Lucene search
K

69 matches found

SUSE CVE
SUSE CVE
added 2026/06/23 2:31 a.m.5 views

SUSE CVE-2026-2303

The mongo-go-driver repository contains CGo bindings for GSSAPI Kerberos authentication on Linux and macOS. The C wrapper implementation contains a heap out-of-bounds read vulnerability due to incorrect assumptions about string termination in the GSSAPI standard. Since GSSAPI buffers are not...

6.9CVSS5.9AI score0.00223EPSS
Exploits0References3
Chainguard
Chainguard
added 2026/06/19 2:17 a.m.10 views

CVE-2026-2303 vulnerabilities

Vulnerabilities for packages: ferretdb, bento-fips, percona-backup-mongodb-fips, packer-fips, loki-fips, loki, consul, kubeflow-pipelines-driver-fips, promxy-fips, splunk-otel-collector-fips, tempo-fips, datadog-agent-fips, dapr-fips, harbor, agentbeat, virt-api, prometheus-mongodb-exporter-fips,...

6.9CVSS6.6AI score0.00223EPSS
Exploits0
CBLMariner
CBLMariner
added 2026/03/09 2:32 p.m.3 views

CVE-2026-2303 affecting package telegraf for versions less than 1.29.4-21

CVE-2026-2303 affecting package telegraf for versions less than 1.29.4-21. A patched version of the package is available...

6.9CVSS5.8AI score0.00223EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/11 5:43 p.m.4 views

CVE-2026-2303

The mongo-go-driver repository contains CGo bindings for GSSAPI Kerberos authentication on Linux and macOS. The C wrapper implementation contains a heap out-of-bounds read vulnerability due to incorrect assumptions about string termination in the GSSAPI standard. Since GSSAPI buffers are not...

6.9CVSS5.6AI score0.00223EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : firefox-78.12.0-1.el8.ML.1 (AXSA:2021-2303:20)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2303:20 advisory. Mozilla: Use-after-free in accessibility features of a document CVE-2021-29970 Mozilla: Memory safety bugs fixed in Firefox 90 and Firefox ESR 78.12...

8.8CVSS8.4AI score0.03582EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/01/09 10:12 a.m.7 views

CVE-2019-2303

SNDCP module may access array out side its boundary when it receives malformed XID message. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053,...

9.8CVSS7.2AI score0.00711EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:7 a.m.7 views

CVE-2024-2303

The Easy Textillate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'textillate' shortcode in all versions up to, and including, 2.01 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.8AI score0.00335EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:22 p.m.9 views

CVE-2021-2303

Vulnerability in the OSS Support Tools product of Oracle Support Tools component: Diagnostic Assistant. The supported version that is affected is Prior to 2.12.41. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise OSS Support Tools...

4.9CVSS5.9AI score0.01451EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:14 a.m.6 views

CVE-2013-2303

Sleipnir 4.0.0.4000 and earlier on Windows allows remote attackers to spoof the SSL lock icon and address-bar colors via unspecified vectors...

5CVSS7.1AI score0.01034EPSS
Exploits0References1
Circl
Circl
added 2025/03/22 7:38 a.m.8 views

CVE-2025-2303

creationtimestamp| type| source ---|---|--- 2025-03-22 07:38:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkx7uyg7zf2j 2025-03-22 07:38:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkx7uz6uu526 2025-03-22 08:48:26+00:00| seen|...

8.8CVSS8.7AI score0.00791EPSS
Exploits0References5
NVD
NVD
added 2025/03/22 7:15 a.m.11 views

CVE-2025-2303

The Block Logic – Full Gutenberg Block Display Control plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.0.8 via the blocklogicchecklogic function. This is due to the unsafe evaluation of user-controlled input. This makes it possible for...

8.8CVSS0.00791EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/03/22 6:41 a.m.8 views

CVE-2025-2303 Block Logic <= 1.0.8 - Authenticated (Contributor+) Remote Code Execution

The Block Logic – Full Gutenberg Block Display Control plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.0.8 via the blocklogicchecklogic function. This is due to the unsafe evaluation of user-controlled input. This makes it possible for...

8.8CVSS7.9AI score0.00791EPSS
Exploits0References3
CVE
CVE
added 2025/03/22 6:41 a.m.83 views

CVE-2025-2303

CVE-2025-2303 (Block Logic – Full Gutenberg Block Display Control) affects the WordPress Block Logic plugin (versions

8.8CVSS8.9AI score0.00791EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/10/08 12:0 a.m.4 views

Microsoft Configuration Manager SQL注入漏洞

Microsoft Configuration Manager is a Microsoft solution for managing computers and servers within an organization that helps IT departments keep software up to date, set configuration and security policies, and monitor system status. A SQL injection vulnerability exists in Microsoft Configuration...

9.8CVSS9.6AI score0.60661EPSS
Exploits3References3
Citrix
Citrix
added 2024/07/11 12:0 a.m.12 views

VDA launch stuck at "Please wait for local session manager" for version 2303 or later

VDA launch may stuck at "Please wait for local session manager" after VDA 2303 or later...

7AI score
Exploits0
OpenVAS
OpenVAS
added 2024/07/10 12:0 a.m.21 views

openSUSE: Security Advisory for krb5 (SUSE-SU-2024:2303-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS8.5AI score0.01863EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/07/05 12:0 a.m.22 views

SUSE SLES15: krb5 / krb5-32bit / krb5-client / krb5-devel / krb5-plugin-kdb-ldap / etc (SUSE-SU-2024:2303-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2303-1 advisory. - CVE-2024-37370: Fixed confidential GSS krb5 wrap tokens with invalid fields were errouneously accepted bsc1227186. -...

9.1CVSS7.2AI score0.01863EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.23 views

Oracle Linux 9 : gstreamer1-plugins-good (ELSA-2024-2303)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2303 advisory. - CVE-2023-37327: integer overflow leading to heap overwrite in FLAC image tag handling Tenable has extracted the preceding description block directly from the...

8.8CVSS6.7AI score0.01537EPSS
Exploits0References2
NVD
NVD
added 2024/03/26 6:15 a.m.10 views

CVE-2024-2303

The Easy Textillate plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'textillate' shortcode in all versions up to, and including, 2.01 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...

6.4CVSS5.7AI score0.00335EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/03/26 12:0 a.m.7 views

WordPress Easy Textillate Plugin <= 2.01 is vulnerable to Cross Site Scripting (XSS)

Software Easy Textillate Type Plugin Vulnerable versions = 2.01 Fixed in 2.02 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2303 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID e2fef30ce1b2 Credits Tien Luong Required...

6.4CVSS5.8AI score0.00335EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder