79 matches found
CVE-2007-4246
creationtimestamp| type| source ---|---|--- 2026-06-19 16:45:42+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/273f1de4-4095-49a6-aefc-1e68836f3562...
MINI-4246-RC38-8JRG
Bulletin has no description...
EUVD-2026-4246
Missing Authorization vulnerability in Cloudinary Cloudinary cloudinary-image-management-and-manipulation-in-the-cloud-cdn allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cloudinary: from n/a through = 3.3.0...
CVE-2010-4246
Multiple cross-site scripting XSS vulnerabilities in graph.php in pfSense 1.2.3 and 2 beta 4 allow remote attackers to inject arbitrary web script or HTML via the 1 ifnum or 2 ifname parameter, a different vulnerability than CVE-2008-1182...
CVE-2012-4246
Multiple cross-site scripting XSS vulnerabilities in lists/admin/index.php in phpList before 2.10.19 allow remote attackers to inject arbitrary web script or HTML via the 1 page parameter; or the 2 footer, 3 status, or 4 testtarget parameter in the send page...
CVE-2011-4246
The AAC codec in RealNetworks RealPlayer before 15.0.0 and Mac RealPlayer before 12.0.0.1703 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors...
AlmaLinux 8 : container-tools (ALSA-2024:4246)
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2024:4246 advisory. golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON CVE-2024-24786...
Oracle Linux 8 : container-tools (ELSA-2024-4246)
The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-4246 advisory. aardvark-dns 2:1.10.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0 - Related: Jira:RHEL-2110 2:1.9.0-1 - update to...
CVE-2024-4246 Tenda i21 formQosManageDouble_auto stack-based overflow
A vulnerability, which was classified as critical, was found in Tenda i21 1.0.0.144656. This affects the function formQosManageDoubleauto. The manipulation of the argument ssidIndex leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The identifier VDB-262137 was...
CVE-2024-4246
CVE-2024-4246 affects Tenda i21 firmware 1.0.0.14(4656). The vulnerability targets the function formQosManageDouble_auto, where manipulating the ssidIndex argument causes a stack-based buffer overflow. This enables remote initiation of an attack. Documents consistently identify the affected devic...
Oracle Linux 5 : Unbreakable Enterprise kernel (ELSA-2018-4246)
The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-4246 advisory. - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai...
SUSE CVE-2016-4246
Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code or cause a denial of service memory corruption via unspecified vectors, a different vulnerability than CVE-2016-4172,...
RHEL 7 : Red Hat JBoss Enterprise Application Platform 7.3.3 security update on RHEL 7 (Moderate) (RHSA-2020:4246)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4246 advisory. Red Hat JBoss Enterprise Application Platform 7 is a platform for Java applications based on the WildFly application runtime. This release o...
CVE-2021-4246
creationtimestamp| type| source ---|---|--- 2022-12-17 22:30:31+00:00| seen| https://t.me/cibsecurity/54809...
CVE-2021-4246
A vulnerability was found in roxlukas LMeve and classified as critical. Affected by this issue is some unknown functionality of the component Login Page. The manipulation of the argument X-Forwarded-For leads to sql injection. The attack may be launched remotely. The name of the patch is...
CVE-2021-4246
CVE-2021-4246 affects roxlukas LMeve Login Page; the vulnerability arises from manipulating the X-Forwarded-For parameter to trigger a SQL injection. The issue can be exploited remotely and a patch named 29e1ead3bb1c1fad53b77dfc14534496421c5b5d is recommended (no details on affected versions are ...
CVE-2022-4246
CVE-2022-4246 affects Kakao PotPlayer, specifically an unknown portion of the MID File Handler. The available documents report a denial-of-service condition that can be triggered remotely and note that the exploit has been disclosed publicly. No concrete affected versions or remediation are provi...
Security Bulletin: Daeja ViewONE Virtual may expose internal IP addresses (CVE-2019-4246)
Summary During certain operation Daeja ViewONE transmits the internal IP address to the client. Vulnerability Details CVEID: CVE-2019-4246 DESCRIPTION: IBM Daeja ViewONE Professional, Standard & Virtual could expose internal parameters to ViewONE clients that could be used in further attacks...
CVE-2020-4246
CVE-2020-4246 affects IBM Security Identity Governance and Intelligence (IGI) 5.2.6. The flaw is an XML External Entity (XXE) vulnerability when processing XML data, allowing a remote attacker to expose sensitive information or consume memory resources. Affected product: IBM IGI 5.2.6; root cause...
Security Bulletin: IBM has announced a release for IBM Security Identity Governance and Intelligence in response to a security vulnerability (CVE-2020-4246)
Summary IBM has announced a release for IBM Security Identity Governance and Intelligence IGI in response to a security vulnerability. The Virtual Appliance is vulnerable to an XML External Entity Injection XXE attack that could expose sensitive information or consume memory resources...