CVE-2026-45769

creationtimestamp| type| source ---|---|--- 2026-05-20 14:15:32+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mmc3qtiaud2c...

libpcp-devel-6.3.8-1.1 on GA media (moderate)

libpcp-devel-6.3.8-1.1 on GA media Announcement ID: openSUSE-SU-2026:10705-1 Rating: moderate Cross-References: CVE-2024-45769 CVE-2024-45770 CVSS scores: CVE-2024-45769 SUSE : 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVE-2024-45769 SUSE : 5.7...

CVE-2025-45769 vulnerabilities

Vulnerabilities for packages: zabbix-fips, zabbix...

Azure Linux 3.0 Security Update: pcp (CVE-2024-45769)

The version of pcp installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45769 advisory. - A vulnerability was found in Performance Co-Pilot PCP. This flaw allows an attacker to send specially crafted...

MiracleLinux 8 : pcp-5.3.7-22.el8_10 (AXSA:2024-8874:06)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8874:06 advisory. pcp: pmpost symlink attack allows escalating pcp to root user CVE-2024-45770 pcp: pmcd heap corruption through metric pmstore operations...

MiracleLinux 9 : pcp-6.2.2-7.el9.ML.1 (AXSA:2024-9383:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9383:07 advisory. pcp: pmpost symlink attack allows escalating pcp to root user CVE-2024-45770 pcp: pmcd heap corruption through metric pmstore operations...

CVE-2025-45769

php-jwt v6.11.0 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is not...

CVE-2025-45769

php-jwt v6.11.0 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is not...

CVE-2025-45769

php-jwt v6.11.0 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is not...

CVE-2025-45769

CVE-2025-45769 concerns php-jwt v6.11.0 with weak encryption. Multiple connected sources describe cryptographic weakness due to key lengths in the JWS/JWT implementation, with a dispute noted about whether the library should enforce key lengths. Affected software: firebase/php-jwt. Root cause: cr...

CVE-2025-45769

php-jwt v6.11.0 was discovered to contain weak encryption. NOTE: this issue has been disputed on the basis that key lengths are expected to be set by an application, not by this library. This dispute is subject to review under CNA rules 4.1.4, 4.1.14, and other rules; the dispute tagging is not...

TencentOS Server 3: pcp (TSSA-2024:0491)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0491 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CVE-2022-45769

A cross-site scripting XSS vulnerability in ClicShoppingV3 v3.402 allows attackers to execute arbitrary web scripts or HTML via a crafted URL parameter...

CVE-2024-45769 affecting package pcp for versions less than 6.3.2-1

CVE-2024-45769 affecting package pcp for versions less than 6.3.2-1. An upgraded version of the package is available that resolves this issue...

Alibaba Cloud Linux 3 : 0174: pcp (ALINUX3-SA-2024:0174)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0174 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-45769: A vulnerability was found ...

OESA-2025-1295 pcp security update

PCP provides a range of services that may be used to monitor and manage system performance. These services are distributed and scalable to accommodate the most complex system configurations and performance problems. Security Fixes: A vulnerability was found in Performance Co-Pilot PCP. This flaw...

RockyLinux 9 : pcp (RLSA-2024:9452)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:9452 advisory. pcp: pmpost symlink attack allows escalating pcp to root user CVE-2024-45770 pcp: pmcd heap corruption through metric pmstore operations CVE-2024-45769...

Linux Distros Unpatched Vulnerability : CVE-2024-45769

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Performance Co-Pilot PCP. This flaw allows an attacker to send specially crafted data to the system, which could cause the program ...

SUSE CVE-2024-45769

A vulnerability was found in Performance Co-Pilot PCP. This flaw allows an attacker to send specially crafted data to the system, which could cause the program to misbehave or crash...

SUSE-SU-2024:3976-1 Security update for pcp

This update for pcp fixes the following issues: pcp was updated from version 3.11.9 to version 6.2.0 jscPED-8192, jscPED-8389: - Security issues fixed: CVE-2024-45770: Fixed a symlink attack that allows escalating from the pcp to the root user bsc1230552 CVE-2024-45769: Fixed a heap corruption...