CVE-2026-2253

creationtimestamp| type| source ---|---|--- 2026-05-27 05:00:12+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mmspyb5e7w2e 2026-05-27 05:14:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mmsqr6mndi2i 2026-05-27 07:01:06+00:00| seen|...

CVE-2021-2253

Vulnerability in the Oracle Advanced Supply Chain Planning product of Oracle Supply Chain component: Core. Supported versions that are affected are 12.1 and 12.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Advanced Supply Cha...

EUVD-2013-7096

Malware in sbrugna...

EUVD-2013-7097

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2023-2253

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the /v2/catalog endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned query...

CVE-2020-2253

Jenkins Email Extension Plugin 2.75 and earlier does not perform hostname validation when connecting to the configured SMTP server...

CVE-2019-2253

Buffer over-read can occur while parsing an ogg file with a corrupted comment block. in Snapdragon Auto, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607,...

K000151459: OpenShift vulnerability CVE-2023-2253

Security Advisory Description A flaw was found in the /v2/catalog endpoint in distribution/distribution, which accepts a parameter to control the maximum number of records returned query string: n. This vulnerability allows a malicious user to submit an unreasonably large value for n, causing the...

CVE-2025-2253

The IMITHEMES Listing plugin is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3. This is due to the plugin not properly validating a verification code value prior to updating their password through the imicresetpasswordinit function. This makes it...

CVE-2025-2253

The IMITHEMES Listing plugin is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3. This is due to the plugin not properly validating a verification code value prior to updating their password through the imicresetpasswordinit function. This makes it...

CVE-2025-2253

CVE-2025-2253 affects the IMITHEMES Listing plugin (≤3.3). The issue is unauthenticated privilege escalation caused by the plugin not properly validating a verification code before updating passwords via imic_reset_password_init(), enabling password changes for any user (including admins) if the ...

CVE-2025-2253 IMITHEMES Listing <= 3.3 - Unauthenticated Privilege Escalation via Unverified Password Reset

The IMITHEMES Listing plugin is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.3. This is due to the plugin not properly validating a verification code value prior to updating their password through the imicresetpasswordinit function. This makes it...

Azure Linux 3.0 Security Update: cert-manager / helm / moby-cli / moby-compose / moby-engine (CVE-2023-2253)

The version of cert-manager / helm / moby-cli / moby-compose / moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2253 advisory. - A flaw was found in the /v2/catalog endpoint in...

CVE-2023-2253 affecting package cert-manager for versions less than 1.11.2-14

CVE-2023-2253 affecting package cert-manager for versions less than 1.11.2-14. A patched version of the package is available...

CVE-2023-2253 affecting package cert-manager for versions less than 1.12.12-1

CVE-2023-2253 affecting package cert-manager for versions less than 1.12.12-1. An upgraded version of the package is available that resolves this issue...

Security Bulletin: IBM Cloud Pak for Data is vulnerable to denial of service due to github.com/docker/distribution ( CVE-2023-2253 )

Summary Go module github.com/docker/distribution is used by IBM Cloud Pak for Data. CVE-2023-2253. Vulnerability Details CVEID:CVE-2023-2253 DESCRIPTION: Distribution is vulnerable to a denial of service, caused by improper input validation by the /v2/catalog endpoint. By sending a specially...

CBL Mariner 2.0 Security Update: cert-manager / helm / moby-cli / moby-compose / moby-engine (CVE-2023-2253)

The version of cert-manager / helm / moby-cli / moby-compose / moby-engine installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2253 advisory. - A flaw was found in the /v2/catalog endpoint in...

CVE-2023-2253 affecting package moby-compose for versions less than 2.17.3-5

CVE-2023-2253 affecting package moby-compose for versions less than 2.17.3-5. A patched version of the package is available...

RHEL 4 : perl-libwww-perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - perl-libwww-perl: multiple HTTP client download filename vulnerability OCERT 2010-001 CVE-2010-2253 -...

RHEL 3 : perl-libwww-perl (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 3 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - perl-libwww-perl: multiple HTTP client download filename vulnerability OCERT 2010-001 CVE-2010-2253 Note that Nessu...