CVE-2023-26126

All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function...

Linux Distros Unpatched Vulnerability : CVE-2022-26126

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to the use of strdup with a non-zero- terminated binary string in isisnbnotifications.c...

CVE-2024-26126 Adobe Experience Manager | Improper Input Validation (CWE-20)

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and affect the integrity of the page. Exploitatio...

CVE-2024-26126 Adobe Experience Manager | Improper Input Validation (CWE-20)

Adobe Experience Manager versions 6.5.20 and earlier are affected by an Improper Input Validation vulnerability that could result in a security feature bypass. A low-privileged attacker could leverage this vulnerability to bypass security measures and affect the integrity of the page. Exploitatio...

CVE-2024-26126

Adobe Experience Manager (AEM) versions 6.5.20 and earlier are affected by an Improper Input Validation (CWE-20) vulnerability (CVE-2024-26126) that could bypass security features and affect page integrity. The issue supports network access with low privileges and requires user interaction to exp...

Ubuntu: Security Advisory (USN-6807-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6807-1: FRR vulnerabilities

It was discovered that FRR incorrectly handled certain network traffic. A remote attacker could possibly use this issue to cause FRR to crash, resulting in a denial of service. CVE-2022-26126, CVE-2022-26127, CVE-2022-26128, CVE-2022-26129, CVE-2022-37032, CVE-2022-37035, CVE-2023-31490,...

Ubuntu 20.04 LTS : FRR vulnerabilities (USN-6807-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6807-1 advisory. It was discovered that FRR incorrectly handled certain network traffic. A remote attacker could possibly use this issue to cause FRR to crash, resulting ...

RHEL 9 : frr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - frrouting: Misusing strdup leads to stack overflow in isisnbnotifications.c CVE-2022-26126 Note that Nessus has not...

RHEL 8 : frr (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - frrouting: Misusing strdup leads to stack overflow in isisnbnotifications.c CVE-2022-26126 - Buffer...

RHEL 8 : frrouting (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - frrouting: Misusing strdup leads to stack overflow in isisnbnotifications.c CVE-2022-26126 - Buffer...

Debian: Security Advisory (DLA-3797-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-26126

All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function...

CVE-2023-26126

CVE-2023-26126 concerns the npm package m.static , where all versions are vulnerable to a Directory Traversal due to improper input sanitization in the requestFile function. The published descriptions consistently state that path inputs can escape the intended directory, enabling access to arbitr...

CVE-2023-26126

All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function...

CVE-2023-26126

All versions of the package m.static are vulnerable to Directory Traversal due to improper input sanitization of the path being requested via the requestFile function...

openSUSE: Security Advisory for frr (openSUSE-SU-2022:0901-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

SUSE SLES15 Security Update : frr (SUSE-SU-2022:0901-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0901-1 advisory. - Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input packet length in...

openSUSE 15 Security Update : frr (openSUSE-SU-2022:0901-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:0901-1 advisory. - Buffer overflow vulnerabilities exist in FRRouting through 8.1.0 due to wrong checks on the input packet length in isisd/isistlvs.c...

OPENSUSE-SU-2022:0901-1 Security update for frr

This update for frr fixes the following issues: - CVE-2022-26125, CVE-2022-26126: Fixed buffer overflows in unpacktlvroutercap bsc1196505, bsc1196506. - CVE-2022-26127: Fixed heap buffer overflow in babelpacketexamin bsc1196503. - CVE-2022-26128: Fixed buffer overflows in babelpacketexamin...