Azure Linux 3.0 Security Update: openjpeg2 (CVE-2020-27845)

The version of openjpeg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-27845 advisory. - There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to...

Linux Distros Unpatched Vulnerability : CVE-2021-27845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpcenc.c CVE-2021-27845 Note that Nessus relies on the...

Linux Distros Unpatched Vulnerability : CVE-2020-27845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There's a flaw in src/lib/openjp2/pi.c of openjpeg in versions prior to 2.4.0. If an attacker is able to provide untrusted input to openjpeg's conversion/encodi...

CVE-2025-27845

In ESPEC North America Web Controller 3 before 3.3.4, /api/v4/auth/ with any invalid authentication request results in exposing a JWT secret. This allows for elevated permissions to the UI...

CVE-2025-27845

creationtimestamp| type| source ---|---|--- 2025-08-14 15:00:32+00:00| seen| Telegram/bAwCiokseEQayR-hS1gNmmPizOSBpbOxvlPtAjlz11lA6Gc...

CVE-2020-27845 affecting package openjpeg2 for versions less than 2.3.1-12

CVE-2020-27845 affecting package openjpeg2 for versions less than 2.3.1-12. A patched version of the package is available...

CVE-2023-27845

creationtimestamp| type| source ---|---|--- 2023-07-07 20:17:50+00:00| seen| https://t.me/cibsecurity/66201...

CVE-2023-27845

SQL injection vulnerability found in PrestaShop lekerawenocs before v.1.4.1 allow a remote attacker to gain privileges via the KerawenHelper::setCartOperationInfo, and KerawenHelper::resetCheckoutSessionData components...

CVE-2023-27845

SQL injection vulnerability found in PrestaShop lekerawenocs before v.1.4.1 allow a remote attacker to gain privileges via the KerawenHelper::setCartOperationInfo, and KerawenHelper::resetCheckoutSessionData components...

CVE-2023-27845

CVE-2023-27845 affects PrestaShop lekerawen_ocs prior to version 1.4.1. The vulnerability is a SQL injection in KerawenHelper::setCartOperationInfo and KerawenHelper::resetCheckoutSessionData that enables a remote attacker to gain privileges. The issue arises in the cart/checkout session handling...

USN-5952-1: OpenJPEG vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description Sebastian Poeplau discovered that OpenJPEG incorrectly handled certain inputs. If a user or an automated system were tricked into opening a specially crafted input file, a remote attacker could possibly u...

SUSE SLED15 / SLES15 Security Update : jasper (SUSE-SU-2022:0562-2)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:0562-2 advisory. - A Divide-by-zero vulnerability exists in JasPer Image Coding Toolkit 2.0 in jasper/src/libjasper/jpc/jpcenc.c...

SUSE: Security Advisory (SUSE-SU-2022:0562-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:0562-2 Security update for jasper

This update for jasper fixes the following issues: - CVE-2021-27845: Fixed divide-by-zery issue in cpcreate bsc1188437...

SUSE: Security Advisory (SUSE-SU-2022:4082-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2022:4082-1 Security update for openjpeg

This update for openjpeg fixes the following issues: - CVE-2018-20846: Fixed an Out-of-bounds accesses in pinextlrcp, pinextrlcp, pinextrpcl, pinextpcrl, pinextrpcl, and pinextcprl in openmj2/pi. bsc1140205 - CVE-2018-21010: Fixed a heap buffer overflow in colorapplyiccprofile in bin/common/color...

SUSE: Security Advisory (SUSE-SU-2022:3802-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2022:3801-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-27845

Authenticated admin or higher user role Stored Cross-Site Scripting XSS in PlausibleHQ Plausible Analytics WordPress plugin = 1.2.2...

CVE-2022-27845 WordPress Plausible Analytics plugin <= 1.2.2 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability

Authenticated admin or higher user role Stored Cross-Site Scripting XSS in PlausibleHQ Plausible Analytics WordPress plugin = 1.2.2...