ROOT-OS-DEBIAN-12-CVE-2025-38456 CVE-2025-38456 in rootio-linux - Patched by Root

Root has patched CVE-2025-38456 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-UBUNTU-2404-CVE-2025-38456 CVE-2025-38456 in rootio-linux - Patched by Root

Root has patched CVE-2025-38456 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

Linux Distros Unpatched Vulnerability : CVE-2025-38456

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmicreateuser The intf list iterator is...

CVE-2025-38456

CVE-2025-38456 concerns Linux kernel ipmi:msghandler memory corruption in ipmi_create_user(). The bug is triggered when the ipmi interface iterator (intf) pointer is invalid (correct intf_num not found); calling atomic_dec on this invalid pointer can corrupt memory. A fix updates the intf path (i...

CVE-2024-38456

HIGH-LEIT V05.08.01.03 and HIGH-LEIT V04.25.00.00 to 4.25.01.01 for Windows from Vivavis contain an insecure file and folder permissions vulnerability in prunsrv.exe. A regular user non-admin can exploit the weak folder and file permissions to escalate privileges and execute arbitrary code in the...

CVE-2023-38456

In vowifiservice, there is a possible missing permission check.This could lead to local escalation of privilege with no additional execution privileges...

CVE-2024-38456

creationtimestamp| type| source ---|---|--- 2024-09-03 20:49:10+00:00| seen| https://t.me/cvedetector/4703...

CVE-2023-38456

creationtimestamp| type| source ---|---|--- 2023-09-04 07:22:16+00:00| seen| https://t.me/cibsecurity/69747...

CVE-2023-38456

CVE-2023-38456 affects vowifiservice with a missing permission check that can lead to local privilege escalation (no extra execution privileges required). This is described across multiple sources as a local escalation vulnerability with a base CVSS v3.1 score of 7.8 (HIGH) and LOCAL attack vecto...

CVE-2022-38456

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ernest Marcinko Ajax Search Lite plugin = 4.10.3 versions...

CVE-2022-38456 WordPress Ajax Search Lite Plugin <= 4.10.3 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Ernest Marcinko Ajax Search Lite plugin = 4.10.3 versions...

CVE-2022-38456

CVE-2022-38456 affects the WordPress plugin Ajax Search Lite (Ernest Marcinko) versions 4.10.3, with 4.11 explicitly cited as the fixed release. If upgrading is not immediate, mitigation should include disabling the affected Ajax path until patching.

WordPress Ajax Search Lite Plugin <= 4.10.3 is vulnerable to Sensitive Data Exposure

Software Ajax Search Lite Type Plugin Vulnerable versions = 4.10.3 Fixed in 4.11 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2022-38456 Patch priority Medium CVSS severity Medium 4.3 Developer WPdreams PSID 59c3957625b5 Credits István Márton Required...

Critical Security Flaws Reported in Moxa MXview Network Management Software

Technical details have been disclosed regarding a number of security vulnerabilities affecting Moxa's MXview web-based network management system, some of which could be chained by an unauthenticated adversary to achieve remote code execution on unpatched servers. The five security weaknesses "cou...

Critical MQTT-Related Bugs Open Industrial Networks to RCE Via Moxa

Critical security vulnerabilities in Moxa’s MXview web-based network management system open the door to an unauthenticated remote code execution RCE as SYSTEM on any unpatched MXview server, researchers warned this week. The five bugs, affecting versions 3.x to 3.2.2, score a collective 10 out of...

CVE-2021-38456

creationtimestamp| type| source ---|---|--- 2021-10-12 18:25:37+00:00| seen| https://t.me/cibsecurity/30411 2022-02-13 13:50:12+00:00| seen| https://t.me/NeKaspersky/1799 2022-02-14 17:40:00+00:00| seen| https://t.me/truesecator/2627...

CVE-2021-38456 Moxa MXview Network Management Software

A use of hard-coded password vulnerability in the Moxa MXview Network Management software Versions 3.x to 3.2.2 may allow an attacker to gain access through accounts using default passwords...

CVE-2021-38456

CVE-2021-38456 affects Moxa MXview Network Management Software versions 3.x–3.2.2 and is caused by the use of hard-coded passwords. Impacted actors could gain access through default credentials, with a user impact described as high. The related materials indicate a high-severity, remotely exploit...