CVE-2026-34475

creationtimestamp| type| source ---|---|--- 2026-05-13 08:00:04+00:00| seen| https://t.me/GithubRedTeam/84046...

Exploit for Incorrect Behavior Order: Validate Before Canonicalize in Varnish-Software Varnish_Enterprise

way2poccve-2026-34475 CVE-2026-34475 — Nuclei Detection Temp...

Varnish Nuclei Detection Templates

This repository has two-stage Nuclei detection for CVE-2026-34475. It can fingerprint vulnerable Varnish instances, verify cache-key collision behavior, and confirm exploitability via VCL inspection, without triggering the bug...

Linux Distros Unpatched Vulnerability : CVE-2026-34475

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Varnish Cache before 8.0.1 and Varnish Enterprise before 6.0.16r12, in certain unchecked req.url scenarios, mishandle URLs with a path of / for HTTP/1.1,...

CVE-2024-34475

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: gmmstateauthentication in amf/gmm-sm.c for != OGSERROR...

CVE-2022-34475

SVG tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API. This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. This vulnerability affects...

CVE-2024-34475

Open5GS prior to 2.7.1 is affected by a reachable assertion that can cause an AMF crash via NAS messages from a UE. The root cause is in gmm_state_authentication within amf/gmm-sm.c for != OGS_ERROR. Affected software: Open5GS before 2.7.1. Impact is an AMF crash (service disruption). Remediation...

CVE-2021-34475

creationtimestamp| type| source ---|---|--- 2023-07-01 07:15:44+00:00| seen| https://t.me/cibsecurity/65840...

CVE-2021-34475

Microsoft Edge Chromium-based Elevation of Privilege Vulnerability...

CVE-2021-34475

CVE-2021-34475 affects Microsoft Edge (Chromium-based). The available connected documents identify an Elevation of Privilege vulnerability in Edge and note updates were issued by Microsoft to address the issue; CVSS appears as 3.1, base score 5.4 (Medium), with Network attack vector, Low attack c...

CVE-2023-34475

A heap use after free issue was discovered in ImageMagick's ReplaceXmpValue function in MagickCore/profile.c. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowing an application to crash, resulting in a denial of service...

CVE-2023-34475

ImageMagick vulnerability CVE-2023-34475 is a heap use-after-free in ReplaceXmpValue() (MagickCore/profile.c). It can be triggered when a user opens a crafted file, causing a crash and denial of service. Fedora advisories associate this CVE with updates: Fedora 37 to ImageMagick 6.9.12.93 and Fed...

CVE-2023-34475

A heap use after free issue was discovered in ImageMagick's ReplaceXmpValue function in MagickCore/profile.c. An attacker could trick user to open a specially crafted file to convert, triggering an heap-use-after-free write error, allowing an application to crash, resulting in a denial of service...

CVE-2023-34475

A heap use-after-free vulnerability was found in ImageMagick's ReplaceXmpValue function in MagickCore/profile.c. This flaw allows an attacker to trick a user into opening a specially crafted file to convert, triggering a heap use-after-free write error, and allowing an application to crash,...

CVE-2022-34475

Mozilla Firefox vulnerability CVE-2022-34475 involves SVG tags referencing a same-origin document that could lead to script execution if attacker input is sanitized via the HTML Sanitizer API. Affected product: Firefox prior to version 102. Root cause: improper handling of in combination with s...

CVE-2022-34475

SVG use tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API. This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. This vulnerability affects...

SUSE SLES12 Security Update : MozillaFirefox (SUSE-SU-2022:3273-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3273-1 advisory. - If an object prototype was corrupted by an attacker, they would have been able to set undesired attributes on a JavaScript object...

SUSE: Security Advisory (SUSE-SU-2022:3273-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-5504-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2022-34475

SVG use tags that referenced a same-origin document could have resulted in script execution if attacker input was sanitized via the HTML Sanitizer API. This would have required the attacker to reference a same-origin JavaScript file containing the script to be executed. This vulnerability affects...