ROOT-OS-UBUNTU-2204-CVE-2026-23128 CVE-2026-23128 in rootio-linux - Patched by Root

Root has patched CVE-2026-23128 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

SUSE CVE-2026-23128

In the Linux kernel, the following vulnerability has been resolved: arm64: Set nocfi on swsusparchresume A DABT is reported1 on an android based system when resume from hiberate. This happens because swsusparchsuspendexit is marked with SYMCODE and does not have a CFI hash, but swsusparchresume...

CVE-2026-23128

creationtimestamp| type| source ---|---|--- 2026-02-14 17:35:41+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116070189339258151 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/ 2026-04-07 18:00:00+00:00| seen|...

DEBIAN-CVE-2026-23128

In the Linux kernel, the following vulnerability has been resolved: arm64: Set nocfi on swsusparchresume A DABT is reported1 on an android based system when resume from hiberate. This happens because swsusparchsuspendexit is marked with SYMCODE and does not have a CFI hash, but swsusparchresume...

CVE-2026-23128

In the Linux kernel, the following vulnerability has been resolved: arm64: Set nocfi on swsusparchresume A DABT is reported1 on an android based system when resume from hiberate. This happens because swsusparchsuspendexit is marked with SYMCODE and does not have a CFI hash, but swsusparchresume...

CVE-2022-23128

Incomplete List of Disallowed Inputs vulnerability in Mitsubishi Electric MC Works64 versions 4.00A 10.95.201.23 to 4.04E 10.95.210.01, ICONICS GENESIS64 versions 10.95.3 to 10.97, ICONICS Hyper Historian versions 10.95.3 to 10.97, ICONICS AnalytiX versions 10.95.3 to 10.97 and ICONICS MobileHMI...

RockyLinux 8 : firefox (RLSA-2025:23128)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23128 advisory. firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free in...

CVE-2024-23128

CVE-2024-23128 relates to Autodesk AutoCAD: parsing of MODEL files in libodxdll.dll and ASMDATAX229A.dll can trigger a memory corruption via write access violation, potentially enabling code execution in the current process. Connected sources (ZDI advisories) describe remote code execution with m...

CVE-2023-23128

creationtimestamp| type| source ---|---|--- 2023-02-01 16:14:17+00:00| seen| https://t.me/cibsecurity/57293 2025-03-27 14:27:15+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9084...

CVE-2023-23128

ConnectWise Control 22.8.10013.8329 is cited in multiple sources (NVD, Red Hat CVE, CVE listings) as vulnerable to a Cross Origin Resource Sharing (CORS) issue due to Access-Control-Allow-Origin wildcarding on two endpoints. The vendor states this behavior is required for functionality and poses ...

CVE-2022-23128

creationtimestamp| type| source ---|---|--- 2022-01-21 22:13:51+00:00| seen| https://t.me/cibsecurity/36052...

CVE-2022-23128

The CVE-2022-23128 entry describes an Incomplete List of Disallowed Inputs vulnerability affecting Mitsubishi Electric MC Works64 (versions 4.00A to 4.04E) and ICONICS GENESIS64, Hyper Historian, AnalytiX, and MobileHMI (versions 10.95.3 to 10.97). The root cause is a bypass of authentication via...

CVE-2020-23128

Chamilo LMS 1.11.10 does not properly manage privileges which could allow a user with Sessions administrator privilege to create a new user then use the edit user function to change this new user to administrator privilege...

CVE-2020-23128

CVE-2020-23128 affects Chamilo LMS 1.11.10. The issue is improper privilege management: a user with Sessions administrator privileges can create a new user and then use the Edit User function to grant that user administrator privileges. The connected sources consistently describe this as a privil...

Joomla! 3.2.0 - 3.9.24 Multiple Vulnerabilities

Joomla! is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:joomla:joomla"; ifdescription...

CVE-2021-23128

CVE-2021-23128 affects Joomla! core 3.2.0 through 3.9.24, where the unused FOFEncryptRandval path used an insecure randval implementation. The issue has been mitigated by replacing that code with a call to random_bytes() and its backport shipped in random_compat. Multiple connected sources confir...