1byte-react-design (>=1.7.1 <=1.14.0), 1g6table (=0.1.0) +1587 more potentially affected by unknown CVE via @antv/event-emitter (=0.1.3)

@antv/event-emitter NPM version =0.1.3 is affected by a known vulnerability. The following packages have a transitive dependency on @antv/event-emitter and may be impacted: - 1byte-react-design =1.7.1, =1.1.0, =0.1.1, =0.1.1, =0.1.0, =0.0.2, =0.0.9, =0.1.2, =1.1.43, =0.9.1, =5.0.48, =1.0.1, =1.1....

CVE-2026-3879

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Equipment Mailbox Details report...

CVE-2026-3879

creationtimestamp| type| source ---|---|--- 2026-04-03 13:19:05+00:00| seen| Telegram/YV8cS3UbatxDTGe0fjayhbeNknefcE-s36BQ9lt853A06hI 2026-04-05 03:00:14+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mipqzw7kan2a...

CVE-2026-3879

Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Equipment Mailbox Details report...

EUVD-2026-3879

A maliciously crafted HTML payload, stored in a component’s description and clicked by a user, can trigger a Stored Cross-site Scripting XSS vulnerability in the Autodesk Fusion desktop application. A malicious actor may leverage this vulnerability to read local files or execute arbitrary code in...

CGA-3879-HQM8-2GXP

Bulletin has no description...

EUVD-2020-3879

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2015-3879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Media Player Framework in Android before 5.1.1 LMY48T allows attackers to gain privileges via a crafted application, aka internal bug 23223325. CVE-2015-3879 No...

Linux Distros Unpatched Vulnerability : CVE-2016-3879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm-wt-22k/libsrc/easmdls.c in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 allows remote attacker...

CVE-2025-3879

Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. Fixed in Vault Community Edition 1.19.1 and Vault Enterprise 1.19.1, 1.18.7, 1.17.14, 1.16.18...

CVE-2025-3879

creationtimestamp| type| source ---|---|--- 2025-05-02 17:16:30+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114439368851563083 2025-05-02 17:16:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14533 2025-05-02 17:34:21+00:00| seen|...

CVE-2025-3879

Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. Fixed in Vault Community Edition 1.19.1 and Vault Enterprise 1.19.1, 1.18.7, 1.17.14, 1.16.18...

CVE-2025-3879

Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. Fixed in Vault Community Edition 1.19.1 and Vault Enterprise 1.19.1, 1.18.7, 1.17.14, 1.16.18...

CVE-2025-3879 Vault’s Azure Authentication Method bound_location Restriction Could be Bypassed on Login

Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. Fixed in Vault Community Edition 1.19.1 and Vault Enterprise 1.19.1, 1.18.7, 1.17.14, 1.16.18...

CVE-2025-3879 Vault’s Azure Authentication Method bound_location Restriction Could be Bypassed on Login

Vault Community, Vault Enterprise “Vault” Azure Auth method did not correctly validate the claims in the Azure-issued token, resulting in the potential bypass of the boundlocations parameter on login. Fixed in Vault Community Edition 1.19.1 and Vault Enterprise 1.19.1, 1.18.7, 1.17.14, 1.16.18...

Linux Distros Unpatched Vulnerability : CVE-2010-3879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FUSE, possibly 2.8.5 and earlier, allows local users to create mtab entries with arbitrary pathnames, and consequently unmount any filesystem, via a symlink...

Debian: Security Advisory (DLA-3879-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 5 : fuse (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - fuse: unprivileged user can unmount arbitrary locations via symlink attack CVE-2010-3879 - fuse: incorrec...

CVE-2024-3879

CVE-2024-3879 concerns the Tenda W30E router (firmware 1.0.1.25(633)). The vulnerability is a stack-based overflow in the function formSetCfm of the file /goform/setcfm, triggered by manipulating the funcpara1 parameter. It allows remote exploitation and has been publicly disclosed. Connected sou...

CVE-2023-3879

creationtimestamp| type| source ---|---|--- 2023-07-25 07:26:30+00:00| seen| https://t.me/cibsecurity/67192...