CVE-2026-35247

creationtimestamp| type| source ---|---|--- 2026-04-22 12:50:28+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mk3jwxg6zh2c...

UBUNTU-CVE-2026-35247

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle V...

CVE-2026-35247

...

CVE-2026-35247

CVE-2026-35247 affects Oracle VM VirtualBox 7.2.6 (Core component). The vulnerability enables a high-privilege attacker with local access to compromise the Oracle VM VirtualBox instance, potentially leading to unauthorized access to data within the VirtualBox scope. The CVSS 3.1 vector indicates ...

KLA90996 Multiple vulnerabilities in Oracle VirtualBox

Multiple vulnerabilities were found in Oracle VirtualBox. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, cause denial of service. Below is a complete list of vulnerabilities: 1. Information disclosure vulnerability in Core can be...

CVE-2022-35247

A information disclosure vulnerability exists in Rocket.chat...

CVE-2024-35247

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

Linux Distros Unpatched Vulnerability : CVE-2024-35247

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fpga: region: add owner module and take its refcount The current implementation of the fpga region assumes that the low-level module registers a driver for the...

Ubuntu: Security Advisory (USN-7009-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5730 : affs-modules-5.10.0-29-4kc-malta-di - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5730 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5730-1 [email protected] https://www.debian.org/securit...

SUSE CVE-2024-35247

In the Linux kernel, the following vulnerability has been resolved: fpga: region: add owner module and take its refcount The current implementation of the fpga region assumes that the low-level module registers a driver for the parent device and uses its owner pointer to take the module's refcoun...

CVE-2022-35247

creationtimestamp| type| source ---|---|--- 2022-09-23 22:13:44+00:00| seen| https://t.me/cibsecurity/50371...

CVE-2022-35247

CVE-2022-35247 describes an information-disclosure in Rocket.Chat via the getRoomRoles Meteor method due to missing ACL checks. Affected: Rocket.Chat versions prior to 5, prior to 4.8.2, and prior to 4.7.5. The vulnerability allows an unauthorized client to leak channel members with special roles...

SolarWinds Serv-U vulnerability exploited to deliver Log4j attack

THREAT LEVEL: Red. For a detailed advisory, download the pdf file here. SolarWinds is affected by a vulnerability CVE-2021-35247 due to improper input validation when processing LDAP queries in the Serv-U web login screen. Serv-U versions up to 15.2.5 are affected by this flaw and were fixed in...

Microsoft: Attackers Tried to Login to SolarWinds Serv-U Via Log4j Bug

Attackers are trying to log in to SolarWinds Serv-U file-sharing software via attacks exploiting the Log4j flaws. This is a confusing story: Initially, Microsoft had warned on Wednesday that attackers were exploiting a previously undisclosed vulnerability in the SolarWinds Serv-U file-sharing...

CVE-2021-35247

creationtimestamp| type| source ---|---|--- 2022-01-20 06:00:50+00:00| exploited| https://t.me/thehackernews/1808 2022-01-20 14:25:36+00:00| seen| https://t.me/truesecator/2540 2022-01-24 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=727 2023-06-14 21:10:04+00:00| seen|...

Hackers Attempt to Exploit New SolarWinds Serv-U Bug in Log4Shell Attacks

Microsoft on Wednesday disclosed details of a new security vulnerability in SolarWinds Serv-U software that it said was being weaponized by threat actors to propagate attacks leveraging the Log4j flaws to compromise targets. Tracked as CVE-2021-35247 CVSS score: 5.3, the issue is an "input...

CVE-2021-35247

Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has updated the input mechanism to perform additional validation and sanitization. Please Note: No downstream affect has been detected as the LDAP servers ignored improper...

CVE-2021-35247 Improper Input Validation Vulnerability in Serv-U

Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has updated the input mechanism to perform additional validation and sanitization. Please Note: No downstream affect has been detected as the LDAP servers ignored improper...

CVE-2021-35247 Improper Input Validation Vulnerability in Serv-U

Serv-U web login screen to LDAP authentication was allowing characters that were not sufficiently sanitized. SolarWinds has updated the input mechanism to perform additional validation and sanitization. Please Note: No downstream affect has been detected as the LDAP servers ignored improper...