PT-2026-36035

Name of the Vulnerable Software and Affected Versions GitLab CE/EE versions 9.0 through 18.9.6 GitLab CE/EE versions 18.10 through 18.10.5 GitLab CE/EE versions 18.11 through 18.11.2 Description Insufficient input validation allows an unauthenticated user to cause a denial of service by sending...

MiracleLinux 7 : samba-4.4.4-14.el7 (AXSA:2017-1659:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1659:03 advisory. Samba is the standard Windows interoperability suite of programs for Linux and Unix. Security issues fixed with this release: CVE-2017-7494 RESERVED This...

CVE-2022-1659

Vulnerable versions of the JupiterX Core = 2.0.6 plugin register an AJAX action jupiterxconditionalmanager which can be used to call any function in the includes/condition/class-condition-manager.php file by sending the desired function to call in the subaction parameter. This can be used to view...

CVE-2013-1659

VMware vCenter Server 4.0 before Update 4b, 5.0 before Update 2, and 5.1 before 5.1.0b; VMware ESXi 3.5 through 5.1; and VMware ESX 3.5 through 4.1 do not properly implement the Network File Copy NFC protocol, which allows man-in-the-middle attackers to execute arbitrary code or cause a denial of...

CVE-2025-1659

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2025-1659

creationtimestamp| type| source ---|---|--- 2025-04-01 13:05:58+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114262852107639572 2025-04-01 13:05:58+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114262852107639572 2025-04-03 03:00:00+00:00| seen|...

CVE-2025-1659 DWFX File Parsing Out-of-Bounds Read Vulnerability

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2025-1659 DWFX File Parsing Out-of-Bounds Read Vulnerability

A maliciously crafted DWFX file, when parsed through Autodesk Navisworks, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...

CVE-2025-1659

CVE-2025-1659 : A maliciously crafted DWFX file, when parsed by Autodesk Navisworks, can trigger an Out-of-Bounds Read. This may crash the process, allow reading of sensitive data, or execution of arbitrary code in the current process. Affected component: Navisworks (DWFX parsing). Root cause: ou...

RHEL 9 : kernel (RHSA-2025:1659)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:1659 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: mm: migrate: fix getting incorrect page...

CVE-2024-1659

Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server including a PHP code file without an authentication. This issue affects MegaBIP software versions through 5.10...

CVE-2024-1659

CVE-2024-1659 describes an Arbitrary File Upload vulnerability in MegaBIP software, affecting versions up to 5.10. The issue allows an unauthenticated attacker to upload arbitrary files to the server, including PHP code, enabling potential in-server code execution or defacement as implied by the ...

CVE-2024-1659 Arbitrary File Upload in MegaBIP

Arbitrary File Upload vulnerability in MegaBIP software allows attacker to upload any file to the server including a PHP code file without an authentication. This issue affects MegaBIP software versions through 5.10...

openSUSE Security Advisory (SUSE-SU-2024:1659-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: kpatch-patch security update

An update for kpatch-patch is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

RHEL 8 : kpatch-patch (RHSA-2023:1659)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:1659 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

SUSE: Security Advisory (SUSE-SU-2023:1659-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...