Harden-Runner 安全漏洞

Harden-Runner is a program open source by StepSecurity. It provides network exit filter and runtime security for both GitHub-hosted and self-hosted runners. Harden-Runner versions 2.15.1 and earlier contained security vulnerabilities. These vulnerabilities stemmed from a DNS over HTTPS...

CVE-2026-2151

creationtimestamp| type| source ---|---|--- 2026-02-08 18:00:18+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3meej7rytxx2e 2026-02-08 18:00:32+00:00| seen| https://infosec.exchange/users/offseq/statuses/116036312485765301 2026-05-09 21:00:04+00:00| seen|...

ECHO-2151-2F9C-CEA7

Bulletin has no description...

CVE-2019-2151

In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-117495174...

CVE-2022-2151

The Best Contact Management Software WordPress plugin through 3.7.3 does not sanitise and escape its settings, allowing high privilege users such as admin to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

OPENSUSE-SU-2025:0113-1 Security update for assimp

This update for assimp fixes the following issues: - CVE-2024-48425: Fixed SEGV in Assimp:SplitLargeMeshesProcessTriangle:UpdateNode boo1232324 - CVE-2024-48423: Fixed a arbitrary code execution via CallbackToLogRedirector boo1232322 - CVE-2024-48424: Fixed a heap-buffer-overflow in...

assimp-devel-5.4.3-4.1 on GA media (moderate)

assimp-devel-5.4.3-4.1 on GA media Announcement ID: openSUSE-SU-2025:14903-1 Rating: moderate Cross-References: CVE-2025-2151 CVSS scores: CVE-2025-2151 SUSE : 6.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now b...

CVE-2025-2151

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

CVE-2025-2151

creationtimestamp| type| source ---|---|--- 2025-03-10 13:39:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6992 2025-03-10 15:40:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljzv7ipdxd2k 2025-03-10 16:32:01+00:00| seen|...

fable3d (>=1.0.0 <=1.1.4), liblaf-melon (>=0.1.10 <=0.1.17) +4 more potentially affected by CVE-2025-2151 via pyassimp (=5.2.5)

pyassimp PYPI version =5.2.5 is affected by a known vulnerability. The following packages have a transitive dependency on pyassimp and may be impacted: - fable3d =1.0.0, =0.1.10, =0.2.1, =0.2.14, =0.1.4, =0.2.0, =0.2.1 Source cves: CVE-2025-2151 Source advisory: OSV:PYSEC-2025-158...

CVE-2025-2151

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

CVE-2025-2151

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

CVE-2025-2151 Open Asset Import Library Assimp File ParsingUtils.h GetNextLine stack-based overflow

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

CVE-2025-2151 Open Asset Import Library Assimp File ParsingUtils.h GetNextLine stack-based overflow

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

CVE-2025-2151

CVE-2025-2151 affects Open Asset Import Library Assimp 5.4.3, specifically the GetNextLine function in ParsingUtils.h (File Handler). The vulnerability is a stack-based buffer overflow that can be triggered remotely, with exploitation disclosed publicly. Affected software may be exploitable in en...

CVE-2025-2151

A vulnerability classified as critical was found in Open Asset Import Library Assimp 5.4.3. This vulnerability affects the function Assimp::GetNextLine in the library ParsingUtils.h of the component File Handler. The manipulation leads to stack-based buffer overflow. The attack can be initiated...

Linux Distros Unpatched Vulnerability : CVE-2013-2151

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unquoted Windows search path vulnerability in Red Hat Enterprise Virtualization RHEV 3 and 3.2 allows local users to gain privileges via a crafted application i...

SUSE: Security Advisory (SUSE-SU-2024:2151-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-2151

creationtimestamp| type| source ---|---|--- 2024-03-04 01:21:51+00:00| seen| https://t.me/ctinow/198936 2024-03-04 01:26:48+00:00| seen| https://t.me/ctinow/198939...

CVE-2024-2151

CVE-2024-2151 affects SourceCodester Online Mobile Management Store 1.0, specifically the Product Price Handler where the quantity argument can be set to -1, leading to business-logic errors. The attack is remote and exploits have been disclosed publicly. The connected documents confirm the issue...