CVE-2026-2370 vulnerabilities

Vulnerabilities for packages: gitlab-runner...

CVE-2026-2370 Improper Handling of Parameters in GitLab

GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 affecting Jira Connect installations that could have allowed an authenticated user with minimal workspace permissions to obtain installation credentials and...

CVE-2026-2370

creationtimestamp| type| source ---|---|--- 2026-03-25 14:30:14+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mhvchlod2p25 2026-03-25 16:23:23+00:00| seen| https://www.acn.gov.it/portale/w/risolte-vulnerabilita-su-gitlab-community-edition-ce-e-enterprise-edition-ee-3 2026-03-26...

MiracleLinux 8 : thunderbird-78.13.0-1.el8.ML.1 (AXSA:2021-2370:15)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2370:15 advisory. Mozilla: Uninitialized memory in a canvas object could have led to memory corruption CVE-2021-29980 Mozilla: Incorrect instruction reordering during...

EUVD-2026-2370

Not used...

CVE-2014-2370

creationtimestamp| type| source ---|---|--- 2025-10-06 18:13:37+00:00| seen| Telegram/n7RFyUTPRVH4Wu6rnQvxxriqBJRWTyE4ExbPUI4MRrSiOPg...

EUVD-2022-4339

Malicious code in bioql PyPI...

CVE-2013-2370

Unspecified vulnerability in HP LoadRunner before 11.52 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1671...

CVE-2009-2370

Cross-site scripting XSS vulnerability in Advanced Forum 5.x before 5.x-1.1 and 6.x before 6.x-1.1, a module for Drupal, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

CVE-2025-2370

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...

CVE-2025-2370

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...

CVE-2025-2370 TOTOLINK EX1800T cstecgi.cgi setWiFiExtenderConfig stack-based overflow

A vulnerability was found in TOTOLINK EX1800T up to 9.1.0cu.2112B20220316. It has been declared as critical. Affected by this vulnerability is the function setWiFiExtenderConfig of the file /cgi-bin/cstecgi.cgi. The manipulation of the argument apcliSsid leads to stack-based buffer overflow. The...

CVE-2025-2370

TOTOLINK EX1800T (up to 9.1.0cu.2112_B20220316 and earlier) is affected by CVE-2025-2370. The vulnerability is in the setWiFiExtenderConfig function in /cgi-bin/cstecgi.cgi, where manipulating the apcliSsid parameter triggers a stack-based buffer overflow. It can be exploited remotely and the exp...

CVE-2025-2370

creationtimestamp| type| source ---|---|--- 2025-03-16 13:09:04+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114172267350542304 2025-03-17 09:46:25+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkkuom7b4s2s 2025-03-17 09:46:58+00:00| published-proof-of-concept|...

Linux Distros Unpatched Vulnerability : CVE-2012-2370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple integer overflows in the readbitmapfiledata function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service...

CVE-2015-2370

creationtimestamp| type| source ---|---|--- 2025-01-03 09:50:27+00:00| seen| https://bsky.app/profile/jamesatack.com/post/3letcuoghgk2f...

Huawei EulerOS: Security Advisory for krb5 (EulerOS-SA-2024-2370)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 6 : gtk2 (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gdk-pixbuf: DoS GLib error and application abort due to an integer overflow in the XBM image file format...

RHEL 5 : pidgin (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - pidgin: Out-of-bounds write in purplemarkupunescapeentity triggered by invalid XML CVE-2017-2640 - A deni...

CVE-2024-2370

creationtimestamp| type| source ---|---|--- 2024-03-11 14:26:39+00:00| seen| https://t.me/ctinow/204721 2024-03-11 14:26:40+00:00| seen| https://t.me/ctinow/204722...