30 matches found
CVE-2025-23109 vulnerabilities
Vulnerabilities for packages: firefox-esr, firefox...
BELL-CVE-2026-23109
Bulletin has no description...
DEBIAN-CVE-2026-23109
In the Linux kernel, the following vulnerability has been resolved: fs/writeback: skip ASNODATAINTEGRITY mappings in waitsbinodes Above the while loop in waitsbinodes, we document that we must wait for all pages under writeback for data integrity. Consequently, if a mapping, like fuse,...
Linux Distros Unpatched Vulnerability : CVE-2026-23109
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/writeback: skip ASNODATAINTEGRITY mappings in waitsbinodes Above the while loop in waitsbinodes, we document that we must wait for all pages under writeback...
RockyLinux 9 : mysql (RLSA-2025:23109)
The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23109 advisory. mysql: DML unspecified vulnerability CPU Oct 2025 CVE-2025-53053 mysql: InnoDB unspecified vulnerability CPU Oct 2025 CVE-2025-53044 mysql: InnoDB...
RHEL 9 : mysql (RHSA-2025:23109)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:23109 advisory. MySQL is a multi-user, multi-threaded SQL database server. It consists of the MySQL server daemon mysqld and many client programs and...
Linux Distros Unpatched Vulnerability : CVE-2023-23109
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In crasm 1.8-3, invalid input validation, specific files passed to the command line application, can lead to a divide by zero fault in the function opdiv...
CVE-2024-23109
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...
VulnCheck KEV: CVE-2024-23109
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...
CVE-2025-23109
Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address. This vulnerability was fixed in Firefox for iOS 134...
CVE-2025-23109 Address bar spoofing on iOS using long hostnames
Long hostnames in URLs could be leveraged to obscure the actual host of the website or spoof the website address. This vulnerability was fixed in Firefox for iOS 134...
CVE-2025-23109
CVE-2025-23109 affects Firefox for iOS prior to version 134. The issue arises from long hostnames in URLs that can be used to obscure the actual host or spoof the website address. Mozilla’s advisory MFSA2025-06 confirms fixes shipped with Firefox iOS 134, and related entries note client-side path...
MGASA-2024-0243 Updated libheif packages fix security vulnerabilities
Yuchuan Meng discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-49460, CVE-2023-49462, CVE-2023-49463, CVE-2023-49464...
Updated libheif packages fix security vulnerabilities
Yuchuan Meng discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash the program, resulting in a denial of service. CVE-2023-49460, CVE-2023-49462, CVE-2023-49463, CVE-2023-49464...
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : libheif vulnerabilities (USN-6847-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6847-1 advisory. It was discovered that libheif incorrectly handled certain image data. An attacker could possibly use this issue to crash...
Ubuntu: Security Advisory (USN-6847-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Critical Patches Released for New Flaws in Cisco, Fortinet, VMware Products
Cisco, Fortinet, and VMware have released security fixes for multiple security vulnerabilities, including critical weaknesses that could be exploited to perform arbitrary actions on affected devices. The first set from Cisco consists of three flaws – CVE-2024-20252 and CVE-2024-20254 CVSS score:...
CVE-2024-23109
creationtimestamp| type| source ---|---|--- 2024-02-05 15:26:29+00:00| seen| https://t.me/ctinow/179263 2024-02-07 14:20:05+00:00| seen| https://t.me/truesecator/5386 2024-02-08 12:16:36+00:00| seen| https://t.me/itsecnews/4092 2024-02-29 09:27:08+00:00| seen| https://t.me/ctinow/196398 2024-03-2...
CVE-2024-23109
An improper neutralization of special elements used in an os command 'os command injection' vulnerability in Fortinet allows attacker to execute unauthorized code or commands via via crafted API requests...
CVE-2024-23109
CVE-2024-23109 is a Fortinet FortiSIEM OS command injection vulnerability caused by improper neutralization of special elements in API requests, enabling remote code execution. Connected sources confirm FortiSIEM as the affected product and describe exploitation via crafted API calls. Affected ve...