CVE-2026-2394

creationtimestamp| type| source ---|---|--- 2026-03-31 23:16:40+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-2394...

EUVD-2026-2394

EUVD-2026-2394...

CVE-2025-2394

creationtimestamp| type| source ---|---|--- 2025-05-23 00:44:03+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17368...

CVE-2025-2394 Disclosure of Alibaba (OSS) Keys In Ecovacs Home Android and iOS Mobile Applications

Ecovacs Home Android and iOS Mobile Applications up to version 3.3.0 contained embedded access keys and secrets for Alibaba Object Storage Service OSS, leading to sensitive data disclosure...

CVE-2025-2394 Disclosure of Alibaba (OSS) Keys In Ecovacs Home Android and iOS Mobile Applications

Ecovacs Home Android and iOS Mobile Applications up to version 3.3.0 contained embedded access keys and secrets for Alibaba Object Storage Service OSS, leading to sensitive data disclosure...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2024-2394)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE Security Advisory (SUSE-SU-2024:2394-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 9 : kernel (ELSA-2024-2394)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2394 advisory. - mm/sparsemem: fix race in accessing memorysection-usage Waiman Long RHEL-28877 RHEL-28878 CVE-2023-52489 - mlxsw: spectrumacltcam: Fix stack corrupti...

CVE-2024-2394

creationtimestamp| type| source ---|---|--- 2024-03-12 16:26:46+00:00| seen| https://t.me/ctinow/205813 2024-03-12 16:32:15+00:00| seen| https://t.me/ctinow/205829...

CVE-2024-2394

A vulnerability was found in SourceCodester Employee Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Admin/add-admin.php. The manipulation of the argument avatar leads to unrestricted upload. The attack may be launched...

CVE-2024-2394

SourceCodester Employee Management System 1.0 contains a vulnerability in the /Admin/add-admin.php file where manipulating the avatar parameter allows unrestricted file uploads. This could enable remote exploitation and is described as a critical issue in multiple sources (NVD, Red Hat, CVE recor...

Amazon Linux 2 : jetty (ALAS-2024-2394)

It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2394 advisory. Eclipse Jetty Canonical Repository is the canonical repository for the Jetty project. Users of the CgiServlet with a very specific command structure may have the wrong command executed. If a user sends a...

CVE-2023-2394

creationtimestamp| type| source ---|---|--- 2023-04-29 00:27:53+00:00| seen| https://t.me/cibsecurity/63110...

CVE-2023-2394

CVE-2023-2394 affects Netgear SRX5308 Web Management Interface. The vulnerability is a cross-site scripting (XSS) flaw caused by improper handling of the wanName parameter, enabling remote exploitation. Affected firmware: up to 4.3.5-3. Reported impact includes potential information exposure (e.g...

Oracle WebLogic Server Remote Code Execution (CVE-2021-2394)

A remote code execution vulnerability exists in Oracle WebLogic Server. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2022-2394

creationtimestamp| type| source ---|---|--- 2022-07-19 22:40:54+00:00| seen| https://t.me/cibsecurity/46578...

CVE-2022-2394

CVE-2022-2394 affects Puppet Bolt prior to 3.24.0. The vulnerability results from Bolt printing sensitive parameters during planning/runs, which may be logged when executed programmatically (e.g., via Puppet Enterprise). Affected versions include Bolt before 3.24.0; the issue is an information di...

CVE-2022-2394 Sensitive Parameter Exposure in Puppet Bolt prior to 3.24

Puppet Bolt prior to version 3.24.0 will print sensitive parameters when planning a run resulting in them potentially being logged when run programmatically, such as via Puppet Enterprise...

Exploit for CVE-2021-2394

CVE-2021-2394 POC for CVE-2021-2394 - Disclaimer - This pr...

CVE-2021-2394

CVE-2021-2394 affects Oracle WebLogic Server (Fusion Middleware, Core component). Affected versions: 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0, 14.1.1.0.0. Description: an unauthenticated, network-accessible vulnerability exploitable via T3/IIOP that can lead to takeover of WebLogic Server. ...