CVE-2026-35164

creationtimestamp| type| source ---|---|--- 2026-04-06 19:25:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mitykuak322n 2026-04-06 19:29:44+00:00| seen| Telegram/RmP7l-K41x9UoCBscD5W8eizA4yDJaPJqAKKOeWwXNyu-8 2026-04-07 06:02:51+00:00| seen|...

CVE-2022-35164

LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...

Linux Distros Unpatched Vulnerability : CVE-2024-35164

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a...

MAL-2025-35164 Malicious code in test-mlw2-cuish-chalk (npm)

The package test-mlw2-cuish-chalk was found to contain malicious code...

Fedora: Security Advisory (FEDORA-2025-774aa2765e)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2025-c597fcda32)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-35164

The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a malicious user has access to a text-based connection, a specially-crafted sequence of console codes could allow arbitrary code to be...

CVE-2024-35164

CVE-2024-35164 affects Apache Guacamole guacd terminal emulator. The vulnerability arises when the terminal emulator does not properly validate console codes received from text-based protocols (e.g., SSH), allowing a malicious user with access to a text-based connection to craft console code sequ...

CVE-2024-35164 Apache Guacamole: Improper input validation of console codes

The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a malicious user has access to a text-based connection, a specially-crafted sequence of console codes could allow arbitrary code to be...

CVE-2023-35164

DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...

CVE-2023-35164

creationtimestamp| type| source ---|---|--- 2023-06-27 02:25:07+00:00| seen| https://t.me/cibsecurity/65559...

CVE-2023-35164

CVE-2023-35164 (DataEase) involves a missing authorization check in DataEase prior to version 1.18.8, allowing unauthorized users to manipulate dashboards created by an administrator. The issue affects versions before 1.18.8; the vulnerability is fixed in 1.18.8. In-scope impact is partial on int...

CVE-2023-35164 Unauthorized users can manipulate a dashboard created by an administrator in DataEase

DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...

CVE-2023-35164 Unauthorized users can manipulate a dashboard created by an administrator in DataEase

DataEase is an open source data visualization analysis tool to analyze data and gain insight into business trends. In affected versions a missing authorization check allows unauthorized users to manipulate a dashboard created by the administrator. This vulnerability has been fixed in version...

SUSE CVE-2022-35164

LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...

CVE-2022-35164

creationtimestamp| type| source ---|---|--- 2022-08-18 12:41:30+00:00| seen| https://t.me/cibsecurity/48343...

CVE-2022-35164

LibreDWG v0.12.4.4608 & commit f2dea29 was discovered to contain a heap use-after-free via bitcopychain...

CVE-2022-35164

LibreDWG is affected by CVE-2022-35164: v0.12.4.4608 with commit f2dea29 contains a heap use-after-free in bit_copy_chain. The CVSSv3.1 base score is 9.8 (CRITICAL). Remediation available: the OpenSUSE OSV advisory notes the fix is included in libredwg-devel-0.12.5-3.1 on the GA media. Per the Re...

CVE-2020-35164

creationtimestamp| type| source ---|---|--- 2022-07-12 00:19:36+00:00| seen| https://t.me/cibsecurity/45946...

CVE-2020-35164

Summary (CVE-2020-35164) Dell BSAFE Crypto-C Micro Edition (versions before 4.1.5) and Dell BSAFE Micro Edition Suite (versions before 4.6) have an observable timing discrepancy vulnerability. Connected sources (PT-2022-8918) corroborate affected versions and advise upgrading to 4.1.5+ and 4.6+ r...