EUVD-2026-3354

A Server-Side Template Injection SSTI vulnerability in the FreeMarker component of opensagres XDocReport v1.0.0 to v2.1.0 allows attackers to execute arbitrary code via injecting crafted template expressions...

CVE-2025-3354

IBM Tivoli Monitoring 6.3.0.7 through 6.3.0.7 Service Pack 20 is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash...

CVE-2025-3354

creationtimestamp| type| source ---|---|--- 2025-08-07 04:54:22+00:00| seen| Telegram/KGYX40hD6UX1t4IYIK09pscPn2B1KfQt4P86ZzAKx0Rw...

Security Bulletin: IBM Tivoli Monitoring is affected by heap buffer overflow vulnerabilities

Summary IBM Tivoli Monitoring has addressed heap buffer overflow vulnerabilities CVE-2025-3354, CVE-2025-3320 Vulnerability Details CVEID:CVE-2025-3354 DESCRIPTION: IBM Tivoli Monitoring is vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote attacker could...

TencentOS Server 4: qemu (TSSA-2024:0869)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0869 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

Linux Distros Unpatched Vulnerability : CVE-2023-3354

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections crosses a...

RHSA-2024:3354

creationtimestamp| type| source ---|---|--- 2025-02-27 11:25:30+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5664 2025-06-25 00:49:28+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19413...

CVE-2024-3354

creationtimestamp| type| source ---|---|--- 2025-02-14 10:01:40+00:00| seen| Telegram/Chi9bdjRErctd-f8HyNVy6wMwXSF5A9CsnKQfxmeDPLMMl...

Azure Linux 3.0 Security Update: qemu (CVE-2023-3354)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3354 advisory. - A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether...

Advisory ROSA-SA-2025-2641

Software: qemu 7.2.7 OS: ROSA-CHROME packageevrstring: qemu-7.2.7-1 CVE-ID: CVE-2023-3301 BDU-ID: 2024-04418 CVE-Crit: LOW CVE-DESC.: A vulnerability in the virtio-net interface of the QEMU hardware emulator is related to the asynchronous nature of the shutdown allowing a race scenario...

openSUSE Security Advisory (SUSE-SU-2024:3354-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CBL Mariner 2.0 Security Update: qemu (CVE-2023-3354)

The version of qemu installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3354 advisory. - A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether...

USN-6567-2: QEMU regression

USN-6567-1 fixed vulnerabilities QEMU. The fix for CVE-2023-2861 was too restrictive and introduced a behaviour change leading to a regression in certain environments. This update fixes the problem. Original advisory details: Gaoning Pan and Xingwei Li discovered that QEMU incorrectly handled the...

SUSE: Security Advisory (SUSE-SU-2024:1395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE-SU-2024:1395-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2021-3750: Fixed DMA reentrancy issue that could lead to use-after-free bsc1190011 - CVE-2022-0216: Fixed use-after-free in lsidomsgout function in hw/scsi/lsi53c895a.c bsc1198038 - CVE-2023-0330: Fixed DMA reentrancy issue that could lead to...

CVE-2024-3354

CVE-2024-3354 affects SourceCodester Aplaya Beach Resort Online Reservation System v1.0. A SQL injection can be triggered via the id parameter in admin/mod_users/index.php, with remote access and a high/severe impact profile as described by multiple sources. The vulnerability arises from an unkno...

CVE-2023-3354 affecting package qemu for versions less than 8.2.0-1

CVE-2023-3354 affecting package qemu for versions less than 8.2.0-1. An upgraded version of the package is available that resolves this issue...

EulerOS Virtualization 2.9.1 : qemu (EulerOS-SA-2023-2973)

According to the versions of the qemu package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the 9p passthrough filesystem 9pfs implementation in QEMU. The 9pfs server did not prohibit opening special file...

EulerOS 2.0 SP8 : qemu (EulerOS-SA-2023-3153)

According to the versions of the qemu package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A flaw was found in the QEMU built-in VNC server. When a client connects to the VNC server, QEMU checks whether the current number of connections...

CVE-2023-3354 affecting package qemu for versions less than 6.2.0-19

CVE-2023-3354 affecting package qemu for versions less than 6.2.0-19. A patched version of the package is available...