Zyxel NBG2105 V1.00(AAGU.2)C0 - Authentication Bypass

Zyxel NBG2105 V1.00AAGU.2C0 devices are susceptible to authentication bypass vulnerabilities because setting the login cookie to 1 provides administrator access. id: CVE-2021-3297 info: name: Zyxel NBG2105 V1.00AAGU.2C0 - Authentication Bypass author: gy741 severity: high description: Zyxel NBG21...

Amazon Linux 2 : python-lxml, --advisory ALAS2-2026-3297 (ALAS-2026-3297)

The version of python-lxml installed on the remote host is prior to 3.2.1-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3297 advisory. lxml is a library for processing XML and HTML in the Python language. Prior to 6.1.0, using either of the two parsers in the...

Azure Linux 3.0 Security Update: accountsservice (CVE-2023-3297)

The version of accountsservice installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3297 advisory. - In Ubuntu's accountsservice an unprivileged local attacker can trigger a use-after-free vulnerabilit...

VulnCheck KEV: CVE-2021-3297

On Zyxel NBG2105 V1.00AAGU.2C0 devices, setting the login cookie to 1 provides administrator access...

CVE-2025-3297

creationtimestamp| type| source ---|---|--- 2025-04-05 08:37:13+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/10600 2025-04-05 13:12:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lm2z2q4wr62c 2025-04-05 13:14:52+00:00| seen|...

CVE-2025-3297 SourceCodester Online Eyewear Shop Master.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /classes/Master.php?f=saveproduct. The manipulation of the argument brand leads to cross site scripting. It is possible to launch the attack...

CVE-2025-3297 SourceCodester Online Eyewear Shop Master.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of the file /classes/Master.php?f=saveproduct. The manipulation of the argument brand leads to cross site scripting. It is possible to launch the attack...

CVE-2025-3297

The CVE tracks a cross-site scripting (XSS) vulnerability in SourceCodester Online Eyewear Shop 1.0. Affected is an unknown function of /classes/Master.php?f=save_product, where manipulating the brand parameter can trigger XSS. The issue can be exploited remotely and the public exploit is noted i...

RHSA-2025:3297

creationtimestamp| type| source ---|---|--- 2025-04-03 10:35:13+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10194...

Linux Distros Unpatched Vulnerability : CVE-2022-3297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use After Free in GitHub repository vim/vim prior to 9.0.0579. CVE-2022-3297 Note that Nessus relies on the presence of the package as reported by the vendor...

CVE-2023-3297 affecting package accountsservice for versions less than 23.13.9-1

CVE-2023-3297 affecting package accountsservice for versions less than 23.13.9-1. An upgraded version of the package is available that resolves this issue...

Fedora 37 : vim (2022-4bc60c32a2)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-4bc60c32a2 advisory. Security fix for CVE-2022-3705 2139842 - vim upgrade broke :! for displaying terminal output ---- patchlevel 803 ---- The newest upstream commit...

CGA-3297-JQ9C-224F

Bulletin has no description...

CVE-2024-3297

creationtimestamp| type| source ---|---|--- 2024-07-24 10:47:51+00:00| seen| https://t.me/cvedetector/1552...

CVE-2024-3297 Session establishment lock-up during replay of CASE Sigma1 messages

An issue in the Certificate Authenticated Session Establishment CASE protocol for establishing secure sessions between two devices, as implemented in the Matter protocol versions before Matter 1.1 allows an attacker to replay manipulated CASE Sigma1 messages to make the device unresponsive...

CVE-2024-3297

Matter protocol versions prior to 1.1 are affected by a vulnerability in the Certificate Authenticated Session Establishment (CASE) protocol that allows replay of CASE Sigma1 messages, causing devices to become unresponsive until power-cycled. Root cause: CASE session establishment handling enabl...

CVE-2024-3297 Session establishment lock-up during replay of CASE Sigma1 messages

An issue in the Certificate Authenticated Session Establishment CASE protocol for establishing secure sessions between two devices, as implemented in the Matter protocol versions before Matter 1.1 allows an attacker to replay manipulated CASE Sigma1 messages to make the device unresponsive...

Ubuntu: Security Advisory (USN-6420-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS : Vim vulnerabilities (USN-6420-1)

The remote Ubuntu 18.04 ESM / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6420-1 advisory. It was discovered that Vim incorrectly handled memory when opening certain files. If an attacker could trick a user into opening ...

CVE-2023-3297

creationtimestamp| type| source ---|---|--- 2023-09-02 00:14:12+00:00| seen| https://t.me/cibsecurity/69696...