Fedora 42 : webkitgtk (2025-40aeebe6d2)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-40aeebe6d2 advisory. Enable CSS Overscroll Behavior by default. Change threaded rendering implementation to use Skia API instead of WebCore display list that is not thre...

SUSE: Security Advisory (SUSE-SU-2025:01724-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2025:01720-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-31215

creationtimestamp| type| source ---|---|--- 2025-05-15 13:33:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16484...

CVE-2025-31215

A flaw was found in WebKitGTK. Processing malicious web content can cause a NULL pointer dereference due to improper checks, resulting in an unexpected process crash. Mitigation Do not process or load untrusted web content with WebKitGTK. In Red Hat Enterprise Linux 7, the following packages...

UBUNTU-CVE-2025-31215

The issue was addressed with improved checks. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2025-31215

The issue was addressed with improved checks. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2025-31215

The issue was addressed with improved checks. This issue is fixed in Safari 18.5, iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, tvOS 18.5, visionOS 2.5, watchOS 11.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2025-31215

The issue was addressed with improved checks. This issue is fixed in watchOS 11.5, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, Safari 18.5. Processing maliciously crafted web content may lead to an unexpected process crash...

CVE-2025-31215

CVE-2025-31215 is a WebKitGTK/WebKit-related issue where processing malicious web content may cause an unexpected process crash. The connected advisories show concrete details across multiple distributions: Affected software: webkit2gtk/WebKitGTK (and its WebKit components) used in Linux distros ...

CVE-2024-31215

creationtimestamp| type| source ---|---|--- 2024-12-26 15:27:01+00:00| seen| https://t.me/itsecnews/5061...

CVE-2024-31215 Mobile Security Framework (MobSF) vulnerable to Server-Side Request Forgery (SSRF) in firebase database check

Mobile Security Framework MobSF is a security research platform for mobile applications in Android, iOS and Windows Mobile. A SSRF vulnerability in firebase database check logic. The attacker can cause the server to make a connection to internal-only services within the organization’s...

CVE-2023-31215

CVE-2023-31215 arises from an Unrestricted Upload of File with Dangerous Type in the WordPress plugin Dropshipping & Affiliation with Amazon (WP Amazon Shop) for versions

WordPress Dropshipping & Affiliation with Amazon Plugin <= 2.1.2 is vulnerable to Arbitrary File Upload

Software Dropshipping & Affiliation with Amazon Type Plugin Vulnerable versions = 2.1.2 Fixed in N/A OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2023-31215 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID fe2de1908435 Credits spacecroupier...

Ubuntu: Security Advisory (USN-4781-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-31215

creationtimestamp| type| source ---|---|--- 2022-05-20 16:36:42+00:00| seen| https://t.me/cibsecurity/43050...

CVE-2022-31215

In Goverlan products, during a Goverlan agent update the Windows Firewall is temporarily disabled, allowing a remote attacker to bypass firewall blocking rules for up to 30 seconds. Affected are Goverlan Reach Console &lt; 10.5.1, Reach Server &lt; 3.70.1, and Reach Client Agents

Debian DLA-2886-1 : slurm-llnl - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2886 advisory. Multiple security issues were discovered in the Simple Linux Utility for Resource Management SLURM, a cluster resource management and job scheduling system, which...

SUSE SLES15 Security Update : slurm (SUSE-SU-2021:2473-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2021:2473-1 advisory. - SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or...

Updated slurm packages fix a security vulnerability

SchedMD Slurm before 20.02.7 and 20.03.x through 20.11.x before 20.11.7 allows remote code execution as SlurmUser because use of a PrologSlurmctld or EpilogSlurmctld script leads to environment mishandling CVE-2021-31215...