CVE-2025-20364

creationtimestamp| type| source ---|---|--- 2025-09-24 16:53:49+00:00| seen| Telegram/9s-3g6l3wzw7dNC4PuZA7bTprs7nlgUTDtrn3ksOwgyN0w...

Oracle Linux 8 : python3.12-cryptography (ELSA-2025-20364)

The remote Oracle Linux 8 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-20364 advisory. 41.0.7-1.0.1 - CVE-2024-26130 Orabug: 37982815 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note tha...

CVE-2024-20364

A vulnerability in the web-based management interface of Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface of an affected device. This vulnerability is due to insufficien...

Linux Distros Unpatched Vulnerability : CVE-2018-20364

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibRaw::copybayer in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference. CVE-2018-20364 Note that Nessus relies on the presence of the package as...

CVE-2022-20364

creationtimestamp| type| source ---|---|--- 2022-09-14 20:26:28+00:00| seen| https://t.me/cibsecurity/49781 2022-10-11 12:59:55+00:00| seen| https://t.me/truesecator/3541...

CVE-2022-20364

CVE-2022-20364 affects the Android kernel’s sysmmu_unmap function. The root cause is a missing bounds check that can cause an out-of-bounds write, enabling local privilege escalation with no additional execution privileges or user interaction required. The vulnerability is categorized as a Kernel...

Debian DLA-2903-1 : libraw - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2903 advisory. - In LibRaw through 0.18.4, an out of bounds read flaw related to kodak65000loadraw has been reported in dcraw/dcraw.c and internal/dcrawcommon.cpp. An attacker...

CVE-2021-20364

IBM Cloud Pak for Applications 4.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 195035...

Huawei EulerOS: Security Advisory for LibRaw (EulerOS-SA-2020-1864)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP8 : LibRaw (EulerOS-SA-2020-1864)

According to the versions of the LibRaw package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - LibRaw::raw2image in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference.CVE-2018-20363 - LibRaw::copybayer in librawcxx.cpp in LibRaw...

CVE-2019-20364

An XSS issue was discovered in Ignite Realtime Openfire 4.4.4 via cacheName to SystemCacheDetails.jsp...

CVE-2019-20364

Ignite Realtime Openfire 4.4.4 is affected by CVE-2019-20364, an XSS vulnerability exploitable via the cacheName parameter in SystemCacheDetails.jsp. The issue originates from Openfire’s web component validating client-side data, allowing potentially crafted input to execute in a user’s browser. ...

openSUSE Security Update : libraw (openSUSE-2019-94)

This update for libraw fixes the following issues : Security issues fixed : - CVE-2018-20337: Fixed a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp bsc1120519 - CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of librawcxx.cpp bsc1120500...

openSUSE: Security Advisory for libraw (openSUSE-SU-2019:0094-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLED15 / SLES15 Security Update : libraw (SUSE-SU-2019:0133-1)

This update for libraw fixes the following issues : Security issues fixed : CVE-2018-20337: Fixed a stack-based buffer overflow in the parsemakernote function of dcrawcommon.cpp bsc1120519 CVE-2018-20365: Fixed a heap-based buffer overflow in the raw2image function of librawcxx.cpp bsc1120500...

Fedora 29 : LibRaw (2018-801432b551)

Fixes for CVE-2018-20337, CVE-2018-20363, CVE-2018-20364, CVE-2018-20365 https://www.libraw.org/news/libraw-0-19-2-release Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean...

CVE-2018-20364

CVE-2018-20364 affects LibRaw 0.19.1 where LibRaw::copy_bayer in libraw_cxx.cpp has a NULL pointer dereference. Public documents corroborate the issue and link it to LibRaw 0.19.1; no explicit impact vector or patch version is provided beyond noting the NULL dereference. Other connected sources r...

CVE-2018-20364

LibRaw::copybayer in librawcxx.cpp in LibRaw 0.19.1 has a NULL pointer dereference...