CVE-2025-36895

Information disclosure...

Linux Distros Unpatched Vulnerability : CVE-2024-36895

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: use correct buffer size when parsing configfs lists This commit fixes uvc...

CVE-2022-36895

A missing permission check in Jenkins Compuware Topaz Utilities Plugin 1.0.8 and earlier allows attackers with Overall/Read permission to enumerate hosts and ports of Compuware configurations and credentials IDs of credentials stored in Jenkins...

BELL-CVE-2024-36895

Bulletin has no description...

CVE-2024-36895

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: use correct buffer size when parsing configfs lists This commit fixes uvc gadget support on 32-bit platforms. Commit 0df28607c5cb "usb: gadget: uvc: Generalise helper functions for reuse" introduced a helper...

CVE-2024-36895

The CVE-2024-36895 issue in the Linux kernel affects usb gadget uvc configfs parsing. A heap-allocated temp buffer used by __uvcg_iter_item_entries() was not constrained by a computed max size (previously size-checked via sizeof()), causing overly small max item sizes on some architectures (7 byt...

Security Updates for Microsoft Office Products (Aug 2023) (macOS)

The version of Microsoft Office for Mac installed on the remote host is affected by multiple vulnerabilities as referenced in the august-15-2023 advisory. - Microsoft Office Remote Code Execution Vulnerability CVE-2023-35371 - Microsoft Excel Remote Code Execution Vulnerability CVE-2023-36896 -...

CVE-2023-36895

creationtimestamp| type| source ---|---|--- 2023-08-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1086 2023-08-16 02:45:23+00:00| seen| https://t.me/CyberWatchinsider/26...

Security Updates for Microsoft Word Products (August 2023)

The Microsoft Word Products are missing a security update. It is, therefore, affected by a vulnerability and missing a defense-in-depth security update. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 8090...

Microsoft Word 2013 Service Pack 1 Defense in Depth Security Update (KB5002445)

This host is missing a critical security update according to Microsoft KB5002445 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft Word 2016 Defense in Depth Security Update (KB5002464)

This host is missing a critical security update according to Microsoft KB5002464 SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-36895

Microsoft Outlook Remote Code Execution Vulnerability...

CVE-2023-36895 Microsoft Outlook Remote Code Execution Vulnerability

...

CVE-2023-36895

CVE-2023-36895 is a Microsoft Outlook Remote Code Execution Vulnerability documented across multiple sources. Affected product: Outlook (part of Microsoft Office). Root cause and exact vulnerable component are not detailed in the provided documents, but the CVSS indicates a local, low-complexity ...

CVE-2023-36895 Microsoft Outlook Remote Code Execution Vulnerability

...

CVE-2022-36895

creationtimestamp| type| source ---|---|--- 2022-07-27 18:49:44+00:00| seen| https://t.me/cibsecurity/47090 2025-10-20 06:47:03+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3m3m7s2zjxmc2...

CVE-2022-36895

CVE-2022-36895 affects Jenkins Compuware Topaz Utilities Plugin (versions 1.0.8 and earlier). The vulnerability is a missing permission check in several HTTP endpoints, allowing attackers with Overall/Read permission to enumerate hosts and ports of Compuware configurations and credentials IDs sto...

CVE-2021-36895

creationtimestamp| type| source ---|---|--- 2022-04-26 22:37:18+00:00| seen| https://t.me/cibsecurity/41448...

CVE-2021-36895

CVE-2021-36895: Unauthenticated XSS in WordPress Tripetto plugin versions <= 5.1.4 via SVG image upload. Root cause per CNVD/CNNVD entries is lack of filtering/escaping for uploaded SVG data. Affected: Tripetto WordPress plugin

CVE-2021-36895 WordPress Tripetto plugin <= 5.1.4 - Unauthenticated Cross-Site Scripting (XSS) vulnerability via SVG image upload

Unauthenticated Cross-Site Scripting XSS vulnerability in Tripetto's Tripetto plugin = 5.1.4 on WordPress via SVG image upload...