CVE-2026-25534

creationtimestamp| type| source ---|---|--- 2026-03-17 19:58:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhbr3krzdq2x 2026-03-18 01:30:29+00:00| seen| https://infosec.exchange/users/offseq/statuses/116247588300935274 2026-03-18 01:30:32+00:00| seen|...

CVE-2026-25534 Spinnaker clouddriver and orca URL validation bypass via underscores in hostnames

Impact Spinnaker updated URL Validation logic on user input to provide sanitation on user inputted URLs for clouddriver. However, they missed that Java URL objects do not correctly handle underscores on parsing. This led to a bypass of the previous CVE CVE-2025-61916 through the use of carefully...

CVE-2026-25534

Impact Spinnaker updated URL Validation logic on user input to provide sanitation on user inputted URLs for clouddriver. However, they missed that Java URL objects do not correctly handle underscores on parsing. This led to a bypass of the previous CVE CVE-2025-61916 through the use of carefully...

CVE-2019-25534

CVE-2019-25534 affects Netartmedia PHP Car Dealer. An SQL injection allows unauthenticated attackers to submit crafted SQL via the features[] parameter in POST requests to index.php, enabling extraction of sensitive database information or manipulation of queries. CVSS scores indicate high severi...

CVE-2023-25534

NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering...

CVE-2023-25534

Summary: CVE-2023-25534 affects the NVIDIA DGX H100 BMC via an IPMI input-validation vulnerability. The Red Hat and NVIDIA advisories describe an improper input validation flaw in IPMI that could enable an attacker to achieve code execution, denial of service, privilege escalation, information di...