Dark Web Market Lists Alleged 375TB Lockheed Martin Data for $600M

A dark web market known as Threat Market is listing 375TB of Lockheed Martin data, which it claims was provided by a group calling itself ‘APT Iran.’...

Unity Linux 20.1070e Security Update: xterm (UTSA-2025-680592)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-680592 advisory. xterm before 375 allows code execution via font ops, e.g., because an OSC 50 response may have Ctrl-g and therefore lead to command execution within the vi...

OPENSUSE-SU-2024:12505-1 xterm-375-2.1 on GA media

These are all security issues fixed in the xterm-375-2.1 package on the GA media of openSUSE Tumbleweed...

UBUNTU-CVE-2024-25385

An issue in flvmeta v.1.2.2 allows a local attacker to cause a denial of service via the flvmeta/src/flv.c:375:21 function in flvclose...

Fortinet FortiWeb DoS in firmware upgrade function (FG-IR-22-375)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-375 advisory. - A loop with unreachable exit condition 'infinite loop' in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS version 7.0....

Fortinet Fortigate DoS in firmware upgrade function (FG-IR-22-375)

The version of Fortigate installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-22-375 advisory. - A loop with unreachable exit condition 'infinite loop' in Fortinet FortiOS version 7.2.0 through 7.2.4, FortiOS version 7.0...

Vulnerabilities fixed in Xen

Vulnerabilities have been fixed in Xen. The vulnerabilities allow a malicious person to perform attacks that result in the following categories of damage: Denial-of-Service DoS. Access to system data Increased user privileges The vulnerabilities with CVE core core CVE-2021-0089 and CVE-2021-28692...

openSUSE Security Update : bind (openSUSE-2021-375)

This update for bind fixes the following issues : - CVE-2020-8625: A vulnerability in BIND's GSSAPI security policy negotiation can be targeted by a buffer overflow attack bsc1182246 This update was imported from the SUSE:SLE-15:Update update project. C Tenable Network Security, Inc. The...

CVE-2018-20921

cPanel before 70.0.23 allows stored XSS via a WHM "Delete a DNS Zone" action SEC-375...

CVE-2018-20921

CVE-2018-20921: cPanel before 70.0.23 allows a stored XSS via the WHM action “Delete a DNS Zone” (SEC-375). The event is triggered by unvalidated data in the DNS zone deletion workflow within WHM. The available documents consistently describe the vulnerability as stored XSS affecting cPanel/WHM p...

CVE-2017-2747

HP has identified a potential security vulnerability before IG110000.10 for DesignJet T790, T795, T1300, T2300, before MRY040500.5 for DesignJet T920, T930, T1500, T1530, T2500, T2530, before AENEAS030400.9 for DesignJet T3500, before NEXUS011200.11 for Latex 310, 330, 360, 370, before...

Ubuntu: Security Advisory (USN-3305-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-0351

All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential escalation of privileges...

USN-3240-1: NVIDIA graphics drivers vulnerability

It was discovered that the NVIDIA graphics drivers contained a flaw in the kernel mode layer. A local attacker could use this issue to cause a denial of service...

USN-3173-2 nvidia-graphics-drivers-375 vulnerability

USN-3173-1 fixed a vulnerability in nvidia-graphics-drivers-304 and nvidia-graphics-drivers-340. This update provides the corresponding update for nvidia-graphics-drivers-375. Original advisory details: It was discovered that the NVIDIA graphics drivers contained a flaw in the kernel mode layer. ...

Ubuntu: Security Advisory (USN-3173-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

bloomberg.com XSS vulnerability

Vulnerable URL: http://www.bloomberg.com/quote/ASD"%3CSVG%3E%3CSCRIPT+XLINK:HREF=DATA:,%26%23X61%3B%26%23X6C%3B%26%23X65%3B%26%23X72%3B%26%23X74%3B%28%27OPENBUGBOUNTY%27%29%20%3E%3C/SCRIPT%3E:MK Details: Description| Value ---|--- Patched:| No Latest check for patch:| 11.08.2017 Vulnerability...

Amazon Linux: Security Advisory (ALAS-2014-375)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : mod24_wsgi (ALAS-2014-375)

It was found that modwsgi did not properly drop privileges if the call to setuid failed. If modwsgi was set up to allow unprivileged users to run WSGI applications, a local user able to run a WSGI application could possibly use this flaw to escalate their privileges on the system. Note: modwsgi i...

OpenBSD 4.2 - rtlabel_id2name() Local Null Pointer Dereference Denial of Service

OpenBSD 4.2 - rtlabelid2name Local Null Pointer Dereference Denial of Service / OpenBSD 4.2 rtlabelid2name SIOCGIFRTLABEL ioctl Null Pointer Dereference local Denial of Service Exploit by Hunger Advisory: http://marc.info/?l=openbsd-security-announce&m=120007327504064 FOR TESTING PURPOSES ONLY! $...