RockyLinux 9 : grafana-pcp (RLSA-2023:2177)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2023:2177 advisory. golang: net/http: handle server errors after sending GOAWAY CVE-2022-27664 Tenable has extracted the preceding description block directly from the RockyLinux...

MiracleLinux 7 : openssl-1.0.1e-51.el7.7 (AXSA:2016-685:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-685:04 advisory. The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries...

EUVD-2026-2177

Out-of-bounds read in Capability Access Management Service camsvc allows an unauthorized attacker to disclose information locally...

CVE-2019-2177

In isPreferred of HidProfile.java in Android 7.1.1, 7.1.2, 8.0, 8.1 and 9, there is a possible device type confusion due to a permissions bypass. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation...

TencentOS Server 4: zvbi (TSSA-2025:0222)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0222 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

ROOT-OS-DEBIAN-12-CVE-2025-2177 CVE-2025-2177 in rootio-zvbi - Patched by Root

Root has patched CVE-2025-2177 in the rootio-zvbi package for Root:Debian:12. Multiple fixed versions available...

CVE-2004-2177

Cross-site scripting XSS vulnerability in DevoyBB Web Forum 1.0.0 allows remote attackers to inject arbitrary web script or HTML via unknown vectors...

Mageia: Security Advisory (MGASA-2025-0121)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:0988-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLES12 Security Update : zvbi (SUSE-SU-2025:0988-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0988-1 advisory. - CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. - CVE-2025-2174: Fixed integer overflow leading to he...

SUSE-SU-2025:0988-1 Security update for zvbi

This update for zvbi fixes the following issues: - CVE-2025-2173: Fixed check on srclength to avoid an unitinialized heap read bsc1239222. - CVE-2025-2174: Fixed integer overflow leading to heap overflow in src/conv.c, src/io-sim.c, src/search.c bsc1239299. - CVE-2025-2175: Fixed integer overflow...

CVE-2025-2177

A vulnerability classified as critical was found in libzvbi up to 0.2.43. This vulnerability affects the function vbisearchnew of the file src/search.c. The manipulation of the argument patlen leads to integer overflow. The attack can be initiated remotely. The exploit has been disclosed to the...

libzvbi-chains0-0.2.44-1.1 on GA media (moderate)

libzvbi-chains0-0.2.44-1.1 on GA media Announcement ID: openSUSE-SU-2025:14891-1 Rating: moderate Cross-References: CVE-2025-2173 CVE-2025-2174 CVE-2025-2175 CVE-2025-2176 CVE-2025-2177 CVSS scores: CVE-2025-2173 SUSE : 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2025-2173 SUSE : 6.9...

Siemens SCALANCE X-200RNA Switch Devices Integer Overflow or Wraparound (CVE-2016-2177)

OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap- buffer boundary checks, which might allow remote attackers to cause a denial of service integer overflow and application crash or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to...

CVE-2025-2177

A vulnerability classified as critical was found in libzvbi up to 0.2.43. This vulnerability affects the function vbisearchnew of the file src/search.c. The manipulation of the argument patlen leads to integer overflow. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-2177

creationtimestamp| type| source ---|---|--- 2025-03-11 07:39:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/7104 2025-03-11 09:31:03+00:00| seen| Telegram/VmMuGE7Rb8M0CTKtbBCx8A-ZtXlhfTER7CBMGSEtWA4Slk 2025-03-11 11:46:22+00:00| seen| https://t.me/cvedetector/20057...

CVE-2025-2175

A vulnerability was found in libzvbi up to 0.2.43. It has been rated as problematic. Affected by this issue is the function vbistrndupiconv. The manipulation leads to integer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Upgrading to...

Linux Distros Unpatched Vulnerability : CVE-2016-2177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap-buffer boundary checks, which might allow remote attackers to cause a denial of service...

CVE-2024-2177

creationtimestamp| type| source ---|---|--- 2024-07-09 16:52:10+00:00| seen| https://t.me/cvedetector/352...

CVE-2024-2177

A Cross Window Forgery vulnerability exists within GitLab CE/EE affecting all versions from 16.3 prior to 16.11.5, 17.0 prior to 17.0.3, and 17.1 prior to 17.1.1. This condition allows for an attacker to abuse the OAuth authentication flow via a crafted payload...