CVE-2026-20165 Sensitive Information Disclosure in MongoClient logging channel in Splunk Enterprise

In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7, 10.1.2507.17, 10.0.2503.12, and 9.3.2411.124, a low-privileged user that does not hold the "admin" or "power" Splunk roles could retrieve sensitive information by inspectin...

Splunk Enterprise 9.3.0 < 9.3.10, 9.4.0 < 9.4.9, 10.0.0 < 10.0.4, 10.2.0 < 10.2.1 (SVD-2026-0304)

The version of Splunk installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the SVD-2026-0304 advisory. - In Splunk Enterprise versions below 10.2.1, 10.0.4, 9.4.9, and 9.3.10, and Splunk Cloud Platform versions below 10.2.2510.7,...

CVE-2019-20165

An issue was discovered in GPAC version 0.8.0 and 0.9.0-development-20191109. There is a NULL pointer dereference in the function ilstitemRead in isomedia/boxcodeapple.c...

CVE-2017-20165

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. T...

CVE-2025-20165

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service DoS condition. This vulnerability is due to improper memory handling for certain SIP requests. An...

CVE-2025-20165

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service DoS condition. This vulnerability is due to improper memory handling for certain SIP requests. An...

CVE-2025-20165

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service DoS condition. This vulnerability is due to improper memory handling for certain SIP requests. An...

CVE-2025-20165 Cisco BroadWorks SIP Denial of Service Vulnerability

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service DoS condition. This vulnerability is due to improper memory handling for certain SIP requests. An...

CVE-2025-20165 Cisco BroadWorks SIP Denial of Service Vulnerability

A vulnerability in the SIP processing subsystem of Cisco BroadWorks could allow an unauthenticated, remote attacker to halt the processing of incoming SIP requests, resulting in a denial of service DoS condition. This vulnerability is due to improper memory handling for certain SIP requests. An...

Security Bulletin: IBM Planning Analytics Workspace is affected by vulnerabilities in multiple Open Source Software (OSS) components

Summary There are vulnerabilities in multiple Open Source Software OSS components consumed by IBM Planning Analytics Workspace. IBM Planning Analytics Workspace 2.0 Release 94 has addressed the applicable CVEs by upgrading or removing the vulnerable libraries. Please refer to the table in the...

CVE-2019-20165

creationtimestamp| type| source ---|---|--- 2024-03-18 16:46:41+00:00| seen| https://t.me/ctinow/210721...

@bahmutov/add-typescript-to-cypress (>=1.0.2 <=1.1.1), @betit/orion (>=1.0.0-beta.1 <=1.0.0-beta.6) +178 more potentially affected by CVE-2017-20165 via debug (>=3.0.0 <=3.0.1)

debug NPM version =3.0.0, =1.0.2, =1.0.0-beta.1, =1.0.0-beta.6, =2.0.1-SNAPSHOT.88, =0.0.4, =0.0.12, =1.0.1, =1.0.0, =1.0.0, =0.1.5, =2.8.0, =1.0.71, =1.0.10-14, =1.1.16 and more Source cves: CVE-2017-20165 Source advisory: OSV:GHSA-9VVW-CC9W-F27H...

CVE-2017-20165

A vulnerability classified as problematic has been found in debug-js debug up to 3.0.x. This affects the function useColors of the file src/node.js. The manipulation of the argument str leads to inefficient regular expression complexity. Upgrading to version 3.1.0 is able to address this issue. T...

CVE-2017-20165

CVE-2017-20165 affects the debug-js package (debug up to 3.0.x). The vulnerability is in the useColors function in src/node.js, where manipulating the argument str leads to inefficient regular-expression complexity (ReDoS). A fix is available in version 3.1.0, and the patch is identified as c38a0...

CVE-2022-20165

In asn1parse of asn1.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

CVE-2022-20165

CVE-2022-20165 affects the Android kernel component asn1_parse in asn1.c, where an incorrect bounds check can cause an out-of-bounds read. The consequence is local information disclosure with system execution privileges potentially required. The CVE is described as requiring no user interaction a...

CVE-2021-20165

creationtimestamp| type| source ---|---|--- 2021-12-31 00:34:37+00:00| seen| https://t.me/cibsecurity/34779...

CVE-2021-20165

CVE-2021-20165 describes a CSRF vulnerability in the Trendnet AC2600 TEW-827DRU router (version 2.08B01). The issue arises from improper CSRF protections on most pages, and on pages that do use CSRF tokens, tokens can be bypassed (e.g., by reusing an old token or token discovery). Multiple connec...

Debian DLA-2072-1 : gpac security update

Multiple issues were found in gpac, a multimedia framework featuring the MP4Box muxer. CVE-2018-21015 AVCDuplicateConfig at isomedia/avcext.c allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted file. CVE-2018-21016 audiosampleentryAddB...

[SECURITY] [DLA 2072-1] gpac security update

Package : gpac Version : 0.5.0+svn5324dfsg1-1+deb8u5 CVE ID : CVE-2018-21015 CVE-2018-21016 CVE-2019-13618 CVE-2019-20161 CVE-2019-20162 CVE-2019-20163 CVE-2019-20165 CVE-2019-20170 CVE-2019-20171 CVE-2019-20208 Debian Bug : 940882 932242 Multiple issues were found in gpac, a multimedia framework...