CVE-2026-35558

Improper neutralization of special elements in the authentication components in Amazon Athena ODBC driver before 2.1.0.0 might allow a threat actor to execute arbitrary code or redirect authentication flows by using specially crafted connection parameters that are processed by the driver during...

CVE-2026-35558

creationtimestamp| type| source ---|---|--- 2026-04-03 23:21:03+00:00| published-proof-of-concept| Telegram/Y6tkTwR3TbgbLqd0XdHY3LGxaSf8SFw0ekLA3xjK-BPXbc 2026-04-04 04:00:54+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mindxhjxru25 2026-04-04 05:00:56+00:00| seen|...

CVE-2024-35558

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/cadeal.php?mudi=rev&nohrefStr=close...

CVE-2024-35558

idccms v1.35 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/cadeal.php?mudi=rev&nohrefStr=close...

CVE-2022-35558

The CVE-2022-35558 entry concerns Tenda W6 (V1.0.0.9(4122)) with a stack overflow in the WifiMacFilterGet function. The vulnerability allows remote attackers to cause a denial of service via the index parameter. Affected component is the WifiMacFilterGet path under /goform/ on the Tenda W6 device...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Supplier Lifecycle Management (CVE-2021-35558)

Summary IBM Emptoris Supplier Lifecycle Management supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Supplier Lifecycle Management. Vulnerability Details CVEID: CVE-2021-35558 DESCRIPTION: An unspecified...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Sourcing (CVE-2021-35558)

Summary IBM Emptoris Sourcing supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Sourcing. Vulnerability Details CVEID: CVE-2021-35558 DESCRIPTION: An unspecified vulnerability in Oracle Database Server relate...

Security Bulletin: Oracle Database Server Vulnerability Affects IBM Emptoris Contract Management (CVE-2021-35558)

Summary IBM Emptoris Contract Management supports Oracle database server as a backend database. The remediated version of Oracle database server has been certified by IBM Emptoris Contract Management. Vulnerability Details CVEID: CVE-2021-35558 DESCRIPTION: An unspecified vulnerability in Oracle...

CVE-2021-35558

CVE-2021-35558 affects Oracle Database Server Core RDBMS. Oracle warns that versions 12.1.0.2, 12.2.0.1, 19c and 21c are affected and an attacker with Create Table privilege and network access could cause partial DOS. Connected IBM EMPTORIS bulletins show affected IBM products and remediations: E...

CVE-2020-35558

creationtimestamp| type| source ---|---|--- 2021-02-16 18:48:16+00:00| seen| https://t.me/cibsecurity/23655...

CVE-2020-35558

An issue was discovered in MB connect line mymbCONNECT24, mbCONNECT24 and Helmholz myREX24 and myREX24.virtual through 2.11.2. There is an SSRF in the in the MySQL access check, allowing an attacker to scan for open ports and gain some information about possible credentials...

CVE-2020-35558

CVE-2020-35558 affects MB connect line products MB CONNECT LINE mymbCONNECT24, mbCONNECT24 and Helmholz myREX24/myREX24.virtual up to version 2.11.2. The issue is a server-side request forgery (SSRF) in the MySQL access check that allows an attacker to scan for open ports and obtain information a...

Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption

No description provided by source. $Id: msvidctlmpeg2.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of us...

Microsoft DirectShow (msvidctl.dll) MPEG-2 Memory Corruption

This module exploits a memory corruption within the MSVidCtl component of Microsoft DirectShow BDATuner.MPEG2TuneRequest. By loading a specially crafted GIF file, an attacker can overrun a buffer and execute arbitrary code. ClassID is now configurable via an advanced option otherwise randomized -...

Microsoft DirectShow Video Streaming ActiveX IMPEG2TuneRequest Overflow

Added: 07/07/2009 CVE: CVE-2008-0015 BID: 35558 OSVDB: 55651 Background DirectX is a feature of the Windows operating system used for streaming media. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation and rendering. Problem A stack buffer overfl...

Microsoft DirectShow Video Streaming ActiveX IMPEG2TuneRequest Overflow

Added: 07/07/2009 CVE: CVE-2008-0015 BID: 35558 OSVDB: 55651 Background DirectX is a feature of the Windows operating system used for streaming media. Within DirectX, the DirectShow technology performs client-side audio and video sourcing, manipulation and rendering. Problem A stack buffer overfl...