CVE-2026-42780 BIG-IP SSL Orchestrator vulnerability

A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privilege to overwrite, delete or corrupt arbitrary local files. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2026-42780

A directory traversal vulnerability exists in BIG-IP SSL Orchestrator that allows an authenticated attacker with high privilege to overwrite, delete or corrupt arbitrary local files. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

USN-7346-2 opensc regression

USN-7346-1 fixed vulnerabilities in OpenSC. The update introduced a regression in Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. The security fix has been removed pending further investigation. We apologize for the inconvenience. Original advisory details: It was discovered that OpenSC...

Linux Distros Unpatched Vulnerability : CVE-2021-42780

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A use after return issue was found in Opensc before version 0.22.0 in insertpin function that could potentially crash programs using the library. CVE-2021-42780...

CVE-2024-42780

creationtimestamp| type| source ---|---|--- 2024-08-21 20:45:55+00:00| seen| https://t.me/cvedetector/3810...

CVE-2024-42780

An Unrestricted file upload vulnerability was found in "/music/ajax.php?action=savegenre" in Kashipara Music Management System v1.0. This allows attackers to execute arbitrary code via uploading a crafted PHP file...

RHEL 7 : opensc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - opensc: Double free in coolkeyfreeprivatedata in libopensc/card-coolkey.c CVE-2019-20792 - opensc: buffer...

CVE-2023-42780

creationtimestamp| type| source ---|---|--- 2023-10-14 14:29:51+00:00| seen| https://t.me/cibsecurity/72284 2023-12-01 07:02:55+00:00| seen| https://t.me/arpsyndicate/834...

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +136 more potentially affected by CVE-2023-42780 via apache-airflow (>=1.8.2 <=2.7.1)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-42780 Source advisory: OSV:GHSA-CGX2-RRMR-JX43...

abi-ds-utils (=1.0.1), acceldata-o2a (=1.0.0) +136 more potentially affected by CVE-2023-42780 via apache-airflow (>=1.8.2 <=2.7.1)

apache-airflow PYPI version =1.8.2, =0.8.44.4, =1.4.0.3.post4, =1.4.0.3.post3, =0.1.0rc3, =0.1.0, =0.2.9b1, =0.4.0, =0.1.0a1, =0.6.0, =0.1.1, =0.1.1, =1.10.6 - airflow-cyberark-secrets-backend =0.1.0 and more Source cves: CVE-2023-42780 Source advisory: OSV:PYSEC-2023-202...

CVE-2023-42780 Apache Airflow: Improper access control vulnerability in the "List dag warnings" feature

Apache Airflow, versions prior to 2.7.2, contains a security vulnerability that allows authenticated users of Airflow to list warnings for all DAGs, even if the user had no permission to see those DAGs. It would reveal the dagids and the stack-traces of import errors for those DAGs with import...

CVE-2023-42780

Apache Airflow vulnerability CVE-2023-42780 affects versions prior to 2.7.2. Authenticated users can list warnings for all DAGs, even if they lack permission to view those DAGs, exposing dag_ids and import-error stack traces. Impact is information disclosure of non-authorized DAG metadata; no exp...

Amazon Linux 2 : opensc (ALAS-2023-2102)

The version of opensc installed on the remote host is prior to 0.19.0-5. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2023-2102 advisory. A heap use after free issue was found in Opensc before version 0.22.0 in scfilevalid. CVE-2021-42779 A use after return...

CBL Mariner 2.0 Security Update: opensc (CVE-2021-42780)

The version of opensc installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-42780 advisory. - A use after return issue was found in Opensc before version 0.22.0 in insertpin function that could...

CVE-2022-42780

In wlan driver, there is a possible missing bounds check, This could lead to local denial of service in wlan services...

CVE-2022-42780

CVE-2022-42780 concerns a lack of proper bounds checking in the WLAN driver (notably in UNISOC WLAN driver variants) that can lead to a local denial of service in WLAN services. The issue is described as an out-of-bounds condition in the driver, enabling a local attacker with low privileges and n...

CVE-2021-42780 affecting package opensc for versions less than 0.22.0-1

CVE-2021-42780 affecting package opensc for versions less than 0.22.0-1. An upgraded version of the package is available that resolves this issue...

openSUSE: Security Advisory for opensc (SUSE-SU-2022:1156-1)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

CVE-2021-42780

creationtimestamp| type| source ---|---|--- 2022-04-18 20:29:50+00:00| seen| https://t.me/cibsecurity/41049...

CVE-2021-42780

A use after return issue was found in Opensc before version 0.22.0 in insertpin function that could potentially crash programs using the library...