MINI-38XP-M9MM-2524

Bulletin has no description...

CVE-2026-2524

A flaw has been found in Open5GS 2.7.6. The impacted element is the function mmes11handlecreatesessionresponse of the component MME. This manipulation causes denial of service. The attack can be initiated remotely. The exploit has been published and may be used. The project was informed of the...

MiracleLinux 4 : libsoup-2.28.2-1.AXS4.1 (AXSA:2011-706:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2011-706:01 advisory. Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup, but the SOAP and...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2025-2524)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2020-2524

Vulnerability in the Oracle Knowledge product of Oracle Knowledge component: InQuira Search. Supported versions that are affected are 8.6.0-8.6.3. Difficult to exploit vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Knowledge. Successful attacks of...

WordPress Ninja Forms plugin < 3.10.1 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Dmitrii Ignatyev in WordPress Plugin Ninja Forms versions 3.10.1...

CVE-2025-2524

creationtimestamp| type| source ---|---|--- 2025-05-19 06:38:51+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/16807...

Linux Distros Unpatched Vulnerability : CVE-2014-2524

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rltropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a...

CGA-4366-HRPM-2524

Bulletin has no description...

Amazon Linux 2 : mod_http2 (ALAS-2024-2524)

The version of modhttp2 installed on the remote host is prior to 1.15.19-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2524 advisory. HTTP/2 incoming headers exceeding the limit are temporarily buffered in nghttp2 in order to generate an informative HTTP 413...

RHEL 7 : openvswitch (RHSA-2018:2524)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2018:2524 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixe...

CVE-2024-2524 MAGESH-K21 Online-College-Event-Hall-Reservation-System receipt.php sql injection

A vulnerability, which was classified as critical, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. This issue affects some unknown processing of the file /admin/receipt.php. The manipulation of the argument roomid leads to sql injection. The attack may be initiated...

CVE-2024-2524 MAGESH-K21 Online-College-Event-Hall-Reservation-System receipt.php sql injection

A vulnerability, which was classified as critical, has been found in MAGESH-K21 Online-College-Event-Hall-Reservation-System 1.0. This issue affects some unknown processing of the file /admin/receipt.php. The manipulation of the argument roomid leads to sql injection. The attack may be initiated...

CVE-2023-2524

creationtimestamp| type| source ---|---|--- 2023-05-04 22:37:15+00:00| seen| https://t.me/cibsecurity/63312...

CVE-2023-2524 Control iD RHiD direct request

A vulnerability classified as critical has been found in Control iD RHiD 23.3.19.0. This affects an unknown part of the file /v2//. The manipulation leads to direct request. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-228015. NOTE: The...

CVE-2023-2524

CVE-2023-2524 describes a critical vulnerability in Control iD RHiD 23.3.19.0. It affects an unknown part of the file /v2/#/ and allows manipulation that leads to a direct request; the attack can be initiated remotely. The issue is widely reported across multiple sources, with vendor contact note...

SUSE CVE-2014-2524

The rltropen function in util.c in GNU readline before 6.3 patch 3 allows local users to create or overwrite arbitrary files via a symlink attack on a /var/tmp/rltrace.PID file...

SUSE: Security Advisory (SUSE-SU-2022:2524-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Mageia: Security Advisory (MGASA-2014-0319)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DLA-2524-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...