CVE-2026-3670

A vulnerability was detected in Freedom Factory dGEN1 up to 20260221. Affected is an unknown function of the component com.dgen.alarm. Performing a manipulation results in improper authorization. The attack requires a local approach. The exploit is now public and may be used. The vendor was...

CVE-2026-3670 Freedom Factory dGEN1 com.dgen.alarm improper authorization

A vulnerability was detected in Freedom Factory dGEN1 up to 20260221. Affected is an unknown function of the component com.dgen.alarm. Performing a manipulation results in improper authorization. The attack requires a local approach. The exploit is now public and may be used. The vendor was...

CVE-2026-3670 Freedom Factory dGEN1 com.dgen.alarm improper authorization

A vulnerability was detected in Freedom Factory dGEN1 up to 20260221. Affected is an unknown function of the component com.dgen.alarm. Performing a manipulation results in improper authorization. The attack requires a local approach. The exploit is now public and may be used. The vendor was...

CVE-2026-3670

creationtimestamp| type| source ---|---|--- 2026-03-07 18:15:49+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-3670 2026-03-07 21:29:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgirifcq7n2k...

CVE-2021-3670 vulnerabilities

Vulnerabilities for packages: samba...

CVE-2021-3670 vulnerabilities

Vulnerabilities for packages: samba...

CVE-2020-3670

creationtimestamp| type| source ---|---|--- 2026-01-20 08:04:53+00:00| seen| https://infosec.exchange/users/certvde/statuses/115926387351405846...

MiracleLinux 4 : php-5.3.3-40.AXS4 (AXSA:2014-701:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-701:04 advisory. Description : PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP al...

EUVD-2007-4023

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2012-3670

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.0, allows remote attackers to execute arbitrary code or cause a denial of service memory corruption and application cra...

CVE-2020-3670

u'Potential out of bounds read while processing downlink NAS transport message due to improper length check of Information ElementIEI NAS message container' in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables in Agatt...

CVE-2013-3670

The rleunpack function in vmdav.c in libavcodec in FFmpeg git 20130328 through 20130501 does not properly use the bytestream2 API, which allows remote attackers to cause a denial of service out-of-bounds array access and application crash via crafted RLE data. NOTE: the vendor has listed this as ...

SUSE-SU-2025:01653-1 Security update for govulncheck-vulndb

This update for govulncheck-vulndb fixes the following issues: - Update to version 0.0.20250515T200012 2025-05-15T20:00:12Z jscPED-11136 GO-2025-3657 GO-2025-3670 GO-2025-3671 GO-2025-3672 GO-2025-3678 GO-2025-3679 GO-2025-3680 GO-2025-3682 GO-2025-3683 GO-2025-3684 GO-2025-3686 GO-2025-3687...

Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2025-1447)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libldb (EulerOS-SA-2025-1476)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-3670

creationtimestamp| type| source ---|---|--- 2025-05-02 07:34:57+00:00| seen| https://t.me/cvedetector/24328...

CVE-2025-3670 KiwiChat NextClient <= 6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Parameter

The KiwiChat NextClient plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access...

CVE-2025-3670 KiwiChat NextClient <= 6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Parameter

The KiwiChat NextClient plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 6.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access...

WordPress KiwiChat NextClient plugin <= 6.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via url Parameter vulnerability

Authenticated Contributor+ Stored Cross-Site Scripting via url Parameter vulnerability discovered by Peter Thaleikis in WordPress Plugin KiwiChat NextClient versions = 6.2...

RHSA-2025:3670

creationtimestamp| type| source ---|---|--- 2025-04-08 00:46:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10806...