Linux Distros Unpatched Vulnerability : CVE-2024-21165

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily...

Azure Linux 3.0 Security Update: mysql (CVE-2024-21165)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21165 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versio...

CVE-2024-21165 affecting package mysql for versions less than 8.0.40-1

CVE-2024-21165 affecting package mysql for versions less than 8.0.40-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-21165 affecting package mysql for versions less than 8.0.40-1

CVE-2024-21165 affecting package mysql for versions less than 8.0.40-1. An upgraded version of the package is available that resolves this issue...

CBL Mariner 2.0 Security Update: mysql (CVE-2024-21165)

The version of mysql installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21165 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versio...

K000140907: MySQL vulnerability CVE-2024-21165

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

CVE-2024-21165

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successfu...

Oracle MySQL Server 8.x <= 8.0.37 Security Update (cpujul2024) - Linux

Oracle MySQL Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2024-21165 vulnerabilities

Vulnerabilities for packages: mysql...

CVE-2024-21165

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Pluggable Auth. Supported versions that are affected are 8.0.37 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successfu...

CVE-2023-21165

creationtimestamp| type| source ---|---|--- 2024-02-16 20:21:31+00:00| seen| https://t.me/ctinow/186610...

CVE-2023-21165

CVE-2023-21165 concerns a use-after-free in the DevmemIntUnmapPMR function of devicemem_server.c, leading to possible arbitrary code execution and local privilege escalation in the kernel. Multiple connected sources corroborate the issue and its kernel-level impact, with the vulnerability enablin...

SUSE CVE-2021-21165

Data race in audio in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

CVE-2022-21165

creationtimestamp| type| source ---|---|--- 2022-08-29 20:06:54+00:00| published-proof-of-concept| https://github.com/advisories/GHSA-g2c3-vwff-m3xr 2024-04-23 17:38:18+00:00| seen| https://t.me/arpsyndicate/4749...

@fb24m/etc (>=1.0.0 <=1.2.0-1), pdf-exports (=1.0.0) +1 more potentially affected by CVE-2022-21165 via font-converter (=1.1.1)

font-converter NPM version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on font-converter and may be impacted: - @fb24m/etc =1.0.0, =1.2.0-1 - pdf-exports =1.0.0 - pdf-img-exports =1.0.0 Source cves: CVE-2022-21165 Source advisory:...

CVE-2022-21165

All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the childprocess.exec function...

CVE-2022-21165 Arbitrary Command Injection

All versions of package font-converter are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into the childprocess.exec function...

CVE-2022-21165

The CVE-2022-21165 entry concerns the font-converter package (FontForge wrapper) where all versions are vulnerable to Arbitrary Command Injection due to missing sanitization of input that potentially flows into child_process.exec(). The core issue is input sanitization failure, enabling injection...

Fedora 33 : chromium (2021-4740239e28)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-4740239e28 advisory. - Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a...

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0392-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...