CVE-2026-4182

creationtimestamp| type| source ---|---|--- 2026-03-16 10:30:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116238387116527124 2026-03-19 21:00:13+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3mhgvhg7o3w2i...

MiracleLinux 7 : python-urllib3-1.10.2-7.el7 (AXSA:2019-4182:01)

The remote MiracleLinux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2019-4182:01 advisory. python-urllib3: Cross-host redirect does not remove Authorization header allow for credential exposure CVE-2018-20060 python-urllib3: CRLF injection...

CVE-2025-4182

A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the component BELL Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the...

CVE-2025-4182

creationtimestamp| type| source ---|---|--- 2025-05-01 23:17:57+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14413 2025-05-02 02:01:23+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lo5q5bzkq62r 2025-05-02 03:23:35+00:00| exploited|...

CVE-2025-4182

A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the component BELL Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the...

CVE-2025-4182 PCMan FTP Server BELL Command buffer overflow

A vulnerability was found in PCMan FTP Server 2.0.7. It has been rated as critical. Affected by this issue is some unknown functionality of the component BELL Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the...

Linux Distros Unpatched Vulnerability : CVE-2021-4182

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crash in the RFC 7468 dissector in Wireshark 3.6.0 and 3.4.0 to 3.4.10 allows denial of service via packet injection or crafted capture file CVE-2021-4182 Note...

Photon OS 4.0: Cups PHSA-2023-4.0-0425

An update of the cups package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0425. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

RHEL 9 : wireshark (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - wireshark: Kafka dissector infinite loop CVE-2021-4190 - Crash in the Sysdig Event dissector in Wireshark...

GLSA-202311-11 : QtWebEngine: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202311-11 QtWebEngine: Multiple Vulnerabilities - Heap buffer overflow in WebRTC in Google Chrome prior to 103.0.5060.114 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CVE-2022-2294 -...

Oracle Linux 6 : kernel (ELSA-2020-4182)

The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-4182 advisory. 2.6.32-754.35.1.OL6 - Update genkey bug 25599697 2.6.32-754.35.1 - ata libata: fix NULL sdev dereference race in atapiqccomplete Kenneth Yin 1876296...

CVE-2023-4182

A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file editsell.php. The manipulation of the argument uppid leads to sql injection. It is possible to initiate the attack remotely. The identifier...

CVE-2023-4182

SourceCodester Inventory Management System 1.0 has a SQL injection vulnerability in edit_sell.php via the up_pid parameter. The issue is described as critical and allows remote exploitation, with no public patch version specified in the provided documents. Some sources advise avoiding the up_pid ...

Security fix for the ALT Linux 10 package yandex-browser-stable version 23.1.2.1033-alt1

23.1.2.1033-alt1 built April 4, 2023 Yandex Browser Team in task 317282 March 20, 2023 Yandex Browser Team - browser updated to 23.1.2 + High CVE-2022-4436: Use after free in Blink Media. + High CVE-2022-4437: Use after free in Mojo IPC. + High CVE-2022-4438: Use after free in Blink Frames. + Hig...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-038)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-038 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...

Amazon Linux 2022 : wireshark (ALAS2022-2022-226)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2022-2022-226 advisory. - NULL pointer exception in the IPPUSB dissector in Wireshark 3.4.0 to 3.4.9 allows denial of service via packet injection or crafted capture file CVE-2021-39920 - NULL pointer exception in the...

Updated chromium-browser-stable packages fix security vulnerability

The chromium-browser-stable package has been updated to the new 108 branch with the 108.0.5359.94 release, fixing many bugs and 29 vulnerabilities, together with 107.0.5304.121 and 108.0.5359.71. Some of the security fixes are - CVE-2022-4174: Type Confusion in V8. Reported by Zhenghang Xiao...

Chromium: CVE-2022-4182 Inappropriate implementation in Fenced Frames

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2022-4182

CVE-2022-4182 concerns Google Chrome’s Fenced Frames implementation. Affected software: Google Chrome (Chromium-based) prior to version 108.0.5359.71. Root cause: Inappropriate implementation of Fenced Frames allowed a remote attacker to bypass fenced frame restrictions via a crafted HTML page. I...

CVE-2022-4182

Inappropriate implementation in Fenced Frames in Google Chrome prior to 108.0.5359.71 allowed a remote attacker to bypass fenced frame restrictions via a crafted HTML page. Chromium security severity: Medium...