CVE-2026-4988

creationtimestamp| type| source ---|---|--- 2026-03-27 22:11:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi356h5ptw2z...

CVE-2026-4988

A security flaw has been discovered in Open5GS 2.7.6. This issue affects the function smfgxccacb/smfgyccacb/smfs6b of the component CCA Message Handler. The manipulation results in denial of service. The attack may be launched remotely. Attacks of this nature are highly complex. The exploitabilit...

CVE-2026-4988

Open5GS 2.7.6 contains a denial-of-service vulnerability in the CCA Message Handler, affecting the functions smf_gx_cca_cb, smf_gy_cca_cb, and smf_s6b. The issue can be triggered remotely and stems from the manipulation of the mentioned components. Exploitability is described as difficult, and ex...

CVE-2025-4988

A stored Cross-site Scripting XSS vulnerability affecting Results Analytics in Multidisciplinary Optimization Engineer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

CVE-2025-4988

creationtimestamp| type| source ---|---|--- 2025-05-30 14:29:27+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqfgxxoxb7c2 2025-05-30 14:31:52+00:00| seen|...

CVE-2025-4988

CVE-2025-4988 is a stored XSS vulnerability affecting Dassault Systèmes’ Multidisciplinary Optimization Engineer (Results Analytics) for 3DEXPERIENCE R2022x through R2024x. The issue enables an attacker to cause arbitrary script execution in a user’s browser session via stored payloads in Results...

CVE-2025-4988 Stored Cross-site Scripting (XSS) vulnerability affecting Results Analytics in Multidisciplinary Optimization Engineer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x

A stored Cross-site Scripting XSS vulnerability affecting Results Analytics in Multidisciplinary Optimization Engineer from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execute arbitrary script code in user's browser session...

Adobe Reader < 2015.006.30418 / 2017.011.30080 / 2018.011.20040 Multiple Vulnerabilities (APSB18-09) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 2015.006.30418, 2017.011.30080, or 2018.011.20040. It is, therefore, affected by multiple vulnerabilities. - Adobe Acrobat and Reader versions 2018.011.20038 and earlier, 2017.011.30079 and earlier, and...

openSUSE: Security Advisory for python (SUSE-SU-2023:4988-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-4988

A vulnerability, which was classified as problematic, was found in Bettershop LaikeTui. This affects an unknown part of the file index.php?module=system&action=uploadImg. The manipulation of the argument imgFile leads to unrestricted upload. It is possible to initiate the attack remotely. This...

CVE-2023-4988

CVE-2023-4988 affects Bettershop LaikeTui. The vulnerability is in the file index.php?module=system&action=uploadImg, where manipulating the imgFile argument enables unrestricted file upload. Attacks can be initiated remotely; the product does not use versioning, and the specific affected/unaffec...

SUSE CVE-2007-4988

Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow...

de.einsundeins.jenkins.plugins.failedjobdeactivator:failedJobDeactivator (>=1.0 <=1.2.1) potentially affected by CVE-2016-4988 via com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer (=1.13.0)

com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer MAVEN version =1.13.0 is affected by a known vulnerability. The following packages have a transitive dependency on com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer and may be impacted: -...

Debian: Security Advisory (DSA-4988-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-4988-1 : libreoffice - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4988 advisory. Two security issues have been discovered in LibreOffice's support for digital signatures in ODF documents, which could result in incorrect signature...

Ubuntu: Security Advisory (USN-4988-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

IcoFX 2.6 - &#039;.ico&#039; Buffer Overflow SEH + DEP Bypass using JOP

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Date: 2020-05-20 Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7...

IcoFX 2.6 - (.ico) Buffer Overflow SEH + DEP Bypass using JOP Exploit

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7 Ultimate x64 CVE:...

IcoFX 2.6 Buffer Overflow

Exploit Title: IcoFX 2.6 - '.ico' Buffer Overflow SEH + DEP Bypass using JOP Date: 2020-05-20 Exploit Author: Austin Babcock Vendor Homepage: https://icofx.ro/ Software Link: https://drive.google.com/file/d/1SONzNStAW3pAPU5IUvsYS3z0jYymEZn/view?usp=sharing Version: 2.6.0.0 Tested on: Windows 7...

CVE-2020-4988

CVE-2020-4988 affects LoopBack 8.0.0. The linked documents describe a vulnerability that could manipulate or pollute JavaScript values, with potential denial of service or remote code execution, tied to a prototype-pollution style issue in the REST layer. A remediation visible in the sources is t...