CVE-2025-36461

creationtimestamp| type| source ---|---|--- 2025-11-17 14:30:17+00:00| seen| https://infosec.place/objects/f0ff24dd-b424-4838-a02b-7e7d2fc4cfa8 2025-11-18 01:35:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m5ulx4r2ts2u...

MAL-2025-36461 Malicious code in test-mlw2-tines-utter (npm)

The package test-mlw2-tines-utter was found to contain malicious code...

CVE-2020-36461

An issue was discovered in the noisesearch crate through 2020-12-10 for Rust. There are unconditional implementations of Send and Sync for MvccRwLock...

Linux Distros Unpatched Vulnerability : CVE-2024-36461

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine. CVE-2024-36461 Note that Nessus relies on the presence of the...

openSUSE Security Advisory (openSUSE-SU-2024:0384-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for zabbix (moderate)

openSUSE Security Update: Security update for zabbix Announcement ID: openSUSE-SU-2024:0384-1 Rating: moderate References: 1229198 1229204 Cross-References: CVE-2024-22114 CVE-2024-36461 CVSS scores: CVE-2024-22114 SUSE: 4.3 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N CVE-2024-36461 SUSE: 9.1...

system-user-zabbix-6.0.33-1.1 on GA media (moderate)

system-user-zabbix-6.0.33-1.1 on GA media Announcement ID: openSUSE-SU-2024:14356-1 Rating: moderate Cross-References: CVE-2024-36461 CVSS scores: CVE-2024-36461 SUSE : 9.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability...

Fedora 39 : zabbix (2024-c89d2ecdea)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-c89d2ecdea advisory. Fix for multiple CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

Fedora: Security Advisory (FEDORA-2024-8382d1b267)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 40 : zabbix (2024-8382d1b267)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-8382d1b267 advisory. Fix for multiple CVEs Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not...

UBUNTU-CVE-2024-36461

Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine...

CVE-2024-36461 Direct access to memory pointers within the JS engine for modification

Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine...

CVE-2024-36461

CVE-2024-36461 affects Zabbix where a user can directly modify memory pointers in the JavaScript engine, enabling remote code execution with limited privileges. Public advisories in multiple distros corroborate the vulnerability and list patches: openSUSE/SUSE notes CVE-36461 fixed in Zabbix 6.0....

CVE-2024-36461 Direct access to memory pointers within the JS engine for modification

Within Zabbix, users have the ability to directly modify memory pointers in the JavaScript engine...

CVE-2023-36461

creationtimestamp| type| source ---|---|--- 2023-07-06 22:20:31+00:00| seen| https://t.me/cibsecurity/66153 2023-07-10 16:30:05+00:00| seen| https://t.me/truesecator/4597...

CVE-2023-36461

Mastodon is a free, open-source social network server based on ActivityPub. When performing outgoing HTTP queries, Mastodon sets a timeout on individual read operations. Prior to versions 3.5.9, 4.0.5, and 4.1.3, a malicious server can indefinitely extend the duration of the response through...

CVE-2023-36461

Summary: Mastodon is vulnerable to a Denial of Service via slow HTTP responses due to slowloris-type attacks when performing outgoing HTTP queries. The root cause is that, prior to 3.5.9, 4.0.5, and 4.1.3, Mastodon could allow the duration of a response to be extended indefinitely by a malicious ...

CVE-2022-36461

TOTOLINK A3700R V9.1.2u.6134B20201202 was discovered to contain a command injection vulnerability via the hostName parameter in the function setOpModeCfg...

CVE-2022-36461

CVE-2022-36461 affects TOTOLINK A3700R, version 9.1.2u.6134_B20201202. The vulnerability is a command injection in the hostName parameter of the function setOpModeCfg. Several connected records confirm this issue and its association with TOTOLINK A3700R. The NVD entry lists a CVSS v3.1 base score...

CVE-2021-36461

creationtimestamp| type| source ---|---|--- 2022-07-15 16:35:32+00:00| seen| https://t.me/cibsecurity/46310...