CVE-2023-34250

Discourse is an open source discussion platform. Prior to version 3.0.4 of the stable branch and version 3.1.0.beta5 of the beta and tests-passed branches, an attacker could use the new topics dismissal endpoint to reveal the number of topics recently created but not the actual content thereof in...

Azure Linux 3.0 Security Update: fluent-bit (CVE-2024-34250)

The version of fluent-bit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-34250 advisory. - A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which...

CBL Mariner 2.0 Security Update: fluent-bit (CVE-2024-34250)

The version of fluent-bit installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-34250 advisory. - A heap buffer overflow vulnerability was discovered in Bytecode Alliance wasm-micro-runtime v2.0.0 which...

CVE-2024-34250 affecting package fluent-bit for versions less than 2.2.3-1

CVE-2024-34250 affecting package fluent-bit for versions less than 2.2.3-1. A patched version of the package is available...

Discourse < 3.0.4 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescriptio...

Discourse 3.1.x < 3.1.0.beta5 Multiple Vulnerabilities

Discourse is prone to multiple vulnerabilities SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescriptio...

CVE-2023-34250

Discourse is affected by CVE-2023-34250. Affected versions: stable before 3.0.4 and beta/tests-passed before 3.1.0.beta5. The issue allows an attacker using the new topics dismissal endpoint to reveal the number of topics recently created in private categories without access to their content. The...

CVE-2023-34250 Discourse vulnerable to exposure of number of topics recently created in private categories

Discourse is an open source discussion platform. Prior to version 3.0.4 of the stable branch and version 3.1.0.beta5 of the beta and tests-passed branches, an attacker could use the new topics dismissal endpoint to reveal the number of topics recently created but not the actual content thereof in...

CVE-2022-34250

Adobe InCopy is affected by a heap-based buffer overflow in input handling (font parsing) that could allow arbitrary code execution in the context of the current user when a malicious file is opened. Affected versions: 17.2 and earlier, and 16.4.1 and earlier. Requires user interaction. Remediati...

CVE-2022-34250 Adobe InCopy Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Adobe InCopy versions 17.2 and earlier and 16.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi...

CVE-2022-34250 Adobe InCopy Font Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability

Adobe InCopy versions 17.2 and earlier and 16.4.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious fi...

CVE-2021-34250

creationtimestamp| type| source ---|---|--- 2022-04-11 18:16:00+00:00| seen| https://t.me/cibsecurity/40464...

CVE-2025-34250

...

CVE-2021-34250

CVE-2021-33396 describes a Cross Site Request Forgery (CSRF) vulnerability in baijiacms 4.1.4 that allows an attacker to change the password or other information of an arbitrary account via index.php. The vulnerability is documented across multiple feeds; the Red Hat/NVD entries corroborate the s...

CVE-2025-34250

CVE-2025-34250 entry is rejected/not used and does not represent an active vulnerability entry.