CVE-2026-4320

creationtimestamp| type| source ---|---|--- 2026-05-18 12:56:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mm4wfejqwn2n...

EUVD-2026-4320

In the Linux kernel, the following vulnerability has been resolved: net: do not write to msggetinq in callee NULL pointer dereference fix. msggetinq is an input field from caller to callee. Don't set it in the callee, as the caller may not clear it on struct reuse. This is a kernel-internal varia...

CVE-2025-4320

creationtimestamp| type| source ---|---|--- 2026-01-23 13:44:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md3tgyo76h24 2026-01-23 14:28:54+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md3vx2omxk2r...

SUSE: Security Advisory (SUSE-SU-2025:4320-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DLA-4320-1 u-boot - security update

Bulletin has no description...

CVE-2023-4320

creationtimestamp| type| source ---|---|--- 2025-08-30 12:19:53+00:00| seen| Telegram/jeV1P16aLm0VDGF10VyDeX-S9ksNlaVoQqTazUcF70m5U...

CVE-2022-4320

The WordPress Events Calendar WordPress plugin before 1.4.5 does not sanitize and escapes a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against both unauthenticated and authenticated users such as high-privilege ones like admin...

CVE-2020-24055

Verint 5620PTZ VerintFW042 and Verint 4320 V4320FW023, and V4320FW031 units feature an autodiscovery service implemented in the binary executable '/usr/sbin/DM' that listens on port TCP 6666. The service is vulnerable to a stack buffer overflow. It is worth noting that this service does not requi...

CVE-2022-4320

creationtimestamp| type| source ---|---|--- 2025-04-04 18:36:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10524...

VulnCheck KEV: CVE-2023-4320

An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity...

Remote Code Execution via path traversal bypass in lollms

CVE-2024-4320 describes a vulnerability in the parisneo/lollms software, specifically within the ExtensionBuilder.buildextension function. The vulnerability arises from the /mountextension endpoint, where a path traversal issue allows attackers to navigate beyond the intended directory structure...

CVE-2024-5443

CVE-2024-4320 describes a vulnerability in the parisneo/lollms software, specifically within the ExtensionBuilder.buildextension function. The vulnerability arises from the /mountextension endpoint, where a path traversal issue allows attackers to navigate beyond the intended directory structure...

CVE-2024-5443

CVE-2024-5443 describes a path traversal flaw in parisneo/lollms related to the ExtensionBuilder().build_extension() workflow. The issue, exploited via the /mount_extension endpoint, arises because data.category and data.folder can be empty strings, enabling construction of a package_path that ca...

CVE-2024-4320

A remote code execution RCE vulnerability exists in the '/installextension' endpoint of the parisneo/lollms-webui application, specifically within the @router.post"/installextension" route handler. The vulnerability arises due to improper handling of the name parameter in the...

CVE-2024-4320 Remote Code Execution due to LFI in '/install_extension' in parisneo/lollms-webui

A remote code execution RCE vulnerability exists in the '/installextension' endpoint of the parisneo/lollms-webui application, specifically within the @router.post"/installextension" route handler. The vulnerability arises due to improper handling of the name parameter in the...

CVE-2023-4320

An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity...

CVE-2023-4320

CVE-2023-4320 affects Red Hat Satellite: arithmetic overflow when creating a new personal access token, enabling tokens that remain valid indefinitely and risking integrity. Connected advisories indicate the fix is included in Red Hat Satellite 6.15.0 (RHSA-2024:2010); upgrade to that release to ...

CVE-2023-4320 Satellite: arithmetic overflow in satellite

An arithmetic overflow flaw was found in Satellite when creating a new personal access token. This flaw allows an attacker who uses this arithmetic overflow to create personal access tokens that are valid indefinitely, resulting in damage to the system's integrity...

CVE-2021-4320

Use after free in Blink in Google Chrome prior to 92.0.4515.107 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

CVE-2021-4320

Use after free in Blink in Google Chrome prior to 92.0.4515.107 allowed a remote attacker who had compromised the renderer process to perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...