16 matches found
CVE-2026-32754
creationtimestamp| type| source ---|---|--- 2026-03-19 22:18:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhgztbq7hc2k 2026-03-23 20:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhqtxuiaaz24...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
CVE-2025-32754
CVE-2025-32754 affects the jenkins/ssh-agent Docker images (6.11.1 and earlier). The root cause is that SSH host keys are generated on image creation, causing all containers built from the same image version to share the same host keys. This enables an attacker who can position themselves in the ...
CVE-2025-32754
In jenkins/ssh-agent Docker images 6.11.1 and earlier, SSH host keys are generated on image creation for images based on Debian, causing all containers based on images of the same version use the same SSH host keys, allowing attackers able to insert themselves into the network path between the SS...
Security Bulletin: Security Vulnerability fixed in IBM Security Directory Integrator (CVE-2022-32754, CVE-2024-28722)
Summary The IBM Security Directory Integrator product is vulnerable to cross-site scripting which affects the IBM Security Directory Server Vulnerability Details CVEID:CVE-2022-32754 DESCRIPTION: IBM Security Verify Directory 10.0.0 is vulnerable to cross-site scripting. This vulnerability allows...
CVE-2024-32754
creationtimestamp| type| source ---|---|--- 2024-07-04 13:55:10+00:00| seen| https://t.me/cvedetector/50 2025-05-01 04:14:38+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/14224...
Johnson Controls Kantech Door Controllers
View CSAF 1. EXECUTIVE SUMMARY CVSS v3 3.1 ATTENTION : Exploitable via adjacent network Vendor : Johnson Controls, Inc. Equipment : Kantech KT1, KT2, KT400 Door Controllers Vulnerability : Exposure of Sensitive Information to an Unauthorized Actor 2. RISK EVALUATION Successful exploitation of...
CVE-2022-32754
IBM Security Verify Directory 10.0.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 228445...
Security Bulletin: Multiple Security Vulnerabilites have been fixed in IBM Security Verify Directory Container (CVE-2022-32753, CVE-2022-32756, CVE-2022-32751, CVE-2022-32754)
Summary Multiple Vulnerabilities found by the IBM Ethical Hacking team have been fixed in IBM Verify Directory Container. Vulnerability Details CVEID:CVE-2022-32753 DESCRIPTION: IBM Security Directory Server uses weaker than expected cryptographic algorithms that could allow an attacker to decryp...
CVE-2023-32754
Thinking Software Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-32754
Thinking Software Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-32754
Thinking Software Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-32754 Thinking Software Efence - SQL injection
Thinking Software Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-32754 Thinking Software Efence - SQL injection
Thinking Software Efence login function has insufficient validation for user input. An unauthenticated remote attacker can exploit this vulnerability to inject arbitrary SQL commands to access, modify or delete database...
CVE-2023-32754
CVE-2023-32754 affects Thinking Software Efence, where the login function has insufficient input validation, enabling an unauthenticated remote attacker to inject arbitrary SQL commands. The intended impact reported is access, modification, or deletion of database content. Connected sources consi...
CVE-2021-32754
FlowDroid is a data flow analysis tool. CVE-2021-32754 describes an XML External Entity (XXE) vulnerability in FlowDroid versions prior to 2.9.0, where an attacker who can control the XML-based source/sink definition file could read files from external locations. The vulnerability requires use of...