CVE-2025-5158

creationtimestamp| type| source ---|---|--- 2025-05-25 23:46:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17518...

CVE-2025-5158

A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been declared as problematic. This vulnerability affects the function downloadSoftware of the file /cfgFile/downloadSoftware. The manipulation of the argument filename leads to path traversal. The attack can be initiat...

CVE-2025-5158 H3C SecCenter SMP-E1114P02 downloadSoftware path traversal

A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been declared as problematic. This vulnerability affects the function downloadSoftware of the file /cfgFile/downloadSoftware. The manipulation of the argument filename leads to path traversal. The attack can be initiat...

CVE-2025-5158 H3C SecCenter SMP-E1114P02 downloadSoftware path traversal

A vulnerability was found in H3C SecCenter SMP-E1114P02 up to 20250513. It has been declared as problematic. This vulnerability affects the function downloadSoftware of the file /cfgFile/downloadSoftware. The manipulation of the argument filename leads to path traversal. The attack can be initiat...

CVE-2010-5158

Race condition in DefenseWall Personal Firewall 3.00 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during...

Linux Distros Unpatched Vulnerability : CVE-2024-5158

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to potentially perform arbitrary read/write via a crafted HTML page...

WordPress Algori PDF Viewer Plugin <= 1.0.7 is vulnerable to Cross Site Scripting (XSS)

Software Algori PDF Viewer Type Plugin Vulnerable versions = 1.0.7 Fixed in 1.0.8 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2018-5158 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID f9da283093fc Credits Colin Xu Required...

Microsoft Edge (Chromium) < 125.0.2535.67 Multiple Vulnerabilities

The version of Microsoft Edge installed on the remote Windows host is prior to 125.0.2535.67. It is, therefore, affected by multiple vulnerabilities as referenced in the May 16, 2024 advisory. - Use after free in Scheduling in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to...

electron29 -- multiple vulnerabilities

Electron developers report: This update fixes the following vulnerabilities: Security: backported fix for CVE-2024-5499. Security: backported fix for CVE-2024-5493. Security: backported fix for CVE-2024-5494. Security: backported fix for CVE-2024-5495. Security: backported fix for CVE-2024-5496...

Fedora: Security Advisory (FEDORA-2024-44edce9689)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory (FEDORA-2024-87bb7ffab1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MGASA-2024-0194 Updated chromium-browser-stable packages fix security vulnerabilities

The chromium-browser-stable package has been updated to the 125.0.6422.76 release. It includes 6 security fixes Please, do note, that since some versions ago, only x8664 is supported. i586 support for linux was stopped some years ago and the community is not able to provide patches anymore for th...

Chromium: CVE-2024-5158 Type Confusion in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

openSUSE Security Advisory (openSUSE-SU-2024:0137-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for chromium (important)

openSUSE Security Update: Security update for chromium Announcement ID: openSUSE-SU-2024:0137-1 Rating: important References: 1224818 Cross-References: CVE-2024-5157 CVE-2024-5158 CVE-2024-5159 CVE-2024-5160 Affected Products: openSUSE Backports SLE-15-SP5 An update that fixes four vulnerabilitie...

Fedora 40 : chromium (2024-44edce9689)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-44edce9689 advisory. update to 125.0.6422.76 High CVE-2024-5157: Use after free in Scheduling High CVE-2024-5158: Type Confusion in V8 High CVE-2024-5159: Heap buffer...

[SECURITY] [DSA 5696-1] chromium security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5696-1 [email protected] https://www.debian.org/security/ Andres Salomon May 22, 2024 https://www.debian.org/security/faq -...

CVE-2024-5158 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2024-5158

Type Confusion in V8 in Google Chrome prior to 125.0.6422.76 allowed a remote attacker to potentially perform arbitrary read/write via a crafted HTML page. Chromium security severity: High...

CVE-2024-5158 vulnerabilities

Vulnerabilities for packages: chromium...