Linux Distros Unpatched Vulnerability : CVE-2016-3162

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The File module in Drupal 7.x before 7.43 and 8.x before 8.0.4 allows remote authenticated users to bypass access restrictions and read, delete, or substitute a...

TencentOS Server 4: kubernetes (TSSA-2024:0867)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0867 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2009-3162

Cross-site scripting XSS vulnerability in Multi Website 1.5 allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to the default URI...

CVE-2022-3162 affecting package kubernetes for versions less than 1.25.4-0

CVE-2022-3162 affecting package kubernetes for versions less than 1.25.4-0. A patched version of the package is available...

CVE-2025-3162

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162

creationtimestamp| type| source ---|---|--- 2025-04-03 19:25:07+00:00| seen| https://t.me/cvedetector/21998 2025-04-04 20:36:26+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10552...

soprano-tts (=0.0.2) potentially affected by CVE-2025-3162 via lmdeploy (=0.12.3)

lmdeploy PYPI version =0.12.3 is affected by a known vulnerability. The following packages have a transitive dependency on lmdeploy and may be impacted: - soprano-tts =0.0.2 Source cves: CVE-2025-3162 Source advisory: SNYK:PYTHON-LMDEPLOY-9723887...

CVE-2025-3162

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2025-3162 InternLM LMDeploy PT File utils.py load_weight_ckpt deserialization

A vulnerability was found in InternLM LMDeploy up to 0.7.1. It has been classified as critical. Affected is the function loadweightckpt of the file lmdeploy/lmdeploy/vl/model/utils.py of the component PT File Handler. The manipulation leads to deserialization. Attacking locally is a requirement...

CVE-2022-3162 affecting package keda for versions less than 2.4.0-28

CVE-2022-3162 affecting package keda for versions less than 2.4.0-28. A patched version of the package is available...

CVE-2022-3162 affecting package kube-vip-cloud-provider for versions less than 0.0.2-21

CVE-2022-3162 affecting package kube-vip-cloud-provider for versions less than 0.0.2-21. A patched version of the package is available...

CVE-2022-3162 affecting package rook for versions less than 1.6.2-24

CVE-2022-3162 affecting package rook for versions less than 1.6.2-24. A patched version of the package is available...

CVE-2022-3162 affecting package prometheus-adapter for versions less than 0.10.0-17

CVE-2022-3162 affecting package prometheus-adapter for versions less than 0.10.0-17. A patched version of the package is available...

Azure Linux 3.0 Security Update: cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter (CVE-2022-3162)

The version of cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3162 advisory. - Users authorized to list or watch one type of...

Fedora 37 : kubernetes (2022-8647729ff8)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-8647729ff8 advisory. Resolves, in part, 2142161. Security patches that resolve CVE-2022-3162 and CVE-2022-3294. Tenable has extracted the preceding description block...

openSUSE Security Advisory (SUSE-SU-2024:3162-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CBL Mariner 2.0 Security Update: cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter (CVE-2022-3162)

The version of cert-manager / keda / kube-vip-cloud-provider / prometheus-adapter installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3162 advisory. - Users authorized to list or watch one type of...

CVE-2022-3162 affecting package keda for versions less than 2.14.0-1

CVE-2022-3162 affecting package keda for versions less than 2.14.0-1. An upgraded version of the package is available that resolves this issue...

RHEL 8 : OpenShift Container Platform 4.12.4 (RHSA-2023:0772)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:0772 advisory. Red Hat build of MicroShift is Red Hat's light-weight Kubernetes orchestration solution designed for edge device deployments and is built from the ed...

CVE-2024-3162 Jeg Elementor Kit <= 2.6.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Testimonial

The Jeg Elementor Kit plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Testimonial Widget Attributes in all versions up to, and including, 2.6.3 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributo...