DEBIAN-CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

CVE-2026-23557 Xenstored DoS via XS_RESET_WATCHES command

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

CVE-2026-23557

CVE-2026-23557 affects xenstored. Any guest can crash xenstored by issuing XS_RESET_WATCHES within a transaction due to an assert(); behavior depends on NDEBUG (assert() disabled when NDEBUG is defined). Local attack vector with low privileges and no user interaction, resulting in a high availabi...

xen-4.21.1_04-1.1 on GA media (moderate)

xen-4.21.104-1.1 on GA media Announcement ID: openSUSE-SU-2026:10660-1 Rating: moderate Cross-References: CVE-2026-23557 CVE-2026-23558 CVSS scores: CVE-2026-23557 SUSE : 6.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H CVE-2026-23558 SUSE : 7.8 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H...

Linux Distros Unpatched Vulnerability : CVE-2026-23557

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with...

SUSE CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

CVE-2022-23557

Tensorflow is an Open Source Machine Learning Framework. An attacker can craft a TFLite model that would trigger a division by zero in BiasAndClamp implementation. There is no check that the biassize is non zero. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on...

AndSoft e-TMS OS Command Injection Vulnerability (CNVD-2025-23557)

AndSoft e-TMS is a logistics management software from AndSoft Spain. AndSoft e-TMS suffers from an operating system command injection vulnerability that originates from improper manipulation of parameter m. An attacker can exploit this vulnerability by sending a POST request to execute an operati...

CVE-2020-23557

IrfanView 4.54 allows a user-mode write access violation starting at FORMATS!ShowPlugInSaveOptionsW+0x000000000000755d...

CVE-2025-23557

Cross-Site Request Forgery CSRF vulnerability in Kathleen Malone Find Your Reps find-your-reps allows Stored XSS.This issue affects Find Your Reps: from n/a through = 1.2...

CVE-2025-23557 WordPress Find Your Reps plugin <= 1.2 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Kathleen Malone Find Your Reps find-your-reps allows Stored XSS.This issue affects Find Your Reps: from n/a through = 1.2...

CVE-2025-23557 WordPress Find Your Reps plugin <= 1.2 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Kathleen Malone Find Your Reps find-your-reps allows Stored XSS.This issue affects Find Your Reps: from n/a through = 1.2...

CVE-2025-23557

CVE-2025-23557 affects the WordPress plugin Find Your Reps, exposing a Cross-Site Request Forgery to Stored Cross-Site Scripting (CSRF to Stored XSS) vulnerability. Public description indicates Find Your Reps: from n/a through 1.2 is affected, with a CVSS v3.1 base score of 7.1 (HIGH) and NETWORK...

CVE-2024-23557 HCL Connections is vulnerable to a user enumeration vulnerability

HCL Connections contains a user enumeration vulnerability. Certain actions could allow an attacker to determine if the user is valid or not, leading to a possible brute force attack...

CVE-2024-23557 HCL Connections is vulnerable to a user enumeration vulnerability

HCL Connections contains a user enumeration vulnerability. Certain actions could allow an attacker to determine if the user is valid or not, leading to a possible brute force attack...

CVE-2023-35035

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-23557...

Command injection

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-23557...

CVE-2023-35035

Atos Unify OpenScape 4000 Assistant V10 R1 before V10 R1.42.0 and V10 R1.34.8, Assistant V10 R0, Manager V10 R1 before V10 R1.42.0 and V10 R1.34.8, and Manager V10 R0 allow command injection by authenticated users, aka OSFOURK-23557...

CVE-2023-35035

CVE-2023-35035 affects Atos Unify OpenScape 4000 Assistant and Manager components. The vulnerability enables command injection by authenticated users, with affected versions including Assistant V10 R0 and V10 R1 up to R1.42.0 or R1.34.8, and Manager V10 R0 and V10 R1 up to R1.42.0 or R1.34.8. The...