CVE-2026-20174

creationtimestamp| type| source ---|---|--- 2026-04-01 18:09:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mihbxcp63j2i...

CVE-2026-20174

A vulnerability in the Metadata update feature of Cisco Nexus Dashboard Insights could allow an authenticated, remote attacker to write arbitrary files to an affected system. This vulnerability is due to insufficient validation of the metadata update file. An attacker could exploit this...

CVE-2026-20174

Cisco Nexus Dashboard Insights metadata update feature is vulnerable to arbitrary file write. The issue arises from insufficient validation of the metadata update file, allowing an authenticated attacker with admin credentials to craft a metadata update file and upload it to an affected device, p...

CVE-2019-20174

Auth0 Lock before 11.21.0 allows XSS when additionalSignUpFields is used with an untrusted placeholder...

CVE-2022-20174

In exynossecEnvinit of mach-gs101.c, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID...

CVE-2017-20174

A vulnerability was found in bastianallgeier Kirby Webmentions Plugin and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to injection. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is know...

CVE-2025-20174

A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this...

CVE-2025-20174

A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this...

CVE-2025-20174

CVE-2025-20174 affects Cisco IOS/IOS XE/IOS XR SNMP subsystems. Root cause: improper error handling when parsing SNMP requests, enabling authenticated remote DoS. IOS/IOS XE: exploitation can reload the device, causing DoS; IOS XR: SNMP process restart with interrupted responses. Exploitation req...

RHEL 5 : rdesktop (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - rdesktop: Remote code execution in uicliphandledata CVE-2018-8800 - rdesktop versions up to and including...

Adobe Acrobat Reader Resource Management Error Vulnerability

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDFs. A resource management error vulnerability exists in Adobe Acrobat Reader version 2023.001.20174, which originates from a post-release reuse in Thermometer Javascrip...

CVE-2023-20174

creationtimestamp| type| source ---|---|--- 2023-05-18 07:31:53+00:00| seen| https://t.me/cibsecurity/64359...

CVE-2023-20174 Cisco Identity Services Engine XML External Entity Injection Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to read arbitrary files or conduct a server-side request forgery SSRF attack through an affected device. To exploit these vulnerabilities, an attacker...

CVE-2023-20174 Cisco Identity Services Engine XML External Entity Injection Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to read arbitrary files or conduct a server-side request forgery SSRF attack through an affected device. To exploit these vulnerabilities, an attacker...

CVE-2017-20174

CVE-2017-20174 involves the bastianallgeier Kirby Webmentions Plugin with an injection vulnerability in an unknown function. The issue can be triggered remotely and has high impact potential, with attack complexity described as high. A patch identified as 55bedea78ae9af916a9a41497bd9996417851502 ...

CVE-2017-20174 bastianallgeier Kirby Webmentions Plugin injection

A vulnerability was found in bastianallgeier Kirby Webmentions Plugin and classified as problematic. Affected by this issue is some unknown functionality. The manipulation leads to injection. The attack may be launched remotely. The complexity of an attack is rather high. The exploitation is know...

CVE-2022-20174

creationtimestamp| type| source ---|---|--- 2022-06-15 18:20:40+00:00| seen| https://t.me/cibsecurity/44516...

CVE-2022-20174

CVE-2022-20174 affects the Android kernel on Exynos GS101. The issue is in the function exynos_secEnv_init in mach-gs101.c , where an incorrect bounds check may cause an out-of-bounds read. This can lead to local information disclosure with system execution privileges required; exploitation is de...

CVE-2021-20174

The CVE-2021-20174 entry concerns Netgear Nighthawk R6700 (firmware 1.0.4.120). The root cause is that web-interface traffic is not secured, with all communications over HTTP by default. As described in multiple connected sources, this can expose sensitive information (e.g., usernames and passwor...

CVE-2019-20174

Auth0 Lock prior to version 11.21.0 is vulnerable to cross-site scripting when additionalSignUpFields uses an untrusted placeholder. The issue is triggered by untrusted placeholder content being rendered in the Sign Up dialog, enabling XSS. Red Hat and OSV records corroborate the same description...