Joomla! Component Music Manager - Local File Inclusion

A directory traversal vulnerability in the Music Manager component for Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impacts via a .. dot dot in the cid parameter to album.html. id: CVE-2010-2857 info: name: Joomla! Component Music Manager - Local Fil...

MINI-2857-VGWM-VMXH

Bulletin has no description...

MINI-2857-9V69-569G

Bulletin has no description...

CVE-2026-2857

A vulnerability was determined in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub423E00 of the file /boafrm/formPortFw of the component Port Forwarding Configuration Endpoint. This manipulation of the argument submit-url causes stack-based buffer overflow. Remote exploitation ...

CVE-2026-2857

creationtimestamp| type| source ---|---|--- 2026-02-20 11:04:07+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116102623829788393 2026-02-21 00:25:44+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mfdee2ewla2h 2026-02-21 12:27:52+00:00| published-proof-of-concep...

MiracleLinux 4 : qemu-kvm-0.12.1.2-2.491.AXS4.6 (AXSA:2017-1305:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1305:01 advisory. KVM for Kernel-based Virtual Machine is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines...

MiracleLinux 7 : qemu-kvm-1.5.3-126.el7.3 (AXSA:2017-1267:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1267:01 advisory. qemu-kvm is an open source virtualizer that provides hardware emulation for the KVM hypervisor. qemu-kvm acts as a virtual machine monitor together with the...

CVE-2019-2857

Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM subcomponent: UIF Open UI. Supported versions that are affected are 19.0 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Siebel UI Framework. Successful...

Security update for the Linux Kernel (Live Patch 57 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059204 fixes several issues. The following security issues were fixed: CVE-2025-38494: HID: core: do not bypass hidhwrawrequest bsc1247350. CVE-2025-38495: HID: core: ensure the allocated report buffer can contain the reserved report ID bsc1247351...

TencentOS Server 4: wireshark (TSSA-2024:0345)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0345 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Amazon Linux 2 : ImageMagick (ALAS-2025-2857)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2857 advisory. In MIFF image processing in ImageMagick before 7.1.1-44, image depth is mishandled after SetQuantumFormat is used...

MozillaFirefox-136.0.4-1.1 on GA media (moderate)

MozillaFirefox-136.0.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:14948-1 Rating: moderate Cross-References: CVE-2025-2857 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...

Mozilla Patches Critical Firefox Bug Similar to Chrome's Recent Zero-Day Vulnerability

Mozilla has released updates to address a critical security flaw impacting its Firefox browser for Windows, merely days after Google patched a similar flaw in Chrome that came under active exploitation as a zero-day. The security vulnerability, CVE-2025-2857, has been described as a case of an...

CVE-2025-2857

creationtimestamp| type| source ---|---|--- 2025-03-28 04:44:00+00:00| seen| https://thehackernews.com/2025/03/mozilla-patches-critical-firefox-bug.html 2025-03-28 05:48:21+00:00| seen| https://bsky.app/profile/Firefox.activitypub.awakari.com.ap.brid.gy/post/3llg4i66r4h52 2025-03-28 06:42:39+00:0...

Mozilla Firefox ESR < 115.21.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.21.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar...

Mozilla Firefox < 136.0.4

The version of Firefox installed on the remote Windows host is prior to 136.0.4. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC...

Mozilla Firefox ESR < 115.21.1

The version of Firefox ESR installed on the remote Windows host is prior to 115.21.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-19 advisory. - Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our...

CVE-2025-2857

Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was...

CVE-2025-2857 Incorrect handle could lead to sandbox escapes

Following the recent Chrome sandbox escape CVE-2025-2783, various Firefox developers identified a similar pattern in our IPC code. A compromised child process could cause the parent process to return an unintentionally powerful handle, leading to a sandbox escape. The original vulnerability was...

Linux Distros Unpatched Vulnerability : CVE-2016-2857

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The netchecksumcalculate function in net/checksum.c in QEMU allows local guest OS users to cause a denial of service out-of-bounds heap read and crash via the...