SUSE CVE-2026-2792

Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

CVE-2026-2792

creationtimestamp| type| source ---|---|--- 2026-02-25 00:02:23+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfnevtu6ue22 2026-02-28 02:01:59+00:00| seen| https://bsky.app/profile/slackers.it/post/3mfv4yiaimq2h...

Linux Distros Unpatched Vulnerability : CVE-2026-2792

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption...

CVE-2026-2792

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume th...

DEBIAN-CVE-2026-2792

Memory safety bugs present in Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147 and Thunderbird 147. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability was fixed in...

CVE-2026-2792

Summary: CVE-2026-2792 concerns memory-safety bugs in Mozilla products: Firefox ESR 140.7, Thunderbird ESR 140.7, Firefox 147, and Thunderbird 147. Some bugs showed memory corruption and could be exploited to run arbitrary code, affecting Firefox < 148 and Firefox ESR

MiracleLinux 8 : go-toolset:rhel8 (AXSA:2021-2792:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2792:01 advisory. golang: net: lookup functions may return invalid host names CVE-2021-33195 golang: net/http/httputil: ReverseProxy forwards connection headers if...

MINI-WHPQ-W39M-2792

Bulletin has no description...

CVE-2023-2792

Mattermost fails to sanitize ephemeral error messages, allowing an attacker to obtain arbitrary message contents by a specially crafted /groupmsg command...

CVE-2022-2792

Emerson Electric's Proficy Machine Edition Version 9.00 and prior is vulenrable to CWE-284 Improper Access Control, and stores project data in a directory with improper access control lists...

CVE-2013-2792

Schweitzer Engineering Laboratories SEL SEL-2241, SEL-3505, and SEL-3530 RTAC master devices allow remote attackers to cause a denial of service infinite loop via a crafted DNP3 TCP packet...

CVE-2019-2792

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware subcomponent: Outside In Filters. The supported version that is affected is 8.5.4. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Outside In...

CVE-2015-2792

The WPML plugin before 3.1.9 for WordPress does not properly handle multiple actions in a request, which allows remote attackers to bypass nonce checks and perform arbitrary actions via a request containing an action POST parameter, an action GET parameter, and a valid nonce for the action GET...

@0xdwong/html-to-markdown (>=1.0.0 <=1.0.1), @9wick/shodo-site (>=0.1.0 <=1.0.0) +327 more potentially affected by CVE-2025-2792 via @mozilla/readability (>=0.3.0 <=0.5.0)

@mozilla/readability NPM version =0.3.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.5-alpha.0, =0.1.0, =1.7.0, =0.1.6, =6.0.1, =6.0.48 and more Source cves: CVE-2025-2792 Source advisory: OSV:GHSA-3P6V-HRG8-8QJ7...

CGA-C3JX-WJ9G-2792

Bulletin has no description...

WordPress Elementor Addon Elements Plugin <= 1.13.2 is vulnerable to Cross Site Scripting (XSS)

Software Elementor Addon Elements Type Plugin Vulnerable versions = 1.13.2 Fixed in 1.13.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2792 Patch priority Low CVSS severity Low 6.5 Developer WPVibes PSID ba0e36a92b8e Credits wesley wcraft Require...

runc security update

4:1.1.12-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.12 - Related: RHEL-2112 4:1.1.11-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.11 - Related: RHEL-2112 4:1.1.10-3 - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Related:...

CVE-2023-2792 Ephemeral messages return private channel contents in permalink previews

Mattermost fails to sanitize ephemeral error messages, allowing an attacker to obtain arbitrary message contents by a specially crafted /groupmsg command...

CVE-2023-2792

Mattermost Server contains a vulnerability where ephemeral error messages are not sanitized, allowing an attacker to disclose arbitrary private channel message contents via a specially crafted /groupmsg command. Affected product: Mattermost Server; vulnerability in error message handling leads to...

Oracle Linux 8 : bind9.16 (ELSA-2023-2792)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-2792 advisory. - Handle subtle difference between upstream and rhel CVE-2022-3094 - Prevent flooding with UPDATE requests CVE-2022-3094 - Handle RRSIG queries when...