22 matches found
ROOT-OS-UBUNTU-2204-CVE-2026-23120 CVE-2026-23120 in rootio-linux - Patched by Root
Root has patched CVE-2026-23120 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
SUSE SLED15 / SLES15 : Security update for the Linux Kernel (SUSE-SU-2026:1661-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1661-1 advisory. The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issu...
SUSE-SU-2026:21114-1 Security update for the Linux Kernel
The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-38542: RDMA/manaib: boundary check before installing cq callbacks bsc1226591. - CVE-2025-39817: efivarfs: Fix slab-out-of-bounds in...
BELL-CVE-2026-23120
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2026-23120
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - l2tp: avoid one data-race in l2tptunneldelwork We should read sk-sksocket only when dealing with kernel sockets. syzbot reported the following data-race: BUG:...
CVE-2025-23120
A vulnerability allowing remote code execution RCE for domain users...
Veeam and IBM Release Patches for High-Risk Flaws in Backup and AIX Systems
Veeam has released security updates to address a critical security flaw impacting its Backup & Replication software that could lead to remote code execution. The vulnerability, tracked as CVE-2025-23120 , carries a CVSS score of 9.9 out of 10.0. It affects 12.3.0.310 and all earlier version 12...
CVE-2024-23120
A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the...
Autodesk Multiple Vulnerabilities (AutoCAD) (adsk-sa-2024-0009)
The version of Autodesk AutoCAD installed on the remote Windows host is a version prior to 2024.1.4. It is, therefore, affected by multiple vulnerabilities: - A maliciously crafted STP, CATPART or MODEL file in ASMKERN228A.dll when parsed through Autodesk AutoCAD can force an Out-of-Bound Write. ...
Oracle Linux 9 : edk2 (ELSA-2024-23120)
The remote Oracle Linux 9 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2024-23120 advisory. - Create new 20240227 release for OL9 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232...
CVE-2024-23120
creationtimestamp| type| source ---|---|--- 2024-02-22 01:26:55+00:00| seen| https://t.me/ctinow/190292 2024-02-22 01:32:03+00:00| seen| https://t.me/ctinow/190306...
CVE-2024-23120 Multiple Vulnerabilities in the Autodesk AutoCAD Desktop Software
A maliciously crafted STP and STEP file, when parsed in ASMIMPORT228A.dll and ASMIMPORT229A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the...
CVE-2023-23120
creationtimestamp| type| source ---|---|--- 2023-02-06 00:44:50+00:00| seen| https://t.me/cibsecurity/57409 2025-03-26 19:26:28+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8949...
CVE-2023-23120
CVE-2023-23120 affects TRENDnet TV-IP651WI Network Camera firmware versions v1.07.01 and earlier. The root cause is using a CRC-based integrity check during firmware updates, which can be bypassed in a MITM scenario to modify the firmware image. The provided documents state the vulnerability but ...
CVE-2023-23120
The use of the cyclic redundancy check CRC algorithm for integrity check during firmware update makes TRENDnet TV-IP651WI Network Camera firmware version v1.07.01 and earlier vulnerable to firmware modification attacks. An attacker can conduct a man-in-the-middle MITM attack to modify the new...
Multiple vulnerabilities in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux
Overview Deep Security and Cloud One - Workload Security Agent for Linux provided by Trend Micro Incorporated contain multiple vulnerabilities listed below. Directory Traversal CWE-22 - CVE-2022-23119 Code Injection CWE-94 - CVE-2022-23120 As of 2022 January 24, a Proof-of-Concept PoC code...
CVE-2022-23120
creationtimestamp| type| source ---|---|--- 2022-01-20 22:12:06+00:00| seen| https://t.me/cibsecurity/35952 2022-01-21 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/5247 2022-02-03 16:00:44+00:00| exploited| https://t.me/truesecator/2588 2023-12-04...
CVE-2022-23120
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in...
CVE-2022-23120
A code injection vulnerability in Trend Micro Deep Security and Cloud One - Workload Security Agent for Linux version 20 and below could allow an attacker to escalate privileges and run arbitrary code in the context of root. Please note: an attacker must first obtain access to the target agent in...
CVE-2022-23120
CVE-2022-23120 is a code-injection vulnerability in Trend Micro Deep Security and Cloud One – Workload Security Agent for Linux, affecting version 20 and below. The issue allows local privilege escalation to root by exploiting an input/validation weakness when handling directory traversal sequenc...