MiracleLinux 8 : rpm-4.14.3-14.el8 (AXSA:2021-2180:05)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2180:05 advisory. rpm: Signature checks bypass via corrupted rpm package CVE-2021-20271 Tenable has extracted the preceding description block directly from the MiracleLinux...

MiracleLinux 7 : rpm-4.11.3-48.0.1.el7.AXS7 (AXSA:2021-2566:07)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2566:07 advisory. rpm: Signature checks bypass via corrupted rpm package CVE-2021-20271 Tenable has extracted the preceding description block directly from the MiracleLinux...

CVE-2025-20271

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the Cisco AnyConnect service on an affected device. This vulnerability is due to...

CVE-2025-20271

creationtimestamp| type| source ---|---|--- 2025-06-18 17:30:35+00:00| seen| Telegram/b-PV3PUm7fG5jF2-7nF8nlRQSmUq8wYIxKGqcGQ4GBxXQ 2025-06-18 17:39:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18807 2025-06-18 19:52:06+00:00| seen|...

CVE-2025-20271

A vulnerability in the Cisco AnyConnect VPN server of Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateway devices could allow an unauthenticated, remote attacker to cause a denial of service DoS condition in the Cisco AnyConnect service on an affected device. This vulnerability is due to...

CVE-2023-20271

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper validation of...

CVE-2022-20271

In PermissionController, there is a possible way to grant some permissions without user consent due to misleading or insufficient UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product:...

CVE-2024-20271

A vulnerability in the IP packet processing of Cisco Access Point AP Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could...

NewStart CGSL CORE 5.04 / MAIN 5.04 : rpm Vulnerability (NS-SA-2024-0010)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has rpm packages installed that are affected by a vulnerability: - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a victim to install a seeming...

CVE-2023-20271

A vulnerability in the web-based management interface of Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager EPNM could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability is due to improper validation of...

CVE-2023-20271

CVE-2023-20271 affects Cisco Prime Infrastructure and Cisco EPNM web-based management interfaces. An authenticated, remote attacker can exploit improper validation of user-submitted parameters to perform SQL injection against the underlying database, potentially exposing or modifying sensitive in...

Cisco Prime Infrastructure Multiple Vulnerabilities (cisco-sa-pi-epnm-wkZJeyeq)

The version of Cisco Prime Infrastructure installed on the remote host is prior to 3.10.4. It is, therefore, affected by multiple vulnerabilities: - A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to execute arbitra...

EulerOS Virtualization 3.0.2.2 : rpm (EulerOS-SA-2023-1306)

According to the versions of the rpm packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in RPM's signature check functionality when reading a package file. This flaw allows an attacker who can convince a...

Ubuntu: Security Advisory (USN-5273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : rpm (SUSE-SU-2022:3939-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3939-1 advisory. - A flaw was found in RPM's hdrblobInit in lib/header.c. This flaw allows an attacker who can modify the rpmdb to cause an...

SUSE: Security Advisory (SUSE-SU-2022:3939-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-20271

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during the year 2019. Notes: none...

AIX is vulnerable to arbitrary code execution and RPM database corruption and denial of service due to RPM.

IBM SECURITY ADVISORY First Issued: Fri Sep 23 09:39:22 CDT 2022 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/rpmadvisory.asc https://aix.software.ibm.com/aix/efixes/security/rpmadvisory.asc...

CVE-2022-20271

creationtimestamp| type| source ---|---|--- 2022-08-12 18:33:31+00:00| seen| https://t.me/cibsecurity/48030...

Security Bulletin: IBM QRadar Network Security is affected by vulnerability in rpm. (CVE-2021-20271)

Summary IBM QRadar Network Security has addressed vulnerability in rpm library. the issue could allow a remote attacker to execute arbitrary code on the system. Vulnerability Details CVEID: CVE-2021-20271 DESCRIPTION: RPM could allow a remote attacker to execute arbitrary code on the system, caus...