Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses PyTorch 2.6.0 which is vulnerable to CVE-2025-2998, CVE-2025-2999, CVE-2025-55552,CVE-2025-63396,CVE-2025-55551

Summary IBM Maximo Application Suite - Visual Inspection component uses PyTorch 2.6.0 which is vulnerable to CVE-2025-2998, CVE-2025-2999, CVE-2025-55552,CVE-2025-63396,CVE-2025-55551. This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details...

CVE-2026-2999

CVE-2026-2999 affects IDExpert Windows Logon Agent by Changing. Described vulnerability: unauthenticated remote RCE that enables forcing the system to download and execute arbitrary executables from a remote source. The provided documents do not specify affected versions, root cause details beyon...

CVE-2026-2999

creationtimestamp| type| source ---|---|--- 2026-03-02 05:49:00+00:00| seen| https://www.twcert.org.tw/en/cp-139-10741-daed4-2.html 2026-03-02 07:22:44+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mg2ptxicnr2x 2026-03-02 07:23:14+00:00| seen|...

Security Bulletin: IBM SDK, Java Technology Edition Quarterly CPU - Oct 2019 - Includes Oracle Oct 2019 CPU minus CVE-2019-2949

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 7 SR10-FP55 and Version 8 SR6-FP0 used by IBM Tivoli Application Dependency Discovery Manager TADDM. These issues were disclosed as part of the IBM Java SDK updates in Oct2019. Vulnerability Details...

EUVD-2026-2999

EUVD-2026-2999...

CVE-2024-2999

A vulnerability classified as critical has been found in Campcodes Online Art Gallery Management System 1.0. This affects an unknown part of the file /admin/adminHome.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

CVE-2019-2999 vulnerabilities

Vulnerabilities for packages: openjdk-21-openj9, openjdk-26-openj9, openjdk-25-openj9, openjdk-11-openj9, openjdk, openjdk-8-openj9, openjdk-17-openj9...

ac-solver (=0.1.0), adversarial-insight-ml (=0.1.0) +537 more potentially affected by CVE-2025-2999 via torch (>=2.0.0 <=2.0.1)

torch PYPI version =2.0.0, =0.0.2, =1.2.3, =0.2.2, =0.0.2, =0.0.0, =1.9.0, =0.0.3, =0.8.0, =0.1.0, =0.0.1, =1.9.0, =1.17.1 - aisee =0.1.0 and more Source cves: CVE-2025-2999 Source advisory: SNYK:PYTHON-TORCH-10332645...

CVE-2025-2999

creationtimestamp| type| source ---|---|--- 2025-03-31 15:31:12+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/9677 2025-03-31 19:12:38+00:00| seen| https://t.me/cvedetector/21627...

3d-rcnet (>=0.1.0 <=0.2.3), 4996 (>=0.1.0 <=0.1.1) +1368 more potentially affected by CVE-2025-2999 via torch (>=1.0.0 <=1.13.1)

torch PYPI version =1.0.0, =0.1.0, =0.1.0, =0.2.4, =0.0.1b1, =1.0.32, =0.0.3, =2.1.17, =0.0.0.dev1, =0.2.3, =0.4.0, =0.6.3 and more Source cves: CVE-2025-2999 Source advisory: OSV:PYSEC-2025-193...

CVE-2025-2999

A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpacksequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

21cmpsdenoiser (>=1.0.0 <=1.0.2), 2404-segmentation-pipeline (>=0.1.0 <=1.0.0) +22343 more potentially affected by CVE-2025-2999 via torch (>=2.0.0 <=2.11.0)

torch PYPI version =2.0.0, =1.0.0, =0.1.0, =2.13.0, =0.1.0, =0.1.3, =0.1.0, =0.1.0, =0.0.1, =0.0.1, =0.10.5, =0.1.0.dev1, =0.1.5 and more Source cves: CVE-2025-2999 Source advisory: OSV:PYSEC-2025-193...

CVE-2025-2999

A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpacksequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

CVE-2025-2999 PyTorch torch.nn.utils.rnn.unpack_sequence memory corruption

A vulnerability was found in PyTorch 2.6.0. It has been rated as critical. Affected by this issue is the function torch.nn.utils.rnn.unpacksequence. The manipulation leads to memory corruption. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...

CVE-2024-2999

creationtimestamp| type| source ---|---|--- 2025-03-06 02:16:33+00:00| seen| Telegram/OQRDI73WezfPo3XCBycOvhnyN8HhFkAyPdYY5jEMSM0Kjp03...

Linux Distros Unpatched Vulnerability : CVE-2017-2999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Adobe Flash Player versions 24.0.0.221 and earlier have an exploitable memory corruption vulnerability in the Primetime TVSDK functionality related to hosting...

Linux Distros Unpatched Vulnerability : CVE-2011-2999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla Firefox before 3.6.23 and 4.x through 5, Thunderbird before 6.0, and SeaMonkey before 2.3 do not properly handle location as the name of a frame, which...

CVE-2024-2999 Campcodes Online Art Gallery Management System adminHome.php sql injection

A vulnerability classified as critical has been found in Campcodes Online Art Gallery Management System 1.0. This affects an unknown part of the file /admin/adminHome.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

CVE-2024-2999 Campcodes Online Art Gallery Management System adminHome.php sql injection

A vulnerability classified as critical has been found in Campcodes Online Art Gallery Management System 1.0. This affects an unknown part of the file /admin/adminHome.php. The manipulation of the argument uname leads to sql injection. It is possible to initiate the attack remotely. The exploit ha...

CVE-2024-2999

CVE-2024-2999 affects Campcodes Online Art Gallery Management System 1.0. The vulnerability lies in the uname parameter of /admin/adminHome.php, where lack of input validation enables remote SQL injection. The issue is described as critical with public exploits disclosed and a known CVE entry (VD...