MINI-3898-C37Q-5C35

Bulletin has no description...

AlmaLinux 8 : osbuild-composer (ALSA-2026:3898)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3898 advisory. golang: net/url: Memory exhaustion in query parameter parsing in net/url CVE-2025-61726 crypto/tls: Unexpected session resumption in crypto/tls...

RHSA-2026:3898 Red Hat Security Advisory: osbuild-composer security update

Bulletin has no description...

EUVD-2026-3898

Missing Authorization vulnerability in e-plugins ListingHub listinghub allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ListingHub: from n/a through = 1.2.7...

MiracleLinux 8 : [security - high] nodejs:16 (AXSA:2022-3898:01)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2022-3898:01 advisory. nodejs: weak randomness in WebCrypto keygen CVE-2022-35255 nodejs: HTTP Request Smuggling due to incorrect parsing of header fields CVE-2022-35256...

MINI-3898-55X7-FCQ7

Bulletin has no description...

MINI-Q7XG-3898-58J3

Bulletin has no description...

EUVD-2018-3898

Malware in sbrugna...

CVE-2025-3898

CWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an authenticated malicious user sends HTTPS request containing invalid data type to the webserver...

CVE-2025-3898

creationtimestamp| type| source ---|---|--- 2025-06-10 09:33:18+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17857 2025-06-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-175-03 2025-06-25 10:49:24+00:00| published-proof-of-concept| https://t.me/icscert/1198...

CVE-2025-3898

CWE-20: Improper Input Validation vulnerability exists that could cause Denial of Service when an authenticated malicious user sends HTTPS request containing invalid data type to the webserver...

CVE-2025-3898

CVE-2025-3898 affects Schneider Electric Modicon Controllers (M241/M251/M258/LMC058/M262). Affected components are in the Modicon Controllers’ web-facing/management interfaces where improper input validation allows an authenticated attacker to send HTTPS requests with invalid data (data types, ma...

Linux Distros Unpatched Vulnerability : CVE-2020-3898

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated...

CVE-2022-3898

The WP Affiliate Platform plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 6.3.9. This is due to missing or incorrect nonce validation on various functions including the affiliatesmenu method. This makes it possible for unauthenticated attackers t...

SUSE: Security Advisory (SUSE-SU-2024:3898-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Rocky Linux 8 : cups (RLSA-2020:4469)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2020:4469 advisory. - A memory corruption issue was addressed with improved validation. This issue is fixed in macOS Catalina 10.15.4. An application may be able to gain elevated...

SUSE: Security Advisory (SUSE-SU-2023:3898-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 7 : cloud-init (ELSA-2020-3898)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2020-3898 advisory. - Resolves: bz1574338 CVE-2018-10896 cloud-init: SSH host keys are not regenerated for the new instances rhel-7 - Resolves: bz1812170 CVE-2020-8632...

CVE-2023-3898

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mAyaNet E-Commerce Software allows SQL Injection. This issue affects E-Commerce Software: before 1.1...

CVE-2023-3898 SQLi in mAyaNets E-Commerce Software

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in mAyaNet E-Commerce Software allows SQL Injection. This issue affects E-Commerce Software: before 1.1...