Tiny Java Web Server - Cross-Site Scripting

A reflected cross-site scripting vulnerability in the web server TTiny Java Web Server and Servlet Container TJWS =1.115 allows an adversary to inject malicious code on the server's "404 Page not Found" error page. id: CVE-2021-37573 info: name: Tiny Java Web Server - Cross-Site Scripting author:...

EUVD-2025-37573

In gnss service, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10010441; Issue ID: MSV-3967...

Linux Distros Unpatched Vulnerability : CVE-2023-37573

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitra...

CVE-2024-37573

creationtimestamp| type| source ---|---|--- 2024-10-30 20:02:53+00:00| seen| https://t.me/cvedetector/9444...

CVE-2024-37573

The Talkatone com.talkatone.android application 8.4.6 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.talkatone.vedroid.ui.launcher.OutgoingCallInterceptor component...

CVE-2024-37573

The Talkatone com.talkatone.android application 8.4.6 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.talkatone.vedroid.ui.launcher.OutgoingCallInterceptor component...

CVE-2024-37573

The issue affects Talkatone Android app (com.talkatone.android) version 8.4.6. A crafted intent to the component com.talkatone.vedroid.ui.launcher.OutgoingCallInterceptor from any other installed app (no permissions required) enables the application to place phone calls without user interaction. ...

CVE-2024-37573

The Talkatone com.talkatone.android application 8.4.6 for Android enables any installed application with no permissions to place phone calls without user interaction by sending a crafted intent via the com.talkatone.vedroid.ui.launcher.OutgoingCallInterceptor component...

CVE-2023-37573

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

CVE-2023-37573

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

CVE-2023-37573

Multiple use-after-free vulnerabilities exist in the VCD getvartoken realloc functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns the...

CVE-2023-37573

CVE-2023-37573 affects GTKWave; multiple use-after-free vulnerabilities exist in the VCD get_vartoken realloc path used by the GUI recoder VCD parser. A crafted .vcd file can lead to arbitrary code execution. Public references confirm GTKWave 3.3.115 is affected and that upstream/packaged fixes e...

GTKWave VCD get_vartoken realloc use-after-free vulnerabilities

Talos Vulnerability Report TALOS-2023-1806 GTKWave VCD getvartoken realloc use-after-free vulnerabilities January 8, 2024 CVE Number CVE-2023-37576,CVE-2023-37577,CVE-2023-37573,CVE-2023-37578,CVE-2023-37575,CVE-2023-37574 SUMMARY Multiple use-after-free vulnerabilities exist in the VCD getvartok...

Tiny Java Web Server 1.115 Cross Site Scripting

Advisory ID: SYSS-2021-042 Product: Tiny Java Web Server and Servlet Container TJWS Manufacturer: D. Rogatkin Affected Versions: = 1.115 Tested Versions: 1.107, 1.114 Vulnerability Type: Cross-Site Scripting CWE-79 Risk Level: Medium Solution Status: Fixed Manufacturer Notification: 2021-07-21...

CVE-2021-37573

creationtimestamp| type| source ---|---|--- 2021-08-09 16:37:02+00:00| seen| https://t.me/cibsecurity/27014...

CVE-2021-37573

A reflected cross-site scripting XSS vulnerability in the web server TTiny Java Web Server and Servlet Container TJWS =1.115 allows an adversary to inject malicious code on the server's "404 Page not Found" error page...

CVE-2021-37573

A reflected cross-site scripting XSS vulnerability in the web server TTiny Java Web Server and Servlet Container TJWS =1.115 allows an adversary to inject malicious code on the server's "404 Page not Found" error page...

CVE-2021-37573

CVE-2021-37573 concerns a reflected XSS in the Tiny Java Web Server and Servlet Container (TJWS)