104 matches found
CVE-2026-4701
A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the JavaScript Engine component...
CVE-2026-4701
creationtimestamp| type| source ---|---|--- 2026-03-25 01:17:37+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mhtw6b4fl72h 2026-03-25 03:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/mozilla-products-multiple-vulnerabilities20260325 2026-03-25 03:00:13+00:00|...
Linux Distros Unpatched Vulnerability : CVE-2026-4701
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
firefox-esr-140.9.0-1.1 on GA media (moderate)
firefox-esr-140.9.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:10413-1 Rating: moderate Cross-References: CVE-2025-59375 CVE-2026-4684 CVE-2026-4685 CVE-2026-4686 CVE-2026-4687 CVE-2026-4688 CVE-2026-4689 CVE-2026-4690 CVE-2026-4691 CVE-2026-4692 CVE-2026-4693 CVE-2026-4694 CVE-2026-4695...
DEBIAN-CVE-2026-4701
Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2026-4701
Use-after-free in the JavaScript Engine component. This vulnerability was fixed in Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2026-4701
Use-after-free in the JavaScript Engine component. This vulnerability affects Firefox 149, Firefox ESR 140.9, Thunderbird 149, and Thunderbird 140.9...
CVE-2025-20790
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patc...
PT-2025-48637
In Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connected to a rogue base station controlled by the attacker, with no additional execution privileges needed. User interaction is not needed for exploitation. Patc...
CVE-2012-4701
Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging 1 valid credentials or 2 the guest feature...
CVE-2025-4701
A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...
CVE-2025-4701 VITA-MLLM Freeze-Omni utils.py torch.load deserialization
A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...
CVE-2025-4701 VITA-MLLM Freeze-Omni utils.py torch.load deserialization
A vulnerability, which was classified as problematic, has been found in VITA-MLLM Freeze-Omni up to 20250421. This issue affects the function torch.load of the file models/utils.py. The manipulation of the argument path leads to deserialization. It is possible to launch the attack on the local ho...
CVE-2025-4701
The CVE-2025-4701 issue affects VITA-MLLM Freeze-Omni (up to 20250421), specifically the torch.load usage in models/utils.py where improper handling of the path argument enables deserialization and a potential local-host exploit. Root cause: manipulation of the path parameter in torch.load leads ...
Exploit for CVE-2024-4701
CVE-2024-4701-POC POC for CVE-2024-4701 Download the genie do...
CVE-2024-4701 Path Traversal vulnerability via File Uploads in Genie
A path traversal issue potentially leading to remote code execution in Genie for all versions prior to 4.3.18...
CVE-2024-4701 Path Traversal vulnerability via File Uploads in Genie
A path traversal issue potentially leading to remote code execution in Genie for all versions prior to 4.3.18...
com.netflix.genie:genie-app (>=3.0.0 <=4.3.17), com.netflix.genie:genie-security (>=4.0.0-rc.1 <=4.0.0-rc.31) +3 more potentially affected by CVE-2024-4701 via com.netflix.genie:genie-web (>=0.22 <=4.3.17)
com.netflix.genie:genie-web MAVEN version =0.22, =3.0.0, =4.0.0-rc.1, =4.0.0, =4.0.0, =0.22, =1.0.1 Source cves: CVE-2024-4701 Source advisory: OSV:GHSA-WPCV-5JGP-69F3...
Malicious code in wlwz-2312-4701 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5647e3b4fee9f16ffbe29eb2b149fff29235e592669b9e4aec6ac1de97016a24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-594 Malicious code in wlwz-2312-4701 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5647e3b4fee9f16ffbe29eb2b149fff29235e592669b9e4aec6ac1de97016a24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...