MINI-2377-MF86-J988

Bulletin has no description...

CVE-2026-2377

creationtimestamp| type| source ---|---|--- 2026-04-08 18:36:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3miywq2boeq23...

CVE-2026-2377

A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially crafted web address URL. This allows the application's backend to make arbitrary requests to internal network resources, a vulnerability known as Server-Side Request Forgery SSRF...

CVE-2026-2377 Mirror-registry: quay: quay: server-side request forgery via log export functionality

A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially crafted web address URL. This allows the application's backend to make arbitrary requests to internal network resources, a vulnerability known as Server-Side Request Forgery SSRF...

MiracleLinux 4 : firefox-78.13.0-2.0.1.AXS4 (AXSA:2021-2377:24)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2377:24 advisory. Mozilla: Uninitialized memory in a canvas object could have led to memory corruption CVE-2021-29980 Mozilla: Incorrect instruction reordering during...

EUVD-2026-2377

Due to insufficient input handling, the SAP Identity Management REST interface allows an authenticated administrator to submit specially crafted malicious REST requests that are processed by JNDI operations without adequate input neutralization. This may lead to limited disclosure or modification...

Huawei EulerOS: Security Advisory for aide (EulerOS-SA-2025-2377)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2014-2377

creationtimestamp| type| source ---|---|--- 2025-10-13 23:15:46+00:00| seen| Telegram/GBe9pojhOizOSdzRpT-ueCljkebYyquTHFFrAKdghIRTI...

ECHO-2377-CC5E-C479

Bulletin has no description...

CVE-2025-2377

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

CVE-2025-2377

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

CVE-2025-2377 SourceCodester Vehicle Management System confirmbooking.php cross site scripting

A vulnerability was found in SourceCodester Vehicle Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /confirmbooking.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched remotely. Th...

Linux Distros Unpatched Vulnerability : CVE-2016-2377

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A buffer overflow vulnerability exists in the handling of the MXIT protocol in Pidgin. Specially crafted MXIT data sent by the server could potentially result i...

CVE-2024-2377

creationtimestamp| type| source ---|---|--- 2024-12-19 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-354-02...

Oracle Linux 9 : zziplib (ELSA-2024-2377)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-2377 advisory. - Fix CVE-2020-18770 Previous patch was causing segfault Resolves: RHEL-14967 Tenable has extracted the preceding description block directly from the Oracle Lin...

CVE-2024-4159

Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information...

CVE-2024-4159

Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information...

PT-2024-29453 · Brocade · Brocade Sannav

Name of the Vulnerable Software and Affected Versions: Brocade SANnav versions prior to 2.3.0a Description: The issue lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information. Recommendations: For versions prio...

Protection mechanisms (CVE-2024-4159)

Brocade SANnav before v2.3.0a lacks protection mechanisms on port 2377/TCP and 7946/TCP, which could allow an unauthenticated attacker to sniff the SANnav Docker information...

Amazon Linux 2 : thunderbird (ALAS-2024-2377)

The version of thunderbird installed on the remote host is prior to 115.6.0-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2377 advisory. The signature of a digitally signed S/MIME email message may optionally specify the signature creation date and time...