CVE-2026-33647

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the ImageGallery::saveFile method validates uploaded file content using finfo MIME type detection but derives the saved filename extension from the user-supplied original filename without an allowlist check. An...

CVE-2026-33647

creationtimestamp| type| source ---|---|--- 2026-03-22 23:05:51+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-wxjw-phj6-g75w 2026-03-23 19:23:23+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhqrvxfpyd2d 2026-03-23 20:31:01+00:0...

CVE-2021-33647

When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers...

CVE-2022-33647

creationtimestamp| type| source ---|---|--- 2022-10-26 07:00:06+00:00| published-proof-of-concept| https://t.me/TopCyberTechNews/189 2022-10-27 19:48:00+00:00| seen| https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html 2022-10-31 19:01:56+00:00| seen|...

Microsoft Windows Multiple Vulnerabilities (KB5017367)

This host is missing an important security update according to Microsoft KB5017367 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

Microsoft Windows Multiple Vulnerabilities (KB5017361)

This host is missing an important security update according to Microsoft KB5017361 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2022-33647

Windows Kerberos Elevation of Privilege Vulnerability...

CVE-2022-33647

Windows Kerberos Elevation of Privilege Vulnerability...

CVE-2022-33647 Windows Kerberos Elevation of Privilege Vulnerability

...

CVE-2022-33647

CVE-2022-33647 is a Windows Kerberos elevation-of-privilege vulnerability involving RC4-based encryption (RC4-HMAC/RC4-MD4) in Kerberos. The CIRCL/GoogleProjectZero write-up explains exploitation on the wire: an attacker can force RC4-MD4 in AS-REQ/PA-ETYPE-INFO2 flows, obtain an AS-REP with a RC...

KB5017373: Windows Server 2008 R2 Security Update (September 2022)

The remote Windows host is missing security update 5017373. It is, therefore, affected by multiple vulnerabilities - Windows Credential Roaming Service Elevation of Privilege Vulnerability CVE-2022-30170 - Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...

KB5017371: Windows Server 2008 Security Update (September 2022)

The remote Windows host is missing security update 5017371. It is, therefore, affected by multiple vulnerabilities - Windows Credential Roaming Service Elevation of Privilege Vulnerability CVE-2022-30170 - Windows Lightweight Directory Access Protocol LDAP Remote Code Execution Vulnerability...

CVE-2021-33647

creationtimestamp| type| source ---|---|--- 2022-06-27 20:35:07+00:00| seen| https://t.me/cibsecurity/45208...

CVE-2021-33647

When performing the inference shape operation of the Tile operator, if the input data type is not int or int32, it will access data outside of bounds of heap allocated buffers...

CVE-2021-33647

Huawei MindSpore Community Tile’s Tile operator may disclose sensitive data when performing the inference shape operation if the input data type is not int or int32, due to out-of-bounds access of heap buffers. Affected: MindSpore Community Tile (Tile operator). Root cause: type check bypass lead...