CVE-2026-23427

creationtimestamp| type| source ---|---|--- 2026-04-23 23:26:48+00:00| published-proof-of-concept| Telegram/pgLuI-koqwnCr7SMtAann9VPLed2GvgsM5ymFLWKqIPrSQ...

BELL-CVE-2026-23427

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2026-23427

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection...

DEBIAN-CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

CVE-2026-23427

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in durable v2 replay of active file handles parsedurablehandlecontext unconditionally assigns dhinfo-fp-conn to the current connection when handling a DURABLEREQV2 context with SMB2FLAGSREPLAYOPERATION...

CVE-2023-23427

Some Honor products are affected by incorrect privilege assignment vulnerability, successful exploitation could cause device service exceptions...

CVE-2022-23427

PendingIntent hijacking vulnerability in KnoxPrivacyNoticeReceiver prior to SMR Feb-2022 Release 1 allows local attackers to access media files without permission via implicit Intent...

CVE-2025-23427

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in David Anderson / Team Updraft Redux Converter redux-converter allows Reflected XSS.This issue affects Redux Converter: from n/a through = 1.1.3.1...

CVE-2025-23427

CVE-2025-23427 is a Reflected XSS vulnerability in the WordPress Redux Converter plugin (Redux Converter) affecting versions up to 1.1.3.1. The NVD/Metrics indicate CVSS v3.1: base score 7.1 (HIGH), vectors: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L. Connected Red Hat/PTSecurity notes confirm the issue...

CVE-2024-23427

creationtimestamp| type| source ---|---|--- 2025-01-01 00:18:52+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lenbyhdqey25...

CVE-2023-23427

creationtimestamp| type| source ---|---|--- 2023-12-29 04:26:21+00:00| seen| https://t.me/ctinow/160306 2023-12-30 01:31:58+00:00| seen| https://t.me/cibsecurity/73868 2024-01-20 19:21:54+00:00| seen| https://t.me/ctinow/170702...

CVE-2023-23427

Technical details about CVE-2023-23427 are not publicly available in the provided documents. Monitor for updates from vendors and advisories; no product/version specifics or remediation are included here.

CVE-2022-23427

creationtimestamp| type| source ---|---|--- 2022-02-11 20:35:14+00:00| seen| https://t.me/cibsecurity/37342...

CVE-2022-23427

CVE-2022-23427 concerns a PendingIntent hijacking flaw in Samsung’s KnoxPrivacyNoticeReceiver. The vulnerability allows a local attacker to access media files via an implicit Intent prior to the SMR Feb-2022 Release 1. The descriptions across NVD, Red Hat, CNVD, CVE list, and related advisories a...

CVE-2021-23427

This affects all versions of package elFinder.NetCore. The ExtractAsync function within the FileSystem is vulnerable to arbitrary extraction due to insufficient validation...

CVE-2021-23427

This affects all versions of package elFinder.NetCore. The ExtractAsync function within the FileSystem is vulnerable to arbitrary extraction due to insufficient validation...

CVE-2021-23427

CVE-2021-23427 affects all versions of elFinder.NetCore. The vulnerability resides in the FileSystem.ExtractAsync function, where insufficient input validation enables arbitrary extraction (Zip Slip). Multiple sources describe an Arbitrary File Write/Extraction risk, with high-severity impact (cr...

CVE-2021-23427 Arbitrary File Write via Archive Extraction (Zip Slip)

This affects all versions of package elFinder.NetCore. The ExtractAsync function within the FileSystem is vulnerable to arbitrary extraction due to insufficient validation...