CVE-2026-41125

creationtimestamp| type| source ---|---|--- 2026-05-12 12:13:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlnr6ey4dn2c...

CVE-2024-41125

Contiki-NG is an open-source, cross-platform operating system for IoT devices. An out-of-bounds read of 1 byte can be triggered when sending a packet to a device running the Contiki-NG operating system with SNMP enabled. The SNMP module is disabled in the default Contiki-NG configuration. The...

Ubuntu: Security Advisory (USN-7476-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-41125 Out-of-bounds read in SNMP when decoding a string in Contiki-NG

Contiki-NG is an open-source, cross-platform operating system for IoT devices. An out-of-bounds read of 1 byte can be triggered when sending a packet to a device running the Contiki-NG operating system with SNMP enabled. The SNMP module is disabled in the default Contiki-NG configuration. The...

CVE-2024-41125 Out-of-bounds read in SNMP when decoding a string in Contiki-NG

Contiki-NG is an open-source, cross-platform operating system for IoT devices. An out-of-bounds read of 1 byte can be triggered when sending a packet to a device running the Contiki-NG operating system with SNMP enabled. The SNMP module is disabled in the default Contiki-NG configuration. The...

CVE-2022-41125

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability...

Microsoft Windows Multiple Vulnerabilities (KB5019964)

This host is missing a critical security update according to Microsoft KB5019964 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2022-41125 Windows CNG Key Isolation Service Elevation of Privilege Vulnerability

...

Microsoft Windows Multiple Vulnerabilities (KB5019959)

This host is missing an important security update according to Microsoft KB5019959 SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescriptio...

CVE-2022-41125

CVE-2022-41125 affects Windows CNG Key Isolation Service (Windows Cryptographic Next Generation). The underlying issue is an Elevation of Privilege in that service, enabling an authenticated attacker to gain SYSTEM privileges. Patch guidance is to install the Microsoft updates for this CVE (per M...

CVE-2022-41125

Windows CNG Key Isolation Service Elevation of Privilege Vulnerability Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

CVE-2022-41125

creationtimestamp| type| source ---|---|--- 2022-11-08 20:27:53+00:00| published-proof-of-concept| https://t.me/alexmakus/4847 2022-11-09 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=913 2022-11-09 14:40:05+00:00| seen| https://t.me/truesecator/3680 2022-11-10...

KB5019980: Windows 11 22H2 Security Update (November 2022)

The remote Windows host is missing security update 5019980. It is, therefore, affected by multiple vulnerabilities - AMD: CVE-2022-23824 IBPB and Return Address Predictor Interactions CVE-2022-23824 - Windows Group Policy Elevation of Privilege Vulnerability CVE-2022-37992, CVE-2022-41086 - Windo...

Microsoft Windows CNG Key Isolation Service Elevation of Privilege (CVE-2022-41125)

An elevation of privilege vulnerability exists in Microsoft Windows. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

[SECURITY] [DLA 2950-1] python-scrapy security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2950-1 [email protected] https://www.debian.org/lts/security/ Emilio Pozuelo Monfort March 16, 2022 https://wiki.debian.org/LTS -...

Debian DLA-2950-1 : python-scrapy - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2950 advisory. It was found that Scrapy, a framework for extracting data from websites, could send HTTP Authorization as well as cookies to other domains in case of redirections,...

article-extract (>=0.1.2 <=0.1.3), bookscrape (>=0.0.1.dev1 <=0.0.2b7) +19 more potentially affected by CVE-2021-41125 via scrapy (>=1.3.3 <=1.8.0)

scrapy PYPI version =1.3.3, =0.1.2, =0.0.1.dev1, =1.2.1.20160901, =0.0.5, =0.0.20, =0.9.3, =0.0.1, =1.0.0, =1.0.0, =1.7.2, =1.1.0, =0.1.0, =0.2.3, =0.0.1, =0.1.5, =0.1.8 and more Source cves: CVE-2021-41125 Source advisory: OSV:PYSEC-2021-363...

2adif (=0.1.0), addgene-mcp (>=0.1.0 <=0.1.3) +542 more potentially affected by CVE-2021-41125 via scrapy (>=2.0.1 <=2.5.0)

scrapy PYPI version =2.0.1, =0.1.0, =0.10.0, =0.0.1, =0.1.4, =1.0.0, =0.0.1, =1.0.0, =0.0.24, =2.9.3, =0.2.3, =1.2.0, =1.5.0 and more Source cves: CVE-2021-41125 Source advisory: OSV:GHSA-JWQP-28GF-P498...

article-extract (>=0.1.2 <=0.1.3), bookscrape (>=0.0.1.dev1 <=0.0.2b7) +19 more potentially affected by CVE-2021-41125 via scrapy (>=1.3.3 <=1.8.0)

scrapy PYPI version =1.3.3, =0.1.2, =0.0.1.dev1, =1.2.1.20160901, =0.0.5, =0.0.20, =0.9.3, =0.0.1, =1.0.0, =1.0.0, =1.7.2, =1.1.0, =0.1.0, =0.2.3, =0.0.1, =0.1.5, =0.1.8 and more Source cves: CVE-2021-41125 Source advisory: OSV:GHSA-JWQP-28GF-P498...

CVE-2021-41125 HTTP authentication credential leak to target websites in scrapy

Scrapy is a high-level web crawling and scraping framework for Python. If you use HttpAuthMiddleware i.e. the httpuser and httppass spider attributes for HTTP authentication, all requests will expose your credentials to the request target. This includes requests generated by Scrapy components, su...