90 matches found
MiracleLinux 4 : X11 client libraries (AXSA:2014-613:01)
The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-613:01 advisory. Description: The X11 Xorg libraries provide library routines that are used within all X Window applications. Security issues fixed with this release:...
EUVD-2013-6597
Malware in sbrugna...
ECHO-0715-D1D1-1984
Bulletin has no description...
📄 Off 2.15 Unauthenticated Remote System Control
Off version 2.15 exposes a TCP service on 1984 port that allows unauthenticated attackers to issue remote system control commands such as Shutdown, Restart, Lock, Sleep, and Hibernate. Exploit Title: Off 2.15 - Unauthenticated Remote System Control Date: 25/06/25 Exploit Author: Chokri Hammedi...
CVE-2022-1984
This issue affects: HYPR Windows WFA versions prior to 7.2; Unsafe Deserialization vulnerability in HYPR Workforce Access WFA before version 7.2 may allow local authenticated attackers to elevate privileges via a malicious serialized payload...
CVE-2025-1984
creationtimestamp| type| source ---|---|--- 2025-03-14 17:49:11+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7620 2025-08-13 13:26:34+00:00| seen| MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868...
CVE-2025-1984 Local Privilege Escalation on Xerox® Desktop Print Experience® v8.5
Xerox Desktop Print Experience application contains a Local Privilege Escalation LPE vulnerability, which allows a low-privileged user to gain SYSTEM-level access...
CVE-2025-1984
CVE-2025-1984 affects Xerox Desktop Print Experience. The initial and connected sources describe a Local Privilege Escalation (LPE) that allows a low-privileged user to gain SYSTEM-level access via a vulnerable component of the Xerox Desktop Print Experience application. The CVSS 3.1 vector indic...
CVE-2025-1984 Local Privilege Escalation on Xerox® Desktop Print Experience® v8.5
Xerox Desktop Print Experience application contains a Local Privilege Escalation LPE vulnerability, which allows a low-privileged user to gain SYSTEM-level access...
Linux Distros Unpatched Vulnerability : CVE-2013-1984
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in X.org libXi 1.7.1 and earlier allow X servers to trigger allocation of insufficient memory and a buffer overflow via vectors relat...
SUSE SLES15: aws-nitro-enclaves-binaryblobs-upstream / aws-nitro-enclaves-cli / etc (SUSE-SU-2024:1984-1)
The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:1984-1 advisory. - CVE-2023-50711: Fixed out of bounds memory accesses in embedded vmm-sys-util bsc1218501. Tenable has extracted the preceding...
RHEL 5 : libxi (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libXi: Multiple Array Index error leading to heap-based OOB write CVE-2013-1998 - libXi: Insufficient...
CVE-2024-1984
creationtimestamp| type| source ---|---|--- 2024-04-11 06:10:41+00:00| seen| https://t.me/arpsyndicate/4451...
CVE-2024-1984 Graphene <= 2.9.2 - Missing Authorization
The Graphene theme for WordPress is vulnerable to unauthorized access of data via meta tag in all versions up to, and including, 2.9.2. This makes it possible for unauthenticated individuals to obtain post contents of password protected posts via the generated source...
CVE-2024-1984
CVE-2024-1984 affects the WordPress Graphene theme (versions ≤ 2.9.2). The issue allows unauthenticated users to access post contents of password-protected posts via a meta tag in the page source, indicating a missing authorization check (low-severity info exposure). Reported by Krzysztof Zając a...
WordPress Graphene Theme <= 2.9 is vulnerable to Broken Access Control
Software Graphene Type Theme Vulnerable versions = 2.9 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1984 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID dadc68068747 Credits Krzysztof Zając Required privilege...
Important: Red Hat Security Advisory: kpatch-patch security update
An update for kpatch-patch is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...
RHEL 9 : kpatch-patch (RHSA-2023:1984)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1984 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel. Security Fixe...
CVE-2023-1984
creationtimestamp| type| source ---|---|--- 2023-04-11 22:28:37+00:00| seen| Telegram/WDrgMHxvFFcwb1TPIRoC0ccXeDEDPoP44rqFgvHOQX22Ibk...
CVE-2023-1984
CVE-2023-1984 affects SourceCodester Complaint Management System v1.0. The vulnerability is in the POST Parameter Handler – specifically the file /users/check_availability.php where the email parameter can be manipulated to perform SQL injection. Exploitation appears remote and has been publicly ...