Linux Distros Unpatched Vulnerability : CVE-2026-4332

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that, in customizable...

CVE-2026-4332

GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbitrary JavaScript in the context of other users' browsers due...

CVE-2026-4332 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

GitLab has remediated an issue in GitLab EE affecting all versions from 18.2 before 18.8.9, 18.9 before 18.9.5, and 18.10 before 18.10.3 that, in customizable analytics dashboards, could have allowed an authenticated user to execute arbitrary JavaScript in the context of other users' browsers due...

EUVD-2026-4332

Missing Authorization vulnerability in Passionate Brains Add Expires Headers & Optimized Minify add-expires-headers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Add Expires Headers & Optimized Minify: from n/a through = 3.1.0...

MiracleLinux 4 : glibc-2.12-1.132.AXS4 (AXSA:2014-073:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-073:01 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as t...

CVE-2009-4332

db2pd in the Problem Determination component in IBM DB2 9.1 before FP7 and 9.5 before FP5 allows attackers to cause a denial of service NULL pointer dereference and application termination via unspecified vectors...

EUVD-2013-4332

Malware in sbrugna...

CVE-2025-4332

creationtimestamp| type| source ---|---|--- 2025-05-06 10:45:49+00:00| published-proof-of-concept| Telegram/7zFVzqZFuQiG3D865QjZIIAAiukuTilZCAkXDIpVrxeZZHI 2025-05-06 14:21:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15126...

CVE-2025-4332

A vulnerability was found in PHPGurukul Company Visitor Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /visitor-detail.php. The manipulation of the argument editid/remark leads to sql injection. The attack may be launched remotel...

CVE-2025-4332 PHPGurukul Company Visitor Management System visitor-detail.php sql injection

A vulnerability was found in PHPGurukul Company Visitor Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /visitor-detail.php. The manipulation of the argument editid/remark leads to sql injection. The attack may be launched remotel...

Sprecher Automation SPRECON-E-C/P/T3 Improper Input Validation (CVE-2022-4332)

In Sprecher Automation SPRECON-E-C/P/T3 CPU in variant PU244x a vulnerable firmware verification has been identified. Through physical access and hardware manipulation, an attacker might be able to bypass hardware-based code verification and thus inject and execute arbitrary code and gain full...

openSUSE: Security Advisory for hdf5, netcdf, trilinos (SUSE-SU-2024:3144-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-4332

creationtimestamp| type| source ---|---|--- 2024-06-05 11:43:01+00:00| published-proof-of-concept| https://t.me/HackingInsights/1634...

CVE-2024-4332 Improper Authentication in Tripwire Enterprise 9.1.0 APIs

An authentication bypass vulnerability has been identified in the REST and SOAP API components of Tripwire Enterprise TE 9.1.0 when TE is configured to use LDAP/Active Directory SAML authentication and its optional "Auto-synchronize LDAP Users, Roles, and Groups" feature is enabled. This...

CVE-2024-4332 Improper Authentication in Tripwire Enterprise 9.1.0 APIs

An authentication bypass vulnerability has been identified in the REST and SOAP API components of Tripwire Enterprise TE 9.1.0 when TE is configured to use LDAP/Active Directory SAML authentication and its optional "Auto-synchronize LDAP Users, Roles, and Groups" feature is enabled. This...

CVE-2024-4332

Summary of CVE-2024-4332 (Tripwire Enterprise 9.1.0) : Affects the REST and SOAP API components when TE is configured to use LDAP/Active Directory SAML authentication and the optional “Auto-synchronize LDAP Users, Roles, and Groups” feature is enabled. The vulnerability enables unauthenticated at...

CVE-2023-4332

creationtimestamp| type| source ---|---|--- 2023-08-15 22:30:49+00:00| seen| https://t.me/cibsecurity/68573...

CVE-2023-4332

Broadcom RAID Controller web interface is vulnerable due to Improper permissions on the log file...

CVE-2023-4332

CVE-2023-4332 affects Broadcom RAID Controller web interface. The vulnerability arises from improper permissions on the log file, enabling unauthorized access to log data. The base CVSS v3.1 score is 7.5 (High) with Confidentiality Impact: High; other impacts are None. The issue is documented acr...

RHEL 8 : bind (RHSA-2023:4332)

"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:4332 advisory. The Berkeley Internet Name Domain BIND is an implementation of the Domain Name System DNS protocols. BIND includes a DNS server named %NASLMINLEVEL...