Security Bulletin: Multiple vulnerabiities in the IBM 4769 Developer's Toolkit. CVE-2019-20811, CVE-2020-0466, CVE-2021-0920, CVE-2021-3347, CVE-2018-19985, CVE-2018-20169, CVE-2019-13648, CVE-2019-15916, CVE-2019-19527

Summary IBM customers who use the IBM 4769 Developer's Toolkit to create custom firmware images may be affected by one or more vulnerabilities that were announced against the Linux kernel. Vulnerability Details CVEID:CVE-2019-20811 DESCRIPTION: Linux Kernel could provide weaker than expected...

MINI-X7MX-3347-VF4V

Bulletin has no description...

EUVD-2026-3347

EUVD-2026-3347...

MiracleLinux 7 : kernel-3.10.0-1160.31.1.el7 (AXSA:2021-1963:11)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1963:11 advisory. kernel: Integer overflow in IntelR Graphics Drivers CVE-2020-12362 kernel: Use after free via PI futex state CVE-2021-3347 kernel: use-after-free in...

MiracleLinux 8 : kernel-4.18.0-240.22.1.el8_3 (AXSA:2021-1696:08)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-1696:08 advisory. kernel: use after free in eventpoll.c may lead to escalation of privilege CVE-2020-0466 kernel: SCSI target LIO write to any block on ILO backstore...

TencentOS Server 3: samba (TSSA-2023:0202)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2023:0202 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2022-3347

DNSSEC validation is not performed correctly. An attacker can cause this package to report successful validation for invalid, attacker-controlled records. Root DNSSEC public keys are not validated, permitting an attacker to present a self-signed root key and delegation chain...

CVE-2025-3347

creationtimestamp| type| source ---|---|--- 2025-04-07 11:07:56+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lm7szpxiav2z 2025-04-07 12:52:57+00:00| seen| https://t.me/cvedetector/22275...

CVE-2025-3347

The CVE-2025-3347 entry concerns Code-Projects Patient Record Management System 1.0. A SQL injection vulnerability exists in /dental_pending.php via the ID parameter, caused by inadequate validation. The issue allows remote exploitation and, per CNVD/CNNVD, could lead to unauthorized access to se...

Netopia 3347 Cable Modem Wifi Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Netopia 3347 Cable Modem Wifi Enumeration', 'Description' = %q This module extracts WEP keys and WPA preshared keys from certain Netopia cable...

Photon OS 3.0: Linux PHSA-2021-3.0-0193

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2021-3.0-0193. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Rocky Linux 8 : python3 (RLSA-2024:3347)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:3347 advisory. python: Path traversal on tempfile.TemporaryDirectory CVE-2023-6597 python: The zipfile module is vulnerable to zip-bombs leading to denial of service...

Oracle Linux 8 : python3 (ELSA-2024-3347)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3347 advisory. - Security fix for CVE-2024-0450 Resolves: RHEL-33683 - Security fix for CVE-2023-6597 Resolves: RHEL-33671 Tenable has extracted the preceding...

CVE-2024-3347 SourceCodester Airline Ticket Reservation System activate_jet_details_form_handler.php sql injection

A vulnerability was found in SourceCodester Airline Ticket Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file activatejetdetailsformhandler.php. The manipulation of the argument jetid leads to sql injection. The attack may be initiated...

CVE-2024-3347 SourceCodester Airline Ticket Reservation System activate_jet_details_form_handler.php sql injection

A vulnerability was found in SourceCodester Airline Ticket Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file activatejetdetailsformhandler.php. The manipulation of the argument jetid leads to sql injection. The attack may be initiated...

samba security, bug fix, and enhancement update

evolution-mapi 3.40.1-6 - Related: 2190415 Rebuild against samba 4.18 openchange 2.3-41 - Related: 2190415 Rebuild against samba 4.18 samba 4.18.6-100 - related: rhbz2190415 - Update to version 4.18.6 - resolves: rhbz2211617 - Fix the rpcclient dfsgetinfo command 4.18.5-100 - resolves: rhbz222289...

Mageia: Security Advisory (MGASA-2023-0247)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-6238-1: Samba vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 22.04 Description It was discovered that Samba incorrectly handled Winbind NTLM authentication responses. An attacker could possibly use this issue to cause Samba to crash, resulting in a denial of service. CVE-2022-2127...

Fedora: Security Advisory for samba (FEDORA-2023-bcd91bfcd3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

AlmaLinux 9 : samba (ALSA-2023:4325)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:4325 advisory. - A vulnerability was found in Samba's SMB2 packet signing mechanism. The SMB2 packet signing is not enforced if an admin configured server signing = required or f...