Lucene search
+L

19 matches found

nessus
nessus
added 3 days ago4 views

SUSE SLED15 / SLES15 Security Update : tiff (SUSE-SU-2026:2853-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2853-1 advisory. Update to version 4.7.2. Security issues fixed: - CVE-2026-12912: heap-based buffer overflow when processing...

7.8CVSS6.9AI score0.00553EPSS
Exploits0References9
osv
osv
added 2026/07/06 6:27 a.m.5 views

OESA-2026-2837 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

5.9AI score
Exploits0References2
osv
osv
added 2026/07/06 6:27 a.m.5 views

OESA-2026-2834 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

5.9AI score
Exploits0References2
susecve
susecve
added 2026/06/18 1:56 a.m.8 views

SUSE CVE-2026-36849

unknown...

6.5CVSS5.2AI score
Exploits0References3
osv
osv
added 2026/06/17 5:48 a.m.6 views

DEBIAN-CVE-2026-36849

Bulletin has no description...

5AI score
Exploits0References1
circl
circl
added 2026/06/17 1:42 a.m.11 views

CVE-2026-36849

creationtimestamp| type| source ---|---|--- 2026-06-17 01:42:59+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3moh6qy7igr2p...

5AI score
Exploits0References1
nessus
nessus
added 2026/06/17 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-36849

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Debian Linux - tiff - None Ubuntu Linux - Denial of Service via large SamplesPerPixel tag CVE-2026-36849 Note that Nessus relies on the presence of the package ...

5.9AI score
Exploits0References3
redhatcve
redhatcve
added 2025/07/14 12:20 p.m.13 views

CVE-2020-36849

The AIT CSV import/export plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the /wp-content/plugins/ait-csv-import-export/admin/upload-handler.php file in versions up to, and including, 3.0.3. This makes it possible for unauthorized attackers to...

9.8CVSS7.5AI score0.04655EPSS
Exploits2References1
nvd
nvd
added 2025/07/12 12:15 p.m.7 views

CVE-2020-36849

The AIT CSV import/export plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the /wp-content/plugins/ait-csv-import-export/admin/upload-handler.php file in versions up to, and including, 3.0.3. This makes it possible for unauthorized attackers to...

9.8CVSS0.04655EPSS
Exploits2References6
vulnrichment
vulnrichment
added 2025/07/12 11:23 a.m.8 views

CVE-2020-36849 AIT CSV import/export <= 3.0.3 - Unauthenticated Arbitrary File Upload

The AIT CSV import/export plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the /wp-content/plugins/ait-csv-import-export/admin/upload-handler.php file in versions up to, and including, 3.0.3. This makes it possible for unauthorized attackers to...

9.8CVSS8.1AI score0.04655EPSS
Exploits2References6
cve
cve
added 2025/07/12 11:23 a.m.30 views

CVE-2020-36849

The CVE-2020-36849 entry concerns the AIT CSV import/export plugin for WordPress (versions up to 3.0.3). The root cause is missing file type validation in admin/upload-handler.php, enabling arbitrary file uploads on the vulnerable site and potentially remote code execution. Public references incl...

9.8CVSS7.5AI score0.04655EPSS
Exploits2References6Affected Software1
nvd
nvd
added 2023/07/14 6:15 p.m.30 views

CVE-2023-36849

An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon l2cpd of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service DoS. When a malformed LLDP packet is received, l2cpd will...

6.5CVSS0.00303EPSS
Exploits0References1
cve
cve
added 2023/07/14 5:58 p.m.50 views

CVE-2023-36849

CVE-2023-36849 affects Juniper Networks Junos OS and Junos OS Evolved; the issue is an Improper Check or Handling of Exceptional Conditions in the Layer-2 control protocols daemon (l2cpd). A malformed LLDP packet can cause l2cpd to crash and restart, reinitializing STP (RSTP/MSTP/VSTP), MVRP and ...

6.5CVSS6.5AI score0.00303EPSS
Exploits0References1Affected Software1
attackerkb
attackerkb
added 2022/09/09 3:15 p.m.5 views

CVE-2022-36849

Use after free vulnerability in sdpmmsetprocesssensitive function of sdpmm driver prior to SMR Sep-2022 Release 1 allows attackers to perform malicious actions...

7.8CVSS5.8AI score0.0009EPSS
Exploits0References2
cve
cve
added 2022/09/09 2:39 p.m.59 views

CVE-2022-36849

CVE-2022-36849 is a use-after-free vulnerability in the sdp_mm_set_process_sensitive function of the sdpmm driver, affecting Samsung devices in the SMR Sep-2022 Release 1. The issue arises from post-release reuse in the sdpmm driver and could allow malicious actions. Publicly documented impact fo...

7.8CVSS7.8AI score0.0009EPSS
Exploits0References1Affected Software1
circl
circl
added 2022/07/20 10:12 p.m.5 views

CVE-2021-36849

creationtimestamp| type| source ---|---|--- 2022-07-20 22:12:12+00:00| seen| https://t.me/cibsecurity/46712...

4.8CVSS5.8AI score0.00438EPSS
Exploits0References1
nvd
nvd
added 2022/07/20 7:15 p.m.23 views

CVE-2021-36849

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in René Hermenau's Social Media Share Buttons plugin = 3.8.1 at WordPress...

4.8CVSS0.00438EPSS
Exploits0References2
osv
osv
added 2022/07/20 7:15 p.m.4 views

CVE-2021-36849

Authenticated admin+ Stored Cross-Site Scripting XSS vulnerability in René Hermenau's Social Media Share Buttons plugin = 3.8.1 at WordPress...

4.8CVSS5.8AI score0.00438EPSS
Exploits0References2
cve
cve
added 2022/07/20 6:35 p.m.87 views

CVE-2021-36849

CVE-2021-36849 affects the MashShare/WordPress Social Media Share Buttons plugin (

4.8CVSS4.3AI score0.00438EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder