CVE-2026-32287

creationtimestamp| type| source ---|---|--- 2026-03-30 17:00:06+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mic563sy6k2h 2026-03-30 17:22:57+00:00| seen| Telegram/hICGoMiiTAfNGiGPS6kLuEIjx0Cnqs2qprpkS-tW4S4edfo...

CVE-2026-32287 affecting package telegraf for versions less than 1.29.4-22

CVE-2026-32287 affecting package telegraf for versions less than 1.29.4-22. A patched version of the package is available...

SUSE CVE-2026-32287

Boolean XPath expressions that evaluate to true can cause an infinite loop in logicalQuery.Select, leading to 100% CPU usage. This can be triggered by top-level selectors such as "1=1" or "true"...

Linux Distros Unpatched Vulnerability : CVE-2026-32287

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Boolean XPath expressions that evaluate to true can cause an infinite loop in logicalQuery.Select, leading to 100% CPU usage. This can be triggered by top-level...

CVE-2026-32287

Boolean XPath expressions that evaluate to true can cause an infinite loop in logicalQuery.Select, leading to 100% CPU usage. This can be triggered by top-level selectors such as "1=1" or "true"...

CVE-2025-32287

creationtimestamp| type| source ---|---|--- 2025-05-16 18:37:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpcodobdes2p...

CVE-2025-32287

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in LambertGroup Responsive HTML5 Audio Player PRO With Playlist lbg-audio2-html5 allows SQL Injection.This issue affects Responsive HTML5 Audio Player PRO With Playlist: from n/a through = 3.5.7...

WordPress Responsive HTML5 Audio Player PRO With Playlist plugin <= 3.5.7 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Plugin Responsive HTML5 Audio Player PRO With Playlist versions = 3.5.7...

Security Bulletin: Vulnerability in Apache UIMA ( CVE-2022-32287) may affect IBM watsonx Assistant for IBM Cloud Pak for Data

Summary A potential vulnerability CVE-2022-32287 has been identified related to Apache UIMA that may affect IBM watsonx Assistant for IBM Cloud Pak for Data. vulnerability have been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION:...

CVE-2024-32287

CVE-2024-32287 affects Tenda W30E firmware v1.0.1.25(633). Multiple sources describe a stack overflow vulnerability in the fromqossetting function triggered via the qos parameter. Red Hat and CNVD entries characterize it as a buffer/stack overflow with potential impact to availability (per CNVD) ...

Security Bulletin: IBM Watson Assistant for IBM Cloud Pak for Data is vulnerable to Apache UIMA directory transversal vulnerability( CVE-2022-32287)

Summary Potential Apache UIMA directory transversal vulnerability CVE-2022-32287 has been identified that may affect IBM Watson Assistant for IBM Cloud Pak for Data. Refer to details for additional information. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION: Apache UIMA could allow a remo...

Security Bulletin: IBM Watson Explorer is affected by a vulnerability in Apache UIMA

Summary IBM Watson Explorer OneWEX and Foundational Components contains a vulnerable version of Apache UIMA. Vulnerability Details CVEID:CVE-2022-32287 DESCRIPTION: Apache UIMA could allow a remote attacker to traverse directories on the system, caused by improper validation of user supplied inpu...

Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

Summary Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak. Angular is part of the .NET RHEL infrastructure CVE-2021-4231. Apache UIMA is used by IBM Robotic Process Automation as part of Watson NLP CVE-2022-32287. SnakeYaml is used by IBM Robotic Process...

ch.epfl.bbp.nlp:bluima_abbreviations (>=1.0.0 <=1.0.1), ch.epfl.bbp.nlp:bluima_corpora (>=1.0.0 <=1.0.1) +949 more potentially affected by CVE-2022-32287 via org.apache.uima:uimaj-core (>=2.10.0 <=3.3.0)

org.apache.uima:uimaj-core MAVEN version =2.10.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1 - ch.epfl.bbp.nlp:bluimatypesystem =1.0.1 and more Source cves: CVE-2022-32287 Source advisory: OSV:GHSA-XGQR-5WQW-9FPV...

CVE-2022-32287

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

CVE-2022-32287

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

CVE-2022-32287

CVE-2022-32287 : A relative path traversal in the FileUtil class used by the PEAR management component of Apache UIMA can let an attacker craft ZIP entry names to create files outside the designated target directory. Affected product: Apache UIMA up to version 3.3.0 (and earlier). The issue arise...

CVE-2022-32287 Apache UIMA prior to 3.3.1 has a path traversal vulnerability when extracting (PEAR) archives

A relative path traversal vulnerability in a FileUtil class used by the PEAR management component of Apache UIMA allows an attacker to create files outside the designated target directory using carefully crafted ZIP entry names. This issue affects Apache UIMA Apache UIMA version 3.3.0 and prior...

CVE-2021-32287

An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution...

CVE-2021-32287

An issue was discovered in heif through v3.6.2. A global-buffer-overflow exists in the function HevcDecoderConfigurationRecord::getPicWidth located in hevcdecoderconfigrecord.cpp. It allows an attacker to cause code Execution...