88 matches found
MINI-8HHM-449V-2824
Bulletin has no description...
MINI-2824-CG4V-FX8J
Bulletin has no description...
CVE-2026-2824
Comfast CF-E7 firmware 2.6.0.9 contains a vulnerability in webmggnt’s /cgi-bin/mbox-config?method=SET§ion=ping_config: the function sub_441CF4 can be tricked by altering the destination argument to achieve command injection. The flaw allows remote exploitation; multiple sources note the explo...
CVE-2019-2824
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware subcomponent: WLS Core Components. Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0 and 12.2.1.3.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to...
Linux Distros Unpatched Vulnerability : CVE-2011-2824
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in Google Chrome before 13.0.782.215 allows remote attackers to cause a denial of service or possibly have unspecified other impact...
CVE-2025-2824
IBM Operational Decision Manager 8.11.0.1, 8.11.1.0, 8.12.0.1, 9.0.0.1, and 9.5.0 could allow a remote attacker to conduct phishing attacks, using an open redirect attack. By persuading a victim to visit a specially crafted Web site, a remote attacker could exploit this vulnerability to spoof the...
CVE-2010-2824
Unspecified vulnerability on the Cisco Application Control Engine ACE Module with software A21.x before A21.6, A22.x before A22.3, and A23.x before A23.1 for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service device reload via a sequence of...
Amazon Linux 2 : edk2 (ALAS-2025-2824)
It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2824 advisory. EDK2 contains a vulnerability in BIOS where a user may cause an Integer Overflow or Wraparound by network means. A successful exploitation of this vulnerability may lead to denial of service. CVE-2025-229...
CGA-GHQX-QFRX-2824
Bulletin has no description...
GHSA-V63G-V339-2673 Jenkins Script Security Plugin has sandbox bypass vulnerability involving crafted constructor bodies
Jenkins Script Security Plugin provides a sandbox feature that allows low privileged users to define scripts, including Pipelines, that are generally safe to execute. Calls to code defined inside a sandboxed script are intercepted, and various allowlists are checked to determine whether the call ...
CVE-2024-2824
A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...
CVE-2024-2824
A vulnerability was found in Matthias-Wandel jhead 3.08 and classified as critical. This issue affects the function PrintFormatNumber of the file exif.c. The manipulation leads to heap-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and ma...
CVE-2024-2824
CVE-2024-2824 affects Matthias-Wandel jhead 3.08. The vulnerability is in the function PrintFormatNumber of exif.c and results in a heap-based buffer overflow. The manipulation can be exploited remotely; a public exploit/POC has been disclosed. No remediation details are provided in the connected...
Ubuntu: Security Advisory (USN-4767-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-2824
Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1...
CVE-2022-2824 Authorization Bypass Through User-Controlled Key in openemr/openemr
Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1...
CVE-2022-2824
The CVE-2022-2824 entry concerns OpenEMR before version 7.0.0.1, with an Authorization Bypass Through a User-Controlled Key due to improper access control. Affected component/target is OpenEMR’s web resources where a user-controlled key can bypass authorization, enabling unauthorized access to ce...
CVE-2022-2824 Authorization Bypass Through User-Controlled Key in openemr/openemr
Authorization Bypass Through User-Controlled Key in GitHub repository openemr/openemr prior to 7.0.0.1...
USN-4767-1: Zabbix vulnerabilities
Fu Chuang discovered that Zabbix did not properly parse IPs. A remote attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 14.04 ESM, Ubuntu 16.04 ESM and Ubuntu 18.04 ESM. CVE-2020-11800 It was discovered that Zabbix incorrectly handled certain...
SUSE: Security Advisory (SUSE-SU-2021:2824-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...