CVE-2019-25739

GigToDo 1.3 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript and HTML code through the proposal description field. Attackers can craft XSS payloads in the createproposal endpoint that execute when administrators or other...

CVE-2022-25739

creationtimestamp| type| source ---|---|--- 2026-01-20 08:04:59+00:00| seen| https://infosec.exchange/users/certvde/statuses/115926387351405846...

Linux Distros Unpatched Vulnerability : CVE-2020-25739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the gon gem before gon-6.4.0 for Ruby. MultiJson does not honor the escapemode parameter to escape fields as an XSS protection...

Linux Distros Unpatched Vulnerability : CVE-2023-25739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Module load requests that failed were not being checked as to whether or not they were cancelled causing a use-after-free in ScriptLoadContext. This vulnerabili...

TencentOS Server 2: thunderbird (TSSA-2023:0029)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0029 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...

K000151336: Linux kernel vulnerability CVE-2024-25739

Security Advisory Description createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missing check for ubi-lebsize. CVE-2024-25739 Impact There is no impact; F5 products are not affected by this vulnerability. Securi...

RHEL 9 : kernel (RHSA-2025:4509)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4509 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: crash due to a missing check f...

Linux Distros Unpatched Vulnerability : CVE-2024-25739

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero bytes, and crash, because of a missing check for...

Azure Linux 3.0 Security Update: kernel (CVE-2024-25739)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25739 advisory. - createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero...

CVE-2022-25739

Denial of service in modem due to missing null check while processing the ipv6 packet received during ECM call...

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2024-2815)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : vsock/virtio: free queued packets when closing socketCVE-2021-47024 KVM: PPC: Fix kvmarchvcpuioctl vcpuload leakCVE-2021-47296 kernel:RDMA/cma:...

RockyLinux 8 : kernel-rt (RLSA-2024:5102)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:5102 advisory. kernel: efivarfs: force RO when remounting if SetVariable is not supported CVE-2023-52463 kernel: tracing: Restructure traceclockglobal to never block...

Amazon Linux 2 : kernel, --advisory ALAS2-2024-2615 (ALAS-2024-2615)

The version of kernel installed on the remote host is prior to 4.14.345-262.561. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2024-2615 advisory. In the Linux kernel, the following vulnerability has been resolved: vt: fix memory overlapping when deleting chars...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-25739)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25739 advisory. - createemptylvol in drivers/mtd/ubi/vtbl.c in the Linux kernel through 6.7.4 can attempt to allocate zero...

CVE-2024-25739 affecting package kernel for versions less than 6.6.35.1-4

CVE-2024-25739 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

OracleVM 3.4 : kernel-uek (OVMSA-2024-0010)

The remote OracleVM system is missing necessary patches to address security updates: 4.1.12-124.88.3- crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813- usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495- phonet: fix...

Unbreakable Enterprise kernel security update

4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...

Ubuntu: Security Advisory (USN-6922-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-6926-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...