CVE-2021-27579

Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...

Exploit for CVE-2026-27579

Appwrite CORS Misconfiguration Exploit PoC CVE-2026-27579...

CVE-2022-27579

A deserialization vulnerability in a .NET framework class used and not properly checked by Flexi Soft Designer in all versions up to and including 1.9.4 SP1 allows an attacker to craft malicious project files. Opening/importing such a malicious project file would execute arbitrary code with the...

CVE-2025-27579

In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...

CVE-2025-27579

creationtimestamp| type| source ---|---|--- 2025-03-03 00:29:49+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6117 2025-03-03 02:34:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljgvystvfy22 2025-03-03 02:58:51+00:00| seen| https://t.me/cvedetector/19...

CVE-2025-27579

In Bitaxe ESP-Miner before 2.5.0 with AxeOS, one can use an /api/system CSRF attack to update the payout address aka stratumUser for a Bitaxe Bitcoin miner, or change the frequency and voltage settings...

CVE-2025-27579

CVE-2025-27579 affects Bitaxe ESP-Miner with AxeOS prior to firmware 2.5.0. The issue is a CSRF vulnerability in the /api/system endpoint that allows an attacker to update the payout address (stratumUser) and modify frequency and voltage settings. The impact is limited to the documented changes t...

CVE-2023-27579 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-27579 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data Are Addressed

Summary There are multiple vulnerabilities in Runtimes 22.2 component impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-2800 DESCRIPTION: Hugging Face Transformers is vulnerable to a...

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow ( CVE-2023-27579)

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow, caused by a floating point exception when a tflite model with a paramater filterinputchannel of less than 1 is constructed. CVE-2023-27579. TensorFlow is included as part of...

CVE-2023-27579

creationtimestamp| type| source ---|---|--- 2023-03-25 06:38:13+00:00| seen| https://t.me/cibsecurity/60737...

a2grunnerp (>=0.1.0 <=0.1.8), abba-python (>=0.1.6 <=0.3.0) +607 more potentially affected by CVE-2023-27579 via tensorflow (>=1.0.1 <=2.11.0rc2)

tensorflow PYPI version =1.0.1, =0.1.0, =0.1.6, =1.1.2, =0.0.1, =0.3.26, =1.1.0, =0.0.1, =0.2.0, =0.3.1, =0.5.1 and more Source cves: CVE-2023-27579 Source advisory: OSV:GHSA-5W96-866F-6RM8...

cifar-10-model (=7.4.0), gamornet-cpu (>=0.2.3 <=0.4.3) +8 more potentially affected by CVE-2023-27579 via tensorflow-cpu (>=1.15.0 <=2.11.0)

tensorflow-cpu PYPI version =1.15.0, =0.2.3, =0.0.5, =1.0.0, =1.8.2, =0.1.3, =0.3.0.dev221212, =0.7.0, =0.7.5 Source cves: CVE-2023-27579 Source advisory: OSV:GHSA-5W96-866F-6RM8...

arekit (>=0.21.0 <=0.22.1), arenets (>=0.23.0 <=0.23.1) +80 more potentially affected by CVE-2023-27579 via tensorflow-gpu (>=1.10.1 <=2.0.4)

tensorflow-gpu PYPI version =1.10.1, =0.21.0, =0.23.0, =0.9.2, =0.1.0, =0.0.1, =0.1.0, =1.0.0, =0.0.1, =0.0.2, =0.6.7, =0.1.2, =0.1.0, =0.1.2 - dragonn =0.4.2 and more Source cves: CVE-2023-27579 Source advisory: OSV:GHSA-5W96-866F-6RM8...

CVE-2022-27579

creationtimestamp| type| source ---|---|--- 2022-07-19 20:41:04+00:00| seen| https://t.me/cibsecurity/46571...

CVE-2022-27579

The CVE-2022-27579 entry corresponds to a deserialization vulnerability in a .NET Framework class used by SICK Flexi Soft Designer (versions up to 1.9.4 SP1). The root cause is improper checks during deserialization of a project file, allowing an attacker to craft a malicious project file that, w...

CVE-2021-27579

creationtimestamp| type| source ---|---|--- 2021-02-23 20:35:19+00:00| seen| https://t.me/cibsecurity/24003...

CVE-2021-27579

Snow Inventory Agent through 6.7.0 on Windows uses CPUID to report on processor types and versions that may be deployed and in use across an IT environment. A privilege-escalation vulnerability exists if CPUID is enabled, and thus it should be disabled via configuration settings...

CVE-2021-27579

Snow Inventory Agent for Windows (up to version 6.7.0) uses CPUID to report processor information. The disclosed vulnerability is a privilege-escalation flaw that exists when CPUID is enabled; remediation is to disable CPUID via configuration. No exploit specifics or affected product versions bey...