CVE-2026-41016 vulnerabilities

Vulnerabilities for packages: airflow...

CVE-2026-41016

creationtimestamp| type| source ---|---|--- 2026-04-30 13:22:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mkppic632k2v...

airflow-clickhouse-plugin (>=1.3.0 <=1.4.0), airflow-dagfactory (=0.19.1) +26 more potentially affected by CVE-2026-41016 via apache-airflow-providers-smtp (>=2.0.1 <=2.4.0rc1)

apache-airflow-providers-smtp PYPI version =2.0.1, =1.3.0, =0.0.1, =0.9.2, =2.9.0, =1.0.0, =0.1.34, =2.10.3, =1.7.3, =1.8.0rc2, =4.3.0, =1.4.10, =0.20.1, =0.30.5rc1 and more Source cves: CVE-2026-41016 Source advisory: SNYK:PYTHON-APACHEAIRFLOWPROVIDERSSMTP-16323333...

airflow-clickhouse-plugin (>=1.3.0 <=1.4.0), airflow-dagfactory (=0.19.1) +26 more potentially affected by CVE-2026-41016 via apache-airflow-providers-smtp (>=2.0.1 <=2.4.0rc1)

apache-airflow-providers-smtp PYPI version =2.0.1, =1.3.0, =0.0.1, =0.9.2, =2.9.0, =1.0.0, =0.1.34, =2.10.3, =1.7.3, =1.8.0rc2, =4.3.0, =1.4.10, =0.20.1, =0.30.5rc1 and more Source cves: CVE-2026-41016 Source advisory: OSV:PYSEC-2026-24...

CVE-2021-41016

A improper neutralization of special elements used in a command 'command injection' in Fortinet FortiExtender version 7.0.1 and below, 4.2.3 and below, 4.1.7 and below allows an authenticated attacker to execute privileged shell commands via CLI commands including special characters...

CVE-2025-41016

creationtimestamp| type| source ---|---|--- 2025-11-24 13:18:50+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m6ew2jmocj2u 2025-11-24 15:05:47+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115605290787765122...

EUVD-2025-41016

Malicious code in galih-ketoprak22-miaww npm...

CVE-2022-41016

creationtimestamp| type| source ---|---|--- 2025-03-28 18:28:25+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/9423...

Linux Distros Unpatched Vulnerability : CVE-2024-41016

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ocfs2: strict bound check before memcmp in ocfs2xattrfindentry xattr in ocfs2 maybe 'non-indexed', which saved with additional space requested. It's better to...

openSUSE Security Advisory (SUSE-SU-2024:3984-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-5782-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2024:2940-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2940-1 advisory. The SUSE Linux Enterprise 12 SP5 kernel was updated to receive various security bugfixes. The following securi...

SUSE SLES12 Security Update : kernel (SUSE-SU-2024:2901-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2901-1 advisory. The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

SUSE-SU-2024:2901-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-42096: x86: stop playing stack games in profilepc bsc1228633. -...

SUSE-SU-2024:2892-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2024-39494: ima: Fix use-after-free on a dentry's dname.name bsc1227716. - CVE-2024-42096: x86: stop playing stack games in profilepc bsc1228633. -...

CVE-2024-41016

creationtimestamp| type| source ---|---|--- 2024-07-29 09:36:16+00:00| seen| https://t.me/cvedetector/1823...

CVE-2024-41016 ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()

In the Linux kernel, the following vulnerability has been resolved: ocfs2: strict bound check before memcmp in ocfs2xattrfindentry xattr in ocfs2 maybe 'non-indexed', which saved with additional space requested. It's better to check if the memory is out of bound before memcmp, although this...

CVE-2022-41016

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these...

CVE-2021-41016

creationtimestamp| type| source ---|---|--- 2022-02-02 14:28:17+00:00| seen| https://t.me/cibsecurity/36691...

CVE-2021-41016

CVE-2021-41016 affects Fortinet FortiExtender appliances. The issue is an improper neutralization of special elements in command input (Command Injection) that occurs via CLI commands, allowing an authenticated attacker to execute privileged shell commands. Affected firmware versions include Fort...