64 matches found
Astra Linux - уязвимость в linux-5.10, linux
Several Linux PV device frontends are vulnerable to attacks by backends that use grant table interfaces to remove access rights from resources. This can lead to potential data leaks, data corruption by malicious backends, and denial of service attacks. The backends that use these interfaces may n...
CVE-2026-23040
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...
CVE-2026-23040
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...
DEBIAN-CVE-2026-23040
In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...
Linux Distros Unpatched Vulnerability : CVE-2026-23040
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001707)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001707 advisory. Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities...
EUVD-2022-28152
Malicious code in bioql PyPI...
CVE-2021-23040
On BIG-IP AFM version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisione...
CVE-2020-23040
Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows attackers to access sensitive data and files via 'null' path commands...
GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs
Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully exploited, could permit an attacker to gain unauthorized access to a user's Git credentials. "Git implements a protocol called Git Credential Protocol to retrieve...
CVE-2025-23040
CVE-2025-23040 affects GitHub Desktop prior to 3.4.12. A maliciously crafted remote URL can cause the credential request from Git to be misinterpreted by GitHub Desktop via the git-credential protocol, leading to exfiltration of credentials (GitHub username, OAuth tokens, or other remote-host cre...
CVE-2025-23040 Maliciously crafted remote URLs could lead to credential leak in GitHub Desktop
GitHub Desktop is an open-source Electron-based GitHub app designed for git development. An attacker convincing a user to clone a repository directly or through a submodule can allow the attacker access to the user's credentials through the use of maliciously crafted remote URL. GitHub Desktop...
CVE-2024-30304 ZDI-CAN-23040: Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution Vulnerability
Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Zoom VDI Meeting Client < 5.14.12 Vulnerability (ZSB-23040)
The version of Zoom VDI Meeting Client installed on the remote host is prior to 5.14.12. It is, therefore, affected by a vulnerability as referenced in the ZSB-23040 advisory. - Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network...
EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2023-1933)
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1933)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2023-23040
TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication...
CVE-2023-23040
HARDWARE: TP-Link TL-WR940N V6, firmware 3.19.1 Build 180119. VULNERABLE COMPONENT/CAUSE: admin password hashing uses deprecated MD5 for basic authentication. IMPACT: potential confidentiality exposure due to weak password-hashing, per CVSS base metrics (C:H). EXPLOITATION: no explicit exploitati...
K94255403: BIG-IP AFM vulnerability CVE-2021-23040
Security Advisory Description A SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisioned. CVE-2021-23040 Impact An authenticated attacker can exploit this vulnerability to execute malicious SQL...
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1388)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...