22 matches found
EUVD-2025-38638
Malicious code in yanti-mendut80-miaww npm...
BELL-CVE-2025-38638
Bulletin has no description...
CVE-2025-38638
In the Linux kernel, the following vulnerability has been resolved: ipv6: add a retry logic in net6rtnotify inet6rtnotify can be called under RCU protection only. This means the route could be changed concurrently and rt6fillnode could return -EMSGSIZE. Re-size the skb when this happens and retry...
MAL-2025-38638 Malicious code in vreb3 (npm)
The package vreb3 was found to contain malicious code...
QNAP QTS Out-of-bounds Write Vulnerability (QSA-24-52)
QNAP QTS is prone to an out-of-bounds write vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qts"; ifdescripti...
CVE-2024-38638
creationtimestamp| type| source ---|---|--- 2025-03-07 20:48:14+00:00| seen| https://t.me/cvedetector/19856 2025-08-16 01:45:14+00:00| seen| MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0 2025-08-19 04:06:35+00:00| seen| MISP/4d9e0694-2872-4bfc-8eee-f1ab846c5ab0...
CVE-2024-38638
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to modify or corrupt memory. QTS 5.2.x/QuTS hero h5.2.x are not affected. We have already fixe...
CVE-2024-38638
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to modify or corrupt memory. QTS 5.2.x/QuTS hero h5.2.x are not affected. We have already fixe...
CVE-2024-38638 QTS, QuTS hero
An out-of-bounds write vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained administrator access to modify or corrupt memory. QTS 5.2.x/QuTS hero h5.2.x are not affected. We have already fixe...
CVE-2024-38638
CVE-2024-38638 describes an out-of-bounds write affecting several QNAP OS versions. Affected products include QTS and QuTS hero; QTS 5.2.x and QuTS hero h5.2.x are not affected. The root cause is an out-of-bounds write that could allow remote attackers who have gained administrator access to modi...
CVE-2022-38638
creationtimestamp| type| source ---|---|--- 2022-09-10 01:23:07+00:00| seen| https://t.me/cibsecurity/49562...
CVE-2022-38638
Casdoor v1.97.3 was discovered to contain an arbitrary file write vulnerability via the fullFilePath parameter at /api/upload-resource...
CVE-2022-38638
Casdoor v1.97.3 was discovered to contain an arbitrary file write vulnerability via the fullFilePath parameter at /api/upload-resource...
CVE-2022-38638
Casdoor v1.97.3 is affected by an arbitrary file-write vulnerability exploitable via the fullFilePath parameter in /api/upload-resource. The CVE-2022-38638 entry is rated CRITICAL (CVSS 3.1: AV=N, AC=L, PR=N, UI=N, S=U, C=N, I=H, A=H) with network access and no user interaction. Root cause, impac...
CVE-2021-38638
creationtimestamp| type| source ---|---|--- 2021-09-15 16:22:17+00:00| seen| https://t.me/cibsecurity/28878...
CVE-2021-38638
CVE-2021-38638 corresponds to a Windows Elevation of Privilege vulnerability in the Windows Ancillary Function Driver for WinSock. According to the NVD entry, the issue has a CVSS v3.1 base score of 7.8 (High) with LOCAL attack vector, LOW attack complexity, and privileges required set to LOW; co...
Microsoft Windows Multiple Vulnerabilities (KB5005568)
This host is missing a critical security update according to Microsoft KB5005568 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KLA12289 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, cause denial of service, spoof user interface, execute arbitrary code. Below is a complete list of vulnerabilitie...
KB5005568: Windows 10 Version 1809 and Windows Server 2019 September 2021 Security Update
The remote Windows host is missing security update 5005568. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-36954, CVE-2021-36955, CVE-2021-36963, CVE-2021-36964, CVE-2021-36966,...
KB5005607: Windows Server 2012 September 2021 Security Update
The remote Windows host is missing security update 5005607 or cumulative update 5005623. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-36955, CVE-2021-36963, CVE-2021-36964,...