CVE-2024-21178

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Portal. Supported versions that are affected are 8.59, 8.60 and 8.61. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

CVE-2025-21178

Visual Studio Remote Code Execution Vulnerability...

CVE-2025-21178

Visual Studio Remote Code Execution Vulnerability...

CVE-2025-21178

Technical details about CVE-2025-21178 are not publicly provided in the connected documents. No affected product/version/root cause/impact are specified here. Monitor for updates from MSRC/MSKB and other sources for concrete details and patch information.

CVE-2025-21178

creationtimestamp| type| source ---|---|--- 2025-01-14 17:29:48+00:00| seen| https://www.thezdi.com/blog/2025/1/14/the-january-2025-security-update-review 2025-01-14 18:16:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpuciny652n 2025-01-14 18:25:59+00:00| seen|...

Security Updates for Microsoft Visual Studio 2022 17.12 Products (January 2025)

The Microsoft Visual Studio Products are missing security updates. They are, therefore, affected by multiple vulnerabilities, including: - An undisclosed .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2025-21176 - An undisclosed Visual Studio Remote Code Execution...

Security Updates for Microsoft Visual Studio 2022 17.6 / 17.8 / 17.10 Products (January 2025)

The Microsoft Visual Studio Products are missing security updates. They are, therefore, affected by multiple vulnerabilities, including: - An undisclosed .NET, .NET Framework, and Visual Studio Remote Code Execution Vulnerability CVE-2025-21176 - An undisclosed Visual Studio Remote Code Execution...

CVE-2024-21178

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Portal. Supported versions that are affected are 8.59, 8.60 and 8.61. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise...

CVE-2024-21178

...

CVE-2024-21178

The CVE-2024-21178 entry concerns Oracle PeopleSoft Enterprise PeopleTools, specifically the Portal component. Affects versions 8.59–8.61, where the Portal’s web page structure is not adequately protected, enabling a remote, unauthenticated attacker with network access via HTTP to compromise data...

CVE-2024-21178

...

CVE-2023-21178

creationtimestamp| type| source ---|---|--- 2023-06-28 22:13:17+00:00| seen| https://t.me/cibsecurity/65644...

CVE-2023-21178

In installKey of KeyUtil.cpp, there is a possible failure of file encryption due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-13Android ID: A-14076241...

CVE-2023-21178

CVE-2023-21178 concerns Android 13 where the issue arises in the installKey function of KeyUtil.cpp. A race condition could cause a possible failure of file encryption, leading to local information disclosure with System privileges required. Exploitation reportedly does not require user interacti...

SUSE CVE-2021-21178

Inappropriate implementation in Compositing in Google Chrome on Linux and Windows prior to 89.0.4389.72 allowed a remote attacker to spoof the contents of the Omnibox URL bar via a crafted HTML page...

CVE-2022-21178

An os command injection vulnerability exists in the confsrv ucloudaddnewnode functionality of TCL LinkHub Mesh Wifi MS1G0001.0014. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a malicious packet to trigger this vulnerability...

CVE-2022-21178

CVE-2022-21178 affects TCL LinkHub Mesh Wifi MS1G_00_01.00_14. The Talos analysis shows a command-injection in the confsrv/ucloud_add_new_node path. A Protobuffer message is sent to port 9003, parsed by ucloud_add_node_new, and the code builds a command using data from the packet (pkt->serialN...

Fedora 33 : chromium (2021-4740239e28)

The remote Fedora 33 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2021-4740239e28 advisory. - Heap buffer overflow in TabStrip in Google Chrome prior to 89.0.4389.72 allowed a remote attacker to potentially exploit heap corruption via a...

openSUSE: Security Advisory for chromium (openSUSE-SU-2021:0392-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities (Mar 2021)

This host is missing an important security update according to Microsoft Edge Chromium-Based updates. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...