MINI-2725-R4Q4-VP4P

Bulletin has no description...

CVE-2019-2725

Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: Web Services. Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

Linux Distros Unpatched Vulnerability : CVE-2020-2725

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 5.2.36, prior to...

Exploit for Missing Authentication for Critical Function in Oracle Weblogic_Server

CNVD-C-2019-48814 WebLogic wls9-async反序列化远程命令执行漏洞 回显poc for weblogic Patch update: https://www.oracle.com/technetwork/security-advisory/alert-cve-2019-2725-5466295.html 漏洞复现： http://10.10.20.166:7001/async/AsyncResponseService curl -i http://10.10.20.166:7001/async/favicon.ico CNVD-C-2019-48814...

CVE-2010-2725

BarnOwl before 1.6.2 does not check the return code of calls to the 1 ZPending and 2 ZReceiveNotice functions in libzephyr, which allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via unknown vectors...

CVE-2025-2725

creationtimestamp| type| source ---|---|--- 2025-03-25 02:23:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8581 2025-03-25 04:01:20+00:00| published-proof-of-concept| Telegram/MXLtd6D6lDs-X3W-toegTHLzYyO4SelR8FKZM3tOB5yKLoA 2025-03-25 04:48:22+00:00| seen|...

CVE-2013-2725

creationtimestamp| type| source ---|---|--- 2025-02-14 21:08:31+00:00| seen| Telegram/1NSIX1wu2gyUOfYjusC-VT-KGW0oSSja3s2e2DaPm70aZ1Y9...

Amazon Linux 2 : python3-tornado (ALAS-2025-2725)

The version of python3-tornado installed on the remote host is prior to 5.0.2-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2725 advisory. Tornado is a Python web framework and asynchronous networking library. The algorithm used for parsing HTTP cookies in Torna...

Huawei EulerOS: Security Advisory for python-lxml (EulerOS-SA-2024-2725)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 5 : kdeutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kdeutils: Ark path traversal CVE-2011-2725 Note that Nessus has not tested for this issue but has instead relied on...

RHEL 6 : kdeutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kdeutils: Ark path traversal CVE-2011-2725 Note that Nessus has not tested for this issue but has instead relied on...

RHEL 4 : kdeutils (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - kdeutils: Ark path traversal CVE-2011-2725 Note that Nessus has not tested for this issue but has instead relied on...

CVE-2024-2725

Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to access /vendor/composer/installed.json and retrieve all installed packages used by the application...

CVE-2024-2725

CVE-2024-2725 affects the CIGESv2 system and describes an information-exposure vulnerability where a remote attacker can access the /vendor/composer/installed.json endpoint to enumerate all installed packages used by the application. Documented impact is information disclosure with CVSS v3.1 base...

CVE-2024-2725 Exposure of Sensitive Information vulnerability in the CIGESv2 system

Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to access /vendor/composer/installed.json and retrieve all installed packages used by the application...

CVE-2024-2725 Exposure of Sensitive Information vulnerability in the CIGESv2 system

Information exposure vulnerability in the CIGESv2 system. A remote attacker might be able to access /vendor/composer/installed.json and retrieve all installed packages used by the application...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0117-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE 15 Security Update : chromium (openSUSE-SU-2023:0117-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0117-1 advisory. - Inappropriate implementation in Prompts in Google Chrome prior to 113.0.5672.63 allowed a remote attacker to bypass permission restrictions via...

Google Chrome Security Updates (stable-channel-update-for-desktop_16-2023-05) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Fedora 37 : chromium (2023-69264c19f9)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-69264c19f9 advisory. update to 113.0.5672.126. Fixes the many security issues Tenable has extracted the preceding description block directly from the Fedora security...