Amazon Linux 2 : amazon-cloudwatch-agent, --advisory ALAS2-2026-3191 (ALAS-2026-3191)

The version of amazon-cloudwatch-agent installed on the remote host is prior to 1.300064.1-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3191 advisory. net/http: memory exhaustion in Request.ParseForm CVE-2025-61726 archive/zip: denial of service when...

EUVD-2026-3191

A security flaw has been discovered in Chamilo LMS up to 2.0.0 Beta 1. This issue affects the function deleteLegal of the file src/CoreBundle/Controller/SocialController.php of the component Legal Consent Handler. Performing a manipulation of the argument userId results in improper authorization...

CVE-2022-3191

Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center Analyzer on Linux Virtual Strage Software Agent component allows local users to gain sensitive information. This issue affects Hitachi Ops Center Analyzer: from 10.8.1-00 before 10.9.0-00...

CVE-2025-3191

creationtimestamp| type| source ---|---|--- 2025-04-04 07:58:45+00:00| seen| https://t.me/cvedetector/22077 2025-07-16 21:34:29+00:00| published-proof-of-concept| https://t.me/AGLegends/1985 2025-07-16 23:31:02+00:00| published-proof-of-concept| https://t.me/cybersecunity/284...

@1kit/react (>=0.0.74 <=0.0.149), @1kit/ui (>=0.0.14 <=0.0.90) +762 more potentially affected by CVE-2025-3191 via react-draft-wysiwyg (>=1.10.0 <=1.15.0)

react-draft-wysiwyg NPM version =1.10.0, =0.0.74, =0.0.14, =1.0.7, =0.2.2, =1.0.0, =0.0.5, =0.1.2, =1.0.2, =1.0.0, =0.0.1, =1.0.2, =2.0.54, =2.3.26 and more Source cves: CVE-2025-3191 Source advisory: OSV:GHSA-FQ5X-7292-2P5R...

CVE-2025-3191

All versions of the package react-draft-wysiwyg are vulnerable to Cross-site Scripting XSS via the Embedded button which will then result in saving the payload in the tag...

CVE-2025-3191

All versions of the package react-draft-wysiwyg are vulnerable to Cross-site Scripting XSS via the Embedded button which will then result in saving the payload in the tag...

Linux Distros Unpatched Vulnerability : CVE-2011-3191

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer signedness error in the CIFSFindNext function in fs/cifs/cifssmb.c in the Linux kernel before 3.1 allows remote CIFS servers to cause a denial of servic...

RHEL 4 : kernel (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - kernel: net: improve sequence number generation CVE-2011-3188 - kernel: cifs: signedness issue in...

CVE-2024-3191 MailCleaner Email os command injection

A vulnerability, which was classified as critical, has been found in MailCleaner up to 2023.03.14. This issue affects some unknown processing of the component Email Handler. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2023-3191

creationtimestamp| type| source ---|---|--- 2023-06-10 12:27:24+00:00| seen| https://t.me/cibsecurity/65121...

CVE-2023-3191 Cross-site Scripting (XSS) - Stored in nilsteampassnet/teampass

Cross-site Scripting XSS - Stored in GitHub repository nilsteampassnet/teampass prior to 3.0.9...

CVE-2023-3191

CVE-2023-3191 affects nilsteampassnet/teampass prior to 3.0.9. The issue is a stored XSS caused by user input not being properly sanitized in the application, enabling stored XSS vectors. Remediation: upgrade to 3.0.9 or later (as documented in PT-2023-23513 and related advisories). No exploitati...

RHEL 8 : kpatch-patch (RHSA-2023:3191)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:3191 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

SUSE CVE-2016-3191

The compilebranch function in pcrecompile.c in PCRE 8.x before 8.39 and pcre2compile.c in PCRE2 before 10.22 mishandles patterns containing an ACCEPT substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a denial of service stack-based...

Debian dla-3191 : python-django - security update

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3191 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3191-1 [email protected]...

CVE-2022-3191

creationtimestamp| type| source ---|---|--- 2022-11-01 06:13:36+00:00| seen| https://t.me/cibsecurity/52343...

CVE-2022-3191

Hitachi Ops Center Analyzer (Linux) is affected in the Virtual Storage Software Agent component. CVE-2022-3191 describes a vulnerability where sensitive information can be inserted into log files, enabling local users to access sensitive data. Affected versions are 10.8.1-00 through 10.9.0-00. Ro...

CVE-2022-3191 Information Exposure Vulnerability in Hitachi Ops Center Analyzer

Insertion of Sensitive Information into Log File vulnerability in Hitachi Ops Center Analyzer on Linux Virtual Strage Software Agent component allows local users to gain sensitive information. This issue affects Hitachi Ops Center Analyzer: from 10.8.1-00 before 10.9.0-00...

openSUSE: Security Advisory for libEMF (SUSE-SU-2022:3191-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...