CVE-2026-2818

A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers to write files outside the intended extraction directory. This vulnerability appears to be susceptible on Windows OS only. Mitigation Mitigation for this issue is either not available or...

CVE-2026-2818

creationtimestamp| type| source ---|---|--- 2026-02-20 17:38:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfcnm2ogha2f...

CVE-2026-2818

A zip-slip path traversal vulnerability in Spring Data Geode's import snapshot functionality allows attackers to write files outside the intended extraction directory. This vulnerability appears to be susceptible on Windows OS only...

com.netflix.ndbench:ndbench-cli (>=0.3.12 <=0.7.4), com.netflix.ndbench:ndbench-geode-plugins (>=0.3.5 <=0.7.4) +35 more potentially affected by CVE-2026-2818 via org.springframework.data:spring-data-geode (>=1.0.0.INCUBATING-RELEASE <=2.7.5)

org.springframework.data:spring-data-geode MAVEN version =1.0.0.INCUBATING-RELEASE, =0.3.12, =0.3.5, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =2.0.0.RELEASE, =3.0.0, =3.2.1...

RHEL 10 : pcs (RHSA-2026:2818)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:2818 advisory. The pcs packages provide a command-line configuration system for the Pacemaker and Corosync utilities. Security Fixes: lodash: prototype pollution i...

MiracleLinux 4 : thunderbird-45.2-1.AXS4 (AXSA:2016-548:05)

The remote MiracleLinux 4 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2016-548:05 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. Security issues fixed with this release: CVE-2016-2818 Multiple unspecified vulnerabilities in...

MiracleLinux 4 : rh-mysql56-mysql-5.6.40-1.AXS4 (AXSA:2018-2997:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-2997:02 advisory. mysql: Server: Replication unspecified vulnerability CPU Apr 2018 CVE-2018-2755 mysql: Server: Security: Privileges unspecified vulnerability CPU Ap...

MiracleLinux 4 : firefox-45.2.0-1.0.1.AXS4 (AXSA:2016-495:06)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2016-495:06 advisory. Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. Security issues fixed with this releas...

MiracleLinux 7 : rh-mysql56-mysql-5.6.40-1.el7 (AXSA:2018-3000:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2018-3000:02 advisory. mysql: Server: Replication unspecified vulnerability CPU Apr 2018 CVE-2018-2755 mysql: Server: Security: Privileges unspecified vulnerability CPU Ap...

EUVD-2017-2818

Malware in sbrugna...

CVE-2025-2818

creationtimestamp| type| source ---|---|--- 2025-07-17 20:27:07+00:00| seen| Telegram/1zXNWxyC7XVgH-4uEdXUL8gDAeNjowpTsKi0fh6OIydXAtE...

Linux Distros Unpatched Vulnerability : CVE-2018-2818

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server : Security : Privileges. Supported versions that are affected are 5.5.59 and...

CVE-2022-2818

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository cockpit-hq/cockpit prior to 2.2.2...

CVE-2020-2818

Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Administration. Supported versions that are affected are 12.1.1-12.1.3. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle...

SUSE SLES12 Security Update : kernel (Live Patch 45 for SLE 12 SP5) (SUSE-SU-2024:2818-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2818-1 advisory. This update for the Linux Kernel 4.12.14-122165 fixes several issues. The following security issues were fixed: - CVE-2024-27398: Fixed...

CVE-2024-2818 Allocation of Resources Without Limits or Throttling in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions before 16.8.5, all versions starting from 16.9 before 16.9.3, all versions starting from 16.10 before 16.10.1. It was possible for an attacker to cause a denial of service using malicious crafted description parameter for labels...

CVE-2024-2818

Removed by vendor...

RHSA-2019:2818

creationtimestamp| type| source ---|---|--- 2024-03-19 20:11:51+00:00| seen| https://t.me/ctinow/211900...

CVE-2023-2818

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...

CVE-2023-2818 ITM Windows Agent Insecure Filesystem Permissions

An insecure filesystem permission in the Insider Threat Management Agent for Windows enables local unprivileged users to disrupt agent monitoring. All versions prior to 7.14.3 are affected. Agents for MacOS and Linux and Cloud are unaffected...