24 matches found
EUVD-2024-36887
Malicious code in bioql PyPI...
CVE-2025-36887
creationtimestamp| type| source ---|---|--- 2025-09-04 05:27:24+00:00| seen| Telegram/Racx7vPPhw1DudKmdk-U-MEeUjjj0DJmQrl5v3fwE0elJo...
MAL-2025-36887 Malicious code in tiara-wajit66-breki (npm)
The package tiara-wajit66-breki was found to contain malicious code...
CVE-2022-36887
A cross-site request forgery CSRF vulnerability in Jenkins Job Configuration History Plugin 1155.v28a46acc06a5 and earlier allows attackers to delete entries from job, agent, and system configuration history, or restore older versions of job, agent, and system configurations...
Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-6949-1)
"The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6949-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...
CVE-2024-36887
In the Linux kernel, the following vulnerability has been resolved: e1000e: change usleeprange to udelay in PHY mdic access This is a partial revert of commit 6dbdd4de0362 "e1000e: Workaround for sporadic MDI error on Meteor Lake systems". The referenced commit used usleeprange inside the PHY...
CVE-2024-36887 e1000e: change usleep_range to udelay in PHY mdic access
In the Linux kernel, the following vulnerability has been resolved: e1000e: change usleeprange to udelay in PHY mdic access This is a partial revert of commit 6dbdd4de0362 "e1000e: Workaround for sporadic MDI error on Meteor Lake systems". The referenced commit used usleeprange inside the PHY...
CVE-2024-36887
CVE-2024-36887 affects the Linux kernel: the e1000e PHY mdic access code originally used usleep_range inside atomic contexts, causing potential kernel panics. A partial revert of a prior workaround reintroduced this by switching usleep_range calls to udelay. The fix is to revert to using usleep_r...
CVE-2024-36887
In the Linux kernel, the following vulnerability has been resolved: e1000e: change usleeprange to udelay in PHY mdic access This is a partial revert of commit 6dbdd4de0362 "e1000e: Workaround for sporadic MDI error on Meteor Lake systems". The referenced commit used usleeprange inside the PHY...
Memory corruption vulnerability in Microsoft Edge; MilesightVPN and router could be taken over
Since the beginning of July, Cisco Talos has published 40 vulnerability advisories affecting a range of software and hardware, including the Microsoft Edge browser. In our new series called "Vulnerability Roundup," well be recapping the vulnerabilities we recently disclosed to provide readers wit...
CVE-2023-36887
creationtimestamp| type| source ---|---|--- 2023-07-14 22:22:33+00:00| seen| https://t.me/cibsecurity/66747...
CVE-2023-36887 Microsoft Edge (Chromium-based) Remote Code Execution Vulnerability
...
CVE-2023-36887
CVE-2023-36887 affects Microsoft Edge (Chromium-based). Talos details a memory corruption/type confusion vulnerability in the MSDCPDF Javascript implementation used to process Acrobat-based PDFs, exploitable via specially crafted PDF documents. Affected Edge versions include 112.0.1722.58 and 114...
Microsoft Edge (Chromium) < 114.0.1823.82 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 114.0.1823.82. It is, therefore, affected by multiple vulnerabilities as referenced in the July 13, 2023 advisory. - Microsoft Edge for Android Chromium-based Tampering Vulnerability CVE-2023-36888 - Microsoft Edge for...
KLA50888 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft Edge for iOS can be exploited remotely to spoof user...
CVE-2022-36887
creationtimestamp| type| source ---|---|--- 2022-07-27 18:52:44+00:00| seen| https://t.me/cibsecurity/47109...
CVE-2022-36887
A cross-site request forgery CSRF vulnerability in Jenkins Job Configuration History Plugin 1155.v28a46acc06a5 and earlier allows attackers to delete entries from job, agent, and system configuration history, or restore older versions of job, agent, and system configurations...
CVE-2022-36887
CVE-2022-36887 is a CSRF vulnerability in Jenkins Job Configuration History Plugin (versions up to 1155.v28a_46a_cc06a_5). The issue allows an attacker to delete entries from job, agent, and system configuration history or restore older configurations by convincing a user to perform unwanted acti...
CVE-2021-36887
Cross-Site Request Forgery CSRF vulnerability leading to Cross-Site Scripting XSS discovered in tarteaucitron.js – Cookies legislation & GDPR WordPress plugin versions = 1.5.4, vulnerable parameters "tarteaucitronEmail" and "tarteaucitronPass"...
CVE-2021-36887 WordPress tarteaucitron.js – Cookies legislation & GDPR plugin <= 1.5.4 - Cross-Site Request Forgery (CSRF) vulnerability leading to Cross-Site Scripting (XSS)
Cross-Site Request Forgery CSRF vulnerability leading to Cross-Site Scripting XSS discovered in tarteaucitron.js – Cookies legislation & GDPR WordPress plugin versions = 1.5.4, vulnerable parameters "tarteaucitronEmail" and "tarteaucitronPass"...