18 matches found
CVE-2025-43873
Successful exploitation of these vulnerabilities could allow an attacker to modify firmware and gain full access to the device...
CVE-2025-43873 iSTAR Ultra, Ultra SE, Ultra G2, Ultra G2 SE, iSTAR Edge G2 - Authenticated web application command injection - setFaultDebounce
Successful exploitation of these vulnerabilities could allow an attacker to modify firmware and gain full access to the device...
EUVD-2025-43873
Malicious code in hendra-bakwan47-riris npm...
Linux Distros Unpatched Vulnerability : CVE-2024-43873
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacketallow There are two issues around seqpacketallow: 1...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-43873)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43873 advisory. - In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize...
CVE-2024-43873 affecting package kernel for versions less than 5.15.167.1-1
CVE-2024-43873 affecting package kernel for versions less than 5.15.167.1-1. An upgraded version of the package is available that resolves this issue...
SUSE SLED15: cluster-md-kmp-64kb / cluster-md-kmp-default / dlm-kmp-64kb / etc (SUSE-SU-2024:3483-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3483-1 advisory. The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The...
CVE-2024-43873
creationtimestamp| type| source ---|---|--- 2024-08-21 04:00:41+00:00| seen| https://t.me/cvedetector/3715...
CVE-2024-43873
In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacketallow There are two issues around seqpacketallow: 1. seqpacketallow is not initialized when socket is created. Thus if features are never set, it will be read uninitialized. 2. if...
CVE-2024-43873 vhost/vsock: always initialize seqpacket_allow
In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacketallow There are two issues around seqpacketallow: 1. seqpacketallow is not initialized when socket is created. Thus if features are never set, it will be read uninitialized. 2. if...
CVE-2023-43873
creationtimestamp| type| source ---|---|--- 2023-09-28 18:36:53+00:00| seen| https://t.me/cibsecurity/71198...
CVE-2023-43873
A Cross Site Scripting XSS vulnerability in e017 CMS v.2.3.2 allows a local attacker to execute arbitrary code via a crafted script to the Name filed in the Manage Menu...
CVE-2023-43873
CVE-2023-43873 affects e017 CMS v2.3.2, with a Cross Site Scripting (XSS) flaw in the Name field of the Manage Menu that can allow an attacker (local) to execute arbitrary code via a crafted script. Public references describe the vulnerability and provide a working PoC/exploit (e107 CMS Stored XS...
CVE-2022-43873
creationtimestamp| type| source ---|---|--- 2023-02-22 20:17:38+00:00| seen| https://t.me/cibsecurity/58694...
CVE-2022-43873
CVE-2022-43873 affects IBM Spectrum Virtualize GUI (versions 8.2–8.5). An authenticated user can execute code and escalate privileges on the system due to a GUI vulnerability. IBM and Red Hat attest to a privilege-escalation impact with a CVSS-derived high/medium range and list concrete remediati...
CVE-2021-43873
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none...
CVE-2021-43873
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2021. Notes: none...
CVE-2021-43873
CVE-2021-43873 is rejected/not used and does not represent an active vulnerability entry.