MAL-2026-2720 Malicious code in aca-review-apps (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4019ca27647236621668ae5e45dd104c23d60ad5b64fd5179ad09efda40cc345 The package aca-review-apps was found to contain malicious code...

CVE-2026-2720

creationtimestamp| type| source ---|---|--- 2026-03-21 03:17:11+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-2720...

RockyLinux 8 : kernel (RLSA-2026:2720)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:2720 advisory. kernel: smc: Use skdstget and dstdevrcu in smcclcprfxmatch CVE-2025-40168 kernel: Linux kernel Bluetooth: Denial of Service due to use-after-free in...

EUVD-2024-2720

Malicious code in bioql PyPI...

CVE-2022-2720

In affected versions of Octopus Server it was identified that when a sensitive value is a substring of another value, sensitive value masking will only partially work...

CVE-2019-2720

Vulnerability in the Oracle Data Integrator component of Oracle Fusion Middleware subcomponent: ODI Tools. Supported versions that are affected are 11.1.1.9.0 and 12.2.1.3.0. Difficult to exploit vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Data...

SUSE CVE-2025-2720

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: According to the code maintainer the call of the POC is invalid because the buffer pointed to by "data" must have "len"...

CVE-2025-2720

A vulnerability was found in GNOME libgsf, affecting the gsfbase64encodesimple function. The attack needs to be approached locally, and manipulation of the size argument can lead to use of an uninitialized variable. Mitigation Mitigation for this issue is either not available or the currently...

CVE-2025-2720

creationtimestamp| type| source ---|---|--- 2025-03-25 00:25:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8571 2025-03-25 02:46:04+00:00| seen| https://t.me/cvedetector/21018...

CVE-2025-2720

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: According to the code maintainer the call of the POC is invalid because the buffer pointed to by "data...

UBUNTU-CVE-2025-2720

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: According to the code maintainer the call of the POC is invalid because the buffer pointed to by "data...

CVE-2025-2720

Last updated 25 March 2025 Notes gianz According to the linked bug this is likely not even a vulnerability...

CVE-2025-2720

...

CVE-2013-2720

creationtimestamp| type| source ---|---|--- 2025-02-14 21:08:31+00:00| seen| Telegram/1NSIX1wu2gyUOfYjusC-VT-KGW0oSSja3s2e2DaPm70aZ1Y9...

RHEL 8 : bind and dhcp (RHSA-2024:2720)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2720 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named...

CVE-2024-2720

A vulnerability classified as problematic was found in Campcodes Complete Online DJ Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to cross site scripting. The attack can be launched...

CVE-2024-2720

The CVE-2024-2720 issue affects Campcodes Complete Online DJ Booking System 1.0, with a cross-site scripting vulnerability in the /admin/aboutus.php file. The root cause is manipulation of the pagetitle parameter, leading to XSS. The vulnerability is exploitable remotely and has publicly disclose...

CVE-2024-2720 Campcodes Complete Online DJ Booking System aboutus.php cross site scripting

A vulnerability classified as problematic was found in Campcodes Complete Online DJ Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/aboutus.php. The manipulation of the argument pagetitle leads to cross site scripting. The attack can be launched...

SUSE SLES12 Security Update : kernel (Live Patch 35 for SLE 12 SP4) (SUSE-SU-2023:2720-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2023:2720-1 advisory. - qfqchangeclass in net/sched/schqfq.c in the Linux kernel before 6.2.13 allows an out-of-bounds write because lmax can exceed QFQMINLMAX. CVE-2023-314...

SUSE CVE-2015-2720

The update implementation in Mozilla Firefox before 38.0 on Windows does not ensure that the pathname for updater.exe corresponds to the application directory, which might allow local users to gain privileges via a Trojan horse file...