CVE-2026-40923 vulnerabilities

Vulnerabilities for packages: tekton-chains-fips, tkn-fips, tekton-pipelines-fips, tekton-chains, tekton-pipelines, tkn...

CVE-2026-40923

creationtimestamp| type| source ---|---|--- 2026-04-21 22:26:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjzzosxhc62c...

Fedora: Security Advisory (FEDORA-2025-ca07c36a0a)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MAL-2025-40923 Malicious code in zephyr_rcdso_g3joj_glow (npm)

The package zephyrrcdsog3jojglow was found to contain malicious code...

Linux Distros Unpatched Vulnerability : CVE-2025-40923

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the...

CVE-2025-40923

creationtimestamp| type| source ---|---|--- 2025-07-16 14:11:47+00:00| seen| https://seclists.org/oss-sec/2025/q3/46 2025-07-16 16:22:54+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lu3tb2ujef2d...

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

CVE-2025-40923 Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

CVE-2025-40923

Plack-Middleware-Session before version 0.35 for Perl generates session ids insecurely. The default session id generator returns a SHA-1 hash seeded with the built-in rand function, the epoch time, and the PID. The PID will come from a small set of numbers, and the epoch time may be guessed, if i...

SUSE SLES15 Security Update : kernel (SUSE-SU-2024:2896-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2896-1 advisory. The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

CVE-2024-40923

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3rqcreate fails to allocate memory for rq-dataring.base, the subsequent call to vmxnet3rqdestroyallrxdataring does not reset rq-dataring.descsize for the data rin...

CVE-2024-40923 vmxnet3: disable rx data ring on dma allocation failure

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3rqcreate fails to allocate memory for rq-dataring.base, the subsequent call to vmxnet3rqdestroyallrxdataring does not reset rq-dataring.descsize for the data rin...

CVE-2024-40923 vmxnet3: disable rx data ring on dma allocation failure

In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3rqcreate fails to allocate memory for rq-dataring.base, the subsequent call to vmxnet3rqdestroyallrxdataring does not reset rq-dataring.descsize for the data rin...

CVE-2023-40923

MyPrestaModules ordersexport before v5.0 was discovered to contain multiple SQL injection vulnerabilities at send.php via the key and savesetting parameters...

CVE-2023-40923

The CVE-2023-40923 vulnerability affects the PrestaShop add-on MyPrestaModules Orders Export Pro (ordersexport) prior to v5.0. Multiple SQL injection flaws exist in send.php reachable via the key and save_setting parameters, potentially impacting confidentiality, integrity, and availability. CVSS...

CVE-2023-40923

MyPrestaModules ordersexport before v5.0 was discovered to contain multiple SQL injection vulnerabilities at send.php via the key and savesetting parameters...

apkutils (>=1.0.2 <=1.0.4), autoit-ripper (>=1.0.0 <=1.0.1) +7 more potentially affected by CVE-2022-40923 via lief (>=0.10.1 <=0.12.1)

lief PYPI version =0.10.1, =1.0.2, =1.0.0, =0.0.0, =0.0.1, =1.0.0, =1.0.1 - pyqbdl =0.1.0 - pysigtool =0.1.4 Source cves: CVE-2022-40923 Source advisory: OSV:PYSEC-2022-43139...

CVE-2022-40923

A vulnerability in the LIEF::MachO::SegmentCommand::virtualaddress function of LIEF v0.12.1 allows attackers to cause a denial of service DOS through a segmentation fault via a crafted MachO file...