CVE-2026-35358

The CVE concerns the cp utility in the uutils coreutils project. When performing recursive copies (-R), it mishandles character and block device nodes by treating them as regular stream sources instead of preserving device semantics. The implementation reads bytes into destination regular files r...

Linux Distros Unpatched Vulnerability : CVE-2026-35358

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The cp utility in uutils coreutils, when performing recursive copies -R, incorrectly treats character and block device nodes as stream sources rather than...

MAL-2025-35358 Malicious code in test-mlw2-fluid-upper (npm)

The package test-mlw2-fluid-upper was found to contain malicious code...

CVE-2020-35358

DomainMOD domainmod-v4.15.0 is affected by an insufficient session expiration vulnerability. On changing a password, both sessions using the changed password and old sessions in any other browser or device do not expire and remain active. Such flaws frequently give attackers unauthorized access t...

CVE-2024-35358

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewcategory. Manipulating the argument id can result in SQL injection...

CVE-2024-35358

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewcategory. Manipulating the argument id can result in SQL injection...

CVE-2024-35358

CVE-2024-35358 affects Diño Physics School Assistant v2.3. The vulnerability arises from an unidentified code path in /classes/Master.php?f=view_category where manipulating the id parameter enables SQL injection. Documented impact includes potential confidentiality and integrity effects (per CVSS...

CVE-2024-35358

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewcategory. Manipulating the argument id can result in SQL injection...

CVE-2024-35358

A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewcategory. Manipulating the argument id can result in SQL injection...

Microsoft Windows Multiple Vulnerabilities (KB5028168)

This host is missing an important security update according to Microsoft KB5028168 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2023-35358

Windows Kernel Elevation of Privilege Vulnerability...

CVE-2023-35358

Windows Kernel Elevation of Privilege Vulnerability...

CVE-2023-35358 Windows Kernel Elevation of Privilege Vulnerability

...

CVE-2023-35358 Windows Kernel Elevation of Privilege Vulnerability

...

CVE-2023-35358

CVE-2023-35358 refers to a Windows kernel registry vulnerability where an unexpected -1 cell index was observed in KCB.KeyCell, indicating that the code assumed at least one key with an allocated node in the key node stack, but differed when using layered/differencing hives and transactions. The ...

CVE-2022-35358

...

CVE-2022-35358

This CVE entry is rejected/not used per the initial description.

CVE-2021-35358

DotCMS 21.05.1 is affected by a stored XSS in the dotAdmin/#/c/c_Images UI, allowing an authenticated attacker to inject arbitrary web scripts or HTML through crafted payloads in the Title and Filename fields. The issue is confirmed in multiple sources referencing the same vulnerability; the root...

CVE-2020-35358

CVE-2020-35358 affects DomainMOD domainmod-v4.15.0 and is caused by an insufficient session expiration mechanism: after a password change, sessions authenticated with the new password and those using the old password remain active in other browsers/devices. Documents describe multiple reports (RH...