RHEL 10 : opentelemetry-collector (RHSA-2026:1907)

The remote Redhat Enterprise Linux 10 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:1907 advisory. Collector with the supported components for a Red Hat build of OpenTelemetry Security Fixes: crypto/x509: golang: Denial of Service due to excessive...

EUVD-2026-1907

A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formFireWall. Such manipulation of the argument GroupName leads to buffer overflow. The attack can be executed remotely. The exploit is publicly available and might be used. The vendor...

CVE-2025-1907

Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected...

Linux Distros Unpatched Vulnerability : CVE-2022-1907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Over-read in GitHub repository bfabiszewski/libmobi prior to 0.11. CVE-2022-1907 Note that Nessus relies on the presence of the package as reported by th...

Ubuntu: Security Advisory (USN-7638-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-1907 Instantel Micromate Missing Authentication for Critical Function

Instantel Micromate lacks authentication on a configuration port which could allow an attacker to execute commands if connected...

CVE-2025-1907

creationtimestamp| type| source ---|---|--- 2025-05-29 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-148-04 2025-05-29 20:06:06+00:00| seen| https://bsky.app/profile/pigondrugs.bsky.social/post/3lqdjdx4ngt2h 2025-05-30 00:02:42+00:00| seen|...

CVE-2020-1907

A stack overflow in WhatsApp for Android prior to v2.20.196.16, WhatsApp Business for Android prior to v2.20.196.12, WhatsApp for iOS prior to v2.20.90, WhatsApp Business for iOS prior to v2.20.90, and WhatsApp for Portal prior to v173.0.0.29.505 could have allowed arbitrary code execution when...

CVE-2002-1907

TelCondex SimpleWebServer 2.06.20817 allows remote attackers to cause a denial of service crash via a long HTTP GET request...

Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2016-1907)

The sshpacketreadpoll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to cause a denial of service out-of-bounds read and application crash via crafted network traffic. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

CVE-2023-1907

A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to another user's session if multiple connection attempts occur simultaneously...

CVE-2023-1907

creationtimestamp| type| source ---|---|--- 2025-01-09 07:32:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113797231356343351 2025-01-09 08:15:40+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfcaeqqrsv2f 2025-01-09 08:48:23+00:00| seen|...

CVE-2023-1907 Pgadmin: users authenticated simultaneously via ldap may be attached to the wrong session

A vulnerability was found in pgadmin. Users logging into pgAdmin running in server mode using LDAP authentication may be attached to another user's session if multiple connection attempts occur simultaneously...

RHEL 9 : firefox (RHSA-2024:1907)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1907 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. This update upgrades Firefox...

stmarks-umc.com Cross Site Scripting vulnerability OBB-3904209

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2024-1907

creationtimestamp| type| source ---|---|--- 2024-02-27 12:31:59+00:00| seen| https://t.me/ctinow/194308 2024-02-27 12:32:12+00:00| seen| https://t.me/ctinow/194319 2024-03-14 13:26:12+00:00| seen| https://t.me/ctinow/207702...

CVE-2024-1907

CVE-2024-1907 relates to the WordPress Categorify plugin. The connected documents confirm a CSRF vulnerability caused by missing or incorrect nonce validation in the categorifyAjaxDeleteCategory function, affecting all versions up to and including 1.0.7.4. This allows unauthenticated attackers to...

MAL-2024-348 Malicious code in wlwz-2312-1907 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5077dbc02f07035c4e0e2dc2d6b4b2b88decafeab5df1b1eaae7f3d37bd64f5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-1907 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b5077dbc02f07035c4e0e2dc2d6b4b2b88decafeab5df1b1eaae7f3d37bd64f5 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Amazon Linux AMI : nss-softokn (ALAS-2024-1907)

The version of nss-softokn installed on the remote host is prior to 3.53.1-6.49. It is, therefore, affected by a vulnerability as referenced in the ALAS-2024-1907 advisory. It was discovered that the numerical library used in NSS for RSA cryptography leaks information whether high order bits of t...