MiracleLinux 8 : libsoup-2.62.3-8.el8_10 (AXSA:2025-9911:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-9911:03 advisory. libsoup: Integer overflow in appendparamquoted CVE-2025-32050 libsoup: Heap buffer overflow in sniffunknown CVE-2025-32052 libsoup: Heap buffer...

Huawei EulerOS: Security Advisory for libsoup (EulerOS-SA-2025-1980)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

TencentOS Server 3: libsoup (TSSA-2025:0357)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0357 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Fedora 41 : mingw-libsoup (2025-3b89fef0f9)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-3b89fef0f9 advisory. Backport fixes for CVE-2025-4476, CVE-2025-4948, CVE-2025-4969, CVE-2025-46420, CVE-2025-46421, CVE-2025-4945 Tenable has extracted the preceding...

CVE-2023-46421

TOTOLINK X6000R v9.4.0cu.652B20230116 was discovered to contain a remote command execution RCE vulnerability via the sub411D00 function...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : libsoup2 (SUSE-SU-2025:1503-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1503-1 advisory. - CVE-2025-2784: Fixed heap buffer over-read in skipinsignificantspace when sniffing conten...

Important: Red Hat Security Advisory: libsoup security update

An update for libsoup is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Telecommunications Update Service, and Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as...

RHEL 8 : libsoup (RHSA-2025:4609)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4609 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: Out of bounds reads in...

CBL Mariner 2.0 Security Update: libsoup (CVE-2025-46421)

The version of libsoup installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46421 advisory. - A flaw was found in libsoup. When libsoup clients encounter an HTTP redirect, they mistakenly send the HTTP...

Azure Linux 3.0 Security Update: libsoup (CVE-2025-46421)

The version of libsoup installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-46421 advisory. - A flaw was found in libsoup. When libsoup clients encounter an HTTP redirect, they mistakenly send the HTTP...

RHEL 8 : libsoup (RHSA-2025:4624)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:4624 advisory. The libsoup packages provide an HTTP client and server library for GNOME. Security Fixes: libsoup: Out of bounds reads in...

CVE-2025-46421 affecting package libsoup for versions less than 3.4.4-5

CVE-2025-46421 affecting package libsoup for versions less than 3.4.4-5. A patched version of the package is available...

CVE-2025-46421 affecting package libsoup for versions less than 3.0.4-5

CVE-2025-46421 affecting package libsoup for versions less than 3.0.4-5. A patched version of the package is available...

libsoup-2_4-1-2.74.3-9.1 on GA media (moderate)

libsoup-24-1-2.74.3-9.1 on GA media Announcement ID: openSUSE-SU-2025:15044-1 Rating: moderate Cross-References: CVE-2025-32907 CVE-2025-32914 CVE-2025-46420 CVE-2025-46421 CVSS scores: CVE-2025-32907 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2025-32907 SUSE : 8.7...

CVE-2025-46421

creationtimestamp| type| source ---|---|--- 2025-04-24 13:05:58+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13217 2025-04-24 14:10:02+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114393337184532437 2025-04-24 14:16:48+00:00| seen|...

CVE-2025-46421

A flaw was found in libsoup. When libsoup clients encounter an HTTP redirect, they mistakenly send the HTTP Authorization header to the new host that the redirection points to. This allows the new host to impersonate the user to the original host that issued the redirect...

CVE-2025-46421 Libsoup: information disclosure may leads libsoup client sends authorization header to a different host when being redirected by a server

A flaw was found in libsoup. When libsoup clients encounter an HTTP redirect, they mistakenly send the HTTP Authorization header to the new host that the redirection points to. This allows the new host to impersonate the user to the original host that issued the redirect...

CVE-2023-46421

creationtimestamp| type| source ---|---|--- 2023-10-26 00:39:34+00:00| seen| https://t.me/cibsecurity/72920...

CVE-2023-46421

CVE-2023-46421 affects TOTOLINK X6000R, version 9.4.0cu.652_B20230116, with a remote command execution (RCE) vulnerability in the routine at the sub_411D00 function. The available sources describe an RCE impact with high/critical potential (per CVSS metrics in the record) but do not provide rollb...

CVE-2022-46421

creationtimestamp| type| source ---|---|--- 2022-12-20 14:12:14+00:00| seen| https://t.me/cibsecurity/54954...