EUVD-2026-2127

Use after free in Windows Management Services allows an authorized attacker to elevate privileges locally...

Linux Distros Unpatched Vulnerability : CVE-2022-2127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authentication, the clie...

CVE-2019-2127

In AudioInputDescriptor::setClientActive of AudioInputDescriptor.cpp, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android...

Alibaba Cloud Linux 3 : 0063: openchange (ALINUX3-SA-2024:0063)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0063 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2127: An out-of-bounds read...

Alibaba Cloud Linux 3 : 0037: evolution-mapi (ALINUX3-SA-2024:0037)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0037 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-1615: In Samba, GnuTLS gnutlsrnd...

JUX Real Estate 3.4.0 Cross Site Scripting

JUX Real Estate version 3.4.0 suffers from a cross site scripting vulnerability. Exploit Title: JUX Real Estate 3.4.0 - Multiple RXSS Exploit Author: CraCkEr Date: 26/02/2025 Vendor: JoomlaUX Vendor Homepage: https://joomlaux.com/ Software Link:...

CVE-2025-2127

A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected is an unknown function of the file /extensions/realestate/index.php/properties/list/list-with-sidebar/realties. The manipulation of the argument Itemid/jpyearbuilt leads to cross...

CVE-2025-2127 JoomlaUX JUX Real Estate realties cross site scripting

A vulnerability was found in JoomlaUX JUX Real Estate 3.4.0 on Joomla. It has been classified as problematic. Affected is an unknown function of the file /extensions/realestate/index.php/properties/list/list-with-sidebar/realties. The manipulation of the argument Itemid/jpyearbuilt leads to cross...

Cisco ASA SSL VPN Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco ASA SSL VPN Privilege Escalation Vulnerability', 'Description' = %q This module exploits a privilege escalation vulnerability for Cisco ASA...

Huawei EulerOS: Security Advisory for python-jinja2 (EulerOS-SA-2024-2127)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DSA 5647-1] samba security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5647-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff March 24, 2024 https://www.debian.org/security/faq -...

CVE-2024-2127

CVE-2024-2127 affects Page Builder: Pagelayer (WordPress plugin) up to version 1.8.3. The issue is stored Cross-Site Scripting via custom attributes caused by insufficient input sanitization and output escaping, enabling authenticated attackers with contributor+ permissions to inject scripts into...

WordPress PageLayer Plugin <= 1.8.3 is vulnerable to Cross Site Scripting (XSS)

Software PageLayer Type Plugin Vulnerable versions = 1.8.3 Fixed in 1.8.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2127 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 0658bd2623bb Credits wesley wcraft Required privile...

openSUSE: Security Advisory for samba (SUSE-SU-2023:3358-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Moderate: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 8.8 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...

RHEL 8 : samba (RHSA-2024:0423)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0423 advisory. Samba is an open-source implementation of the Server Message Block SMB protocol and the related Common Internet File System CIFS protocol,...

EulerOS Virtualization 3.0.6.0 : samba (EulerOS-SA-2023-3453)

According to the versions of the samba packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing...

Huawei EulerOS: Security Advisory for samba (EulerOS-SA-2023-3510)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CentOS 8 : samba (CESA-2023:7139)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2023:7139 advisory. - An out-of-bounds read vulnerability was found in Samba due to insufficient length checks in winbinddpamauthcrap.c. When performing NTLM authenticatio...

samba security, bug fix, and enhancement update

evolution-mapi 3.40.1-6 - Related: 2190415 Rebuild against samba 4.18 openchange 2.3-41 - Related: 2190415 Rebuild against samba 4.18 samba 4.18.6-100 - related: rhbz2190415 - Update to version 4.18.6 - resolves: rhbz2211617 - Fix the rpcclient dfsgetinfo command 4.18.5-100 - resolves: rhbz222289...