MiracleLinux 9 : container-tools, python-podman-4.2.0-1.el9, toolbox-0.0.99.3-5.el9 (AXSA:2023-5056:01)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5056:01 advisory. golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension CVE-2020-28851 golang.org/x/text: Panic in...

Linux Distros Unpatched Vulnerability : CVE-2018-20199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A NULL pointer dereference was discovered in ifilterbank of libfaad/filtbank.c in Freeware Advanced Audio Decoder 2 FAAD2 2.8.8. The vulnerability causes a...

CVE-2025-20199

creationtimestamp| type| source ---|---|--- 2025-05-07 18:23:05+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15378 2025-05-07 21:31:51+00:00| seen| https://t.me/cvedetector/24751...

CVE-2025-20199

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

CVE-2025-20199

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

CVE-2025-20199

A vulnerability in the CLI of Cisco IOS XE Software could allow an authenticated, local attacker with privilege level 15 to elevate privileges to root on the underlying operating system of an affected device. This vulnerability is due to insufficient input validation when processing specific...

CVE-2025-20199

Cisco IOS XE Software contains a privilege-escalation vulnerability in the CLI that could allow an authenticated local attacker with privilege level 15 to gain root access on the device’s underlying OS. The issue stems from insufficient input validation when processing certain configuration comma...

Linux Distros Unpatched Vulnerability : CVE-2019-20199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in ezXML 0.8.3 through 0.8.6. The function ezxmldecode, while parsing a crafted XML file, performs incorrect memory handling, leading to...

CVE-2019-20199

creationtimestamp| type| source ---|---|--- 2024-03-19 08:36:49+00:00| seen| https://t.me/ctinow/211252...

Rocky Linux 8 : container-tools:rhel8 (RLSA-2021:1796)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1796 advisory. - A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause ...

BELL-CVE-2021-20199 CVE-2021-20199 does not affect BellSoft software

Bulletin has no description...

CVE-2023-20199

creationtimestamp| type| source ---|---|--- 2023-06-28 18:13:13+00:00| seen| https://t.me/cibsecurity/65618...

SUSE CVE-2021-20199

Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 including from remote hosts. This impacts containerized applications that trust localhost 127.0.01 connections by default and do not require authentication. This issue affects Podman 1.8.0 onwards...

SUSE SLES15 / openSUSE 15 Security Update : podman (SUSE-SU-2023:0187-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:0187-1 advisory. - Rootless containers run with Podman, receive all traffic with a source IP address of 127.0.0.1 including from remot...

CVE-2022-20199

creationtimestamp| type| source ---|---|--- 2022-12-16 18:37:30+00:00| seen| https://t.me/cibsecurity/54729...

CVE-2022-20199

Summary: CVE-2022-20199 concerns an information disclosure in Android 13’s NfcService.java due to a confused deputy, enabling local information disclosure without extra privileges. The vulnerability is documented across multiple sources, all describing the same issue, with no exploitation details...

Moderate: Red Hat Security Advisory: podman security and bug fix update

An update for podman is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

ALSA-2022:7954 Moderate: podman security and bug fix update

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fixes: golang.org/x/text: Panic in language.ParseAcceptLanguage while parsing -u- extension...

CVE-2022-20299

CVE-2022-20299 affects the Android 13 ContentService. The vulnerability stems from a missing permission check that allows checking if a given account exists on the device, leading to local information disclosure. Exploitation would require local access with user privileges but does not require us...

CVE-2021-20199 affecting package podman for versions less than 4.1.1-1

CVE-2021-20199 affecting package podman for versions less than 4.1.1-1. An upgraded version of the package is available that resolves this issue...