CVE-2026-27239 Adobe Experience Manager | Cross-site Scripting (Stored XSS) (CWE-79)

Adobe Experience Manager versions 6.5.23 and earlier are affected by a stored Cross-Site Scripting XSS vulnerability that could be abused by an attacker to inject malicious scripts into vulnerable form fields. Malicious JavaScript may be executed in a victim’s browser when they browse to the page...

CVE-2021-27239

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version 1.0.4.98 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the upnpd service, which listens on...

CVE-2020-27239

An exploitable SQL injection vulnerability exists in ‘getAssets.jsp’ page of OpenClinic GA 5.173.3. The assetStatus parameter in the getAssets.jsp page is vulnerable to unauthenticated SQL injection An attacker can make an authenticated HTTP request to trigger this vulnerability...

Linux Distros Unpatched Vulnerability : CVE-2022-27239

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root...

CVE-2024-27239

creationtimestamp| type| source ---|---|--- 2025-02-25 23:14:20+00:00| seen| https://t.me/cvedetector/18921...

CVE-2024-27239

Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service via network access...

CVE-2024-27239 Zoom Workplace Apps and SDKs - Divide By Zero

Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service via network access...

Zoom Workplace Desktop App < 5.17.11 Divide By Zero Vulnerability (ZSB-24018)

The version of Zoom Workplace Desktop App installed on the remote host is prior to 5.17.11. It is, therefore, affected by a vulnerability as referenced in the ZSB-24018 advisory. - Use after free in some Zoom Workplace Apps and SDKs may allow an authenticated user to conduct a denial of service v...

RHEL 9 : cifs-utils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - cifs-utils: stack-based buffer overflow mount.cifs may lead to local privilege escalation to root...

Amazon Linux 2023 : cifs-utils, cifs-utils-devel, cifs-utils-info (ALAS2023-2024-530)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2024-530 advisory. A stack-based buffer overflow issue was found in pifs-utils. Parsing the mount.cifs ip command-line argument can lead to local attackers gaining root privileges. CVE-2022-27239 A flaw was found...

GLSA-202311-05 : LinuxCIFS utils: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-05 LinuxCIFS utils: Multiple Vulnerabilities - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to local attackers gaining root privileges...

Huawei EulerOS: Security Advisory for cifs-utils (EulerOS-SA-2023-1706)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS Virtualization 3.0.2.0 : cifs-utils (EulerOS-SA-2023-1706)

According to the versions of the cifs-utils package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line argument could lead to...

CBL Mariner 2.0 Security Update: cifs-utils (CVE-2022-27239)

The version of cifs-utils installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-27239 advisory. - In cifs-utils through 6.14, a stack-based buffer overflow when parsing the mount.cifs ip= command-line...

CVE-2023-27239

creationtimestamp| type| source ---|---|--- 2023-03-15 11:24:40+00:00| seen| https://t.me/cibsecurity/60042...

CVE-2023-27239

Tenda AX3 V16.03.12.11 was discovered to contain a stack overflow via the shareSpeed parameter at /goform/WifiGuestSet...

CVE-2023-27239

CVE-2023-27239 affects the Tenda AX3 router, version 16.03.12.11. The vulnerability is a stack overflow triggered by the shareSpeed parameter in the /goform/WifiGuestSet API, allowing potential remote code execution or denial of service. Multiple connected sources corroborate the affected product...

Amazon Linux 2 : cifs-utils, --advisory ALAS2-2023-1977 (ALAS-2023-1977)

The version of cifs-utils installed on the remote host is prior to 6.2-10. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-1977 advisory. A flaw was found in cifs-utils. When verbose logging is enabled, invalid credentials file lines may be dumped to stderr. This may...

Important: cifs-utils

Issue Overview: A stack-based buffer overflow issue was found in pifs-utils. Parsing the mount.cifs ip command-line argument can lead to local attackers gaining root privileges. CVE-2022-27239 Affected Packages: cifs-utils Issue Correction: Run yum update cifs-utils or yum update --advisory...

Amazon Linux AMI : cifs-utils (ALAS-2023-1698)

The version of cifs-utils installed on the remote host is prior to 6.2-7.7. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1698 advisory. A stack-based buffer overflow issue was found in pifs-utils. Parsing the mount.cifs ip command-line argument can lead to local...