Unity Linux 20.1070e Security Update: log4j (UTSA-2026-016696)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016696 advisory. Apache Log4j2 versions 2.0-alpha1 through 2.16.0 excluding 2.12.3 and 2.3.1 did not protect from uncontrolled recursion from self-referential lookups. This allows an...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017454)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017454 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.26 and prior. Easily exploitable...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017681)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017681 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.23 and prior. Easily exploitable...

Unity Linux 20.1070e Security Update: mysql (UTSA-2026-017733)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017733 advisory. Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.21 and prior. Easily exploitable...

Unity Linux 20.1070e Security Update: alsa-lib (UTSA-2026-006158)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006158 advisory. alsa-lib versions 1.2.2 up to and including 1.2.15.2, prior to commit 5f7fe33, contain a heap-based buffer overflow in the topology mixer control decoder. The...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000291)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000291 advisory. In binderfreetransaction of binder.c, there is a possible use-after-free due to a race condition. This could lead to local escalation of privilege with no additional...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000433)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000433 advisory. A vulnerability was found in Linux Kernel, where a refcount leak in llcpsockconnect causing use-after- free which might lead to privilege escalations. Tenable has...

Unity Linux 20.1070e Security Update: rsync (UTSA-2025-993325)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993325 advisory. A malicious client acting as the receiver of an rsync file transfer can trigger an out of bounds read of a heap based buffer, via a negative array index. The malicio...

Unity Linux 20.1070e Security Update: golang (UTSA-2025-986183)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986183 advisory. Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory,...

Unity Linux 20.1070e Security Update: libtiff (UTSA-2025-680636)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680636 advisory. Null source pointer passed as an argument to memcpy function within TIFFFetchNormalTag in tifdirread.c in libtiff versions up to 4.3.0 could lead to Denial of Servic...

Linux Distros Unpatched Vulnerability : CVE-2021-28054

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. A Stored Cross-Site Scripting XSS issue in Configuration Hosts allows remote authenticated...

USN-6219-1 ruby2.3, ruby2.5, ruby2.7, ruby3.0, ruby3.1 vulnerabilities

It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 20.10 and Ubuntu 20.04 LTS. CVE-2023-28755 It was discovered that Ruby incorrectly handled certain regular...

Exploit for Improper Privilege Management in Podman_Project Podman

CVE-2022-1227Exploit A script for exploiting CVE-2022-1227...

Ubuntu: Security Advisory (USN-4653-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

In Mahara 20.10 before 20.10.4, 21.04 before 21.04.3, and 21.10 before 21.10.1, the names of folders in the Files area can be seen by a person not owning the folders. Only folder names are affected. Neither file names nor file contents are affected...

Hostel Management System 2.1 - Cross Site Scripting (XSS)

Exploit Title: Hostel Management System 2.1 - Cross Site Scripting XSS Date: 26/12/2021 Exploit Author: Chinmay Vishwas Divekar Vendor Homepage: https://phpgurukul.com/hostel-management-system/ Software Link: https://phpgurukul.com/hostel-management-system/ Version: V 2.1 Tested on: PopOS20.10...

PT-2021-6852 · Vmware · Vmware Workspace One Access +1

Name of the Vulnerable Software and Affected Versions: VMware Workspace ONE Access versions 20.10 through 21.08 Description: The issue is related to an authentication bypass vulnerability in the VMware Verify component of the Workspace ONE Access platform. This vulnerability is associated with...

openSUSE: Security Advisory for virtualbox (openSUSE-SU-2021:1114-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

USN-5020-1: Ruby vulnerabilities

It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-31799 It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to conduct port scans and service banner...

USN-5013-1: systemd vulnerabilities

It was discovered that systemd incorrectly handled certain mount paths. A local attacker could possibly use this issue to cause systemd to crash, resulting in a denial of service. CVE-2021-33910 Mitchell Frank discovered that systemd incorrectly handled DHCP FORCERENEW packets. A remote attacker...