21 matches found
CVE-2026-35229
creationtimestamp| type| source ---|---|--- 2026-04-21 23:00:39+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mk23l5hek32c 2026-04-21 23:30:11+00:00| seen| Telegram/14RDzCjaAGLQIuKBJtHoIYde60oDRnqUnuM1SZUlRS4U4fg...
CVE-2026-35229
...
CVE-2026-35229
CVE-2026-35229 concerns the Java VM component of Oracle Database Server, affecting 19.3–19.30 and 21.3–21.21. An unauthenticated attacker with network access via Oracle Net can compromise the Java VM, potentially gaining unauthorized access to data or full Java VM data. CVSS v3.1 base score is 7....
CVE-2026-35229
...
CVE-2024-35229
ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scale Ethereum. Prior to version 1.3.10, there is a very specific pattern fa,b; checkifaexecutedlast in Yul that exposes a bug in evaluation order of Yul function arguments. This vulnerability has been fixed in version 1.3.10. As a...
CVE-2024-35229 ZKsync Era evaluation order of Yul function arguments
ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scale Ethereum. Prior to version 1.3.10, there is a very specific pattern fa,b; checkifaexecutedlast in Yul that exposes a bug in evaluation order of Yul function arguments. This vulnerability has been fixed in version 1.3.10. As a...
CVE-2024-35229 ZKsync Era evaluation order of Yul function arguments
ZKsync Era is a layer 2 rollup that uses zero-knowledge proofs to scale Ethereum. Prior to version 1.3.10, there is a very specific pattern fa,b; checkifaexecutedlast in Yul that exposes a bug in evaluation order of Yul function arguments. This vulnerability has been fixed in version 1.3.10. As a...
Ubuntu: Security Advisory (USN-6751-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : Zabbix vulnerabilities (USN-6751-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6751-1 advisory. It was discovered that Zabbix incorrectly handled input data in the discovery and graphs pages. A remote...
Debian: Security Advisory (DLA-3538-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3390-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DLA 3390-1] zabbix security update
Debian LTS Advisory DLA-3390-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost April 12, 2023 https://wiki.debian.org/LTS Package : zabbix Version : 1:4.0.4+dfsg-1+deb10u1 CVE ID : CVE-2019-15132 CVE-2020-15803 CVE-2021-27927 CVE-2022-24349 CVE-2022-24917...
CVE-2022-35229
creationtimestamp| type| source ---|---|--- 2022-07-06 14:14:18+00:00| seen| https://t.me/cibsecurity/45628...
CVE-2022-35229
CVE-2022-35229 : Zabbix Frontend vulnerability where an authenticated user can craft a link with reflected Javascript on the discovery page and send it to others. The payload executes only if the victim’s CSRF token (periodically rotated) is known. Documented in multiple advisories: Debian LTS/DL...
CVE-2021-35229 Cross-Site Scripting Vulnerability using SQL Query
Cross-site scripting vulnerability is present in Database Performance Monitor 2022.1.7779 and previous versions when using a complex SQL query...
CVE-2021-35229
CVE-2021-35229 is a cross-site scripting vulnerability in SolarWinds Database Performance Monitor (DPM) 2022.1.7779 and earlier when handling complex SQL queries. The CVE entries in NVD describe impact to confidentiality and integrity (C/L) with network attack vector and variable user interaction...
CVE-2020-35229
creationtimestamp| type| source ---|---|--- 2021-03-10 22:53:20+00:00| seen| https://t.me/cibsecurity/24739 2024-10-09 19:00:25+00:00| seen| https://t.me/CyberSecurityTechnologies/2861...
CVE-2020-35229
The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers with access to network traffic to effectively gain administrative privileges...
CVE-2020-35229
The authentication token required to execute NSDP write requests on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices is not properly invalidated and can be reused until a new token is generated, which allows attackers with access to network traffic to effectively gain administrative privileges...
CVE-2020-35229
The CVE-2020-35229 issue affects NETGEAR JGS516PE/GS116Ev2 switches (v2.6.0.43). The root cause is that the authentication token used for NSDP write requests is not properly invalidated and can be reused until a new token is generated, enabling attackers with network access to effectively gain ad...