Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2026-1710)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1710 advisory. In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through pskbcopy CVE-2026-46300 Tenable has extracted the preceding description block...

EUVD-2005-1710

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2023-1710

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1...

CVE-2025-1710

creationtimestamp| type| source ---|---|--- 2025-07-03 06:21:23+00:00| seen| https://infosec.exchange/users/certvde/statuses/114787856061012885 2025-07-03 06:23:55+00:00| seen| https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lt23lwyqz3d2...

CVE-2011-1710

Multiple integer overflows in the HTTP server in the Novell XTier framework 3.1.8 allow remote attackers to cause a denial of service service crash or possibly execute arbitrary code via crafted header length variables...

CVE-2024-1710

The Addon Library plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the onAjaxAction function action in all versions up to, and including, 1.3.76. This makes it possible for authenticated attackers, with subscriber-level access and above, to...

RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.1.7 on RHEL 7 (RHSA-2024:5856)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5856 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...

CVE-2024-1710

creationtimestamp| type| source ---|---|--- 2024-02-26 17:42:24+00:00| seen| https://t.me/ctinow/193546 2024-03-14 03:21:38+00:00| seen| https://t.me/ctinow/207394...

CVE-2024-1710

The Addon Library plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the onAjaxAction function action in all versions up to, and including, 1.3.76. This makes it possible for authenticated attackers, with subscriber-level access and above, to...

WordPress Addon Library Plugin <= 1.3.76 is vulnerable to Arbitrary File Upload

Software Addon Library Type Plugin Vulnerable versions = 1.3.76 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-1710 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID b052d391256e Credits Lucio Sá Required privilege Subscriber...

CVE-2024-1710

CVE-2024-1710 pertains to WordPress Addon Library plugin where a missing capability check on the onAjaxAction function allows authenticated users with subscriber-level access (and higher) to perform several unauthorized actions, including uploading arbitrary files, across all versions up to 1.3.7...

GitLab < 15.8.5 (SECURITY-RELEASE-GITLAB-15-10-1-RELEASED)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab affecting all versions starting from 12.8 before 15.8.5, all versions starting from 15.9 before 15.9.4, all versions starting from 15.10 before 15.10.1. A...

CVE-2023-1710

creationtimestamp| type| source ---|---|--- 2023-04-06 00:26:29+00:00| seen| https://t.me/cibsecurity/61505...

CVE-2023-1710

A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1 allows an attacker to view the count of internal notes for a given issue...

CVE-2023-1710

CVE-2023-1710 affects GitLab; vulnerable component is GitLab’s issue handling, allowing an attacker to view the count of internal notes on an issue. Affected versions are 15.0–15.8.4, 15.9–15.9.3, and 15.10–15.10.0. Root cause details are not disclosed in the provided documents; CVSS 3.1 base sco...

GitLab 15.0 < 15.8.5 / 15.9 < 15.9.4 / 15.10 < 15.10.1 (CVE-2023-1710)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A sensitive information disclosure vulnerability in GitLab affecting all versions from 15.0 prior to 15.8.5, 15.9 prior to 15.9.4 and 15.10 prior to 15.10.1 allows an attacker to view the count of...

Security Bulletin: Vulnerability in Service Assistant GUI affects SAN Volume Controller, Storwize family and FlashSystem V9000 products (CVE-2017-1710)

Summary A vulnerability in the Service Assistant GUI affects IBM SAN Volume Controller, Storwize Family and FlashSystem V9000 products. The Service Assistant CLI interface is unaffected. Vulnerability Details CVEID: CVE-2017-1710 DESCRIPTION: A vulnerability in the Service Assistant GUI could all...

Security Bulletin: IBM Storwize V7000 Unified V1.4.2.1 Includes Fixes for Multiple Vendor Security Vulnerabilities.

Abstract IBM Storwize V7000 Unified includes multiple software components for which the vendors have provided fixes for security vulnerabilities in such components. Content VULNERABILITY DETAILS: CVE ID: Vendor| Vendor ID| Vendor Title| Included CVEs ---|---|---|--- Red Hat| RHSA-2013:1140|...

Security Bulletin: IBM Scale Out Network Attached Storage V1.4.2.1 Includes Fixes for Multiple Vendor Security Vulnerabilities.

Abstract IBM Scale Out Network Attached Storage includes multiple software components for which the vendors have provided fixes for security vulnerabilities in such components. Content VULNERABILITY DETAILS: CVE ID: Vendor | Vendor ID| Vendor Title| Included CVEs ---|---|---|--- Red Hat|...

CVE-2022-1710

The Appointment Hour Booking WordPress plugin before 1.3.56 does not sanitise and escape a settings of its Calendar fields, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml is disallowed...