Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005188)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005188 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: fix LED ID check in ledtgcheck Syzbot has reported the following BUG detected...

MiracleLinux 7 : e2fsprogs-1.42.9-19.el7 (AXSA:2020-637:03)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-637:03 advisory. e2fsprogs: Crafted ext4 partition leads to out-of-bounds write CVE-2019-5094 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c CVE-2019-5188 Tenable...

Mozilla Firefox ESR < 52.9

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 52.9. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2018-17 advisory. - Mozilla developers and community members Alex Gaynor, Christoph Diehl, Christian Holler, Jason Kratzer,...

Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2019-5188)

A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. This plugin...

Linux Distros Unpatched Vulnerability : CVE-2017-5188

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The bsworker code in open build service before 20170320 followed relative symlinks, allowing reading of files outside of the package source directory during...

CVE-2024-5188

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'getmanualcalendarevents' function in all versions up to, and including, 5.9.22 due to insufficient input sanitization and...

CVE-2023-5188

The MMS Interpreter of WagoAppRTU in versions below 1.4.6.0 which is used by the WAGO Telecontrol Configurator is vulnerable to malformed packets. An remote unauthenticated attacker could send specifically crafted packets that lead to a denial-of-service condition until restart of the affected...

CVE-2020-5188

DNN formerly DotNetNuke through 9.4.4 has Insecure Permissions...

CVE-2012-5188

Untrusted search path vulnerability in mora Downloader before 1.0.0.1 allows remote attackers to trigger the launch of a .exe file via unspecified vectors...

CVE-2024-5188 Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.22 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'getmanualcalendarevents' function in all versions up to, and including, 5.9.22 due to insufficient input sanitization and...

WordPress Essential Addons for Elementor Plugin <= 5.9.22 is vulnerable to Cross Site Scripting (XSS)

Software Essential Addons for Elementor Type Plugin Vulnerable versions = 5.9.22 Fixed in 5.9.23 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5188 Patch priority Low CVSS severity Low 6.5 Developer WPDeveloper PSID 71b21402ae95 Credits Ngô Thiên A...

RHEL 6 : e2fsprogs (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - e2fsprogs: out-of-bounds read/write via crafted filesystem CVE-2022-1304 - An exploitable code execution...

CVE-2023-5188

creationtimestamp| type| source ---|---|--- 2023-12-23 15:22:03+00:00| seen| https://t.me/ctinow/158846...

CVE-2023-5188

The MMS Interpreter of WagoAppRTU in versions below 1.4.6.0 which is used by the WAGO Telecontrol Configurator is vulnerable to malformed packets. An remote unauthenticated attacker could send specifically crafted packets that lead to a denial-of-service condition until restart of the affected...

CVE-2023-5188 WAGO Improper Input Validation in IEC61850 Server / Telecontrol

The MMS Interpreter of WagoAppRTU in versions below 1.4.6.0 which is used by the WAGO Telecontrol Configurator is vulnerable to malformed packets. An remote unauthenticated attacker could send specifically crafted packets that lead to a denial-of-service condition until restart of the affected...

CVE-2023-5188

CVE-2023-5188 concerns the MMS Interpreter of WagoAppRTU used by the WAGO Telecontrol Configurator. Affected: WAGO AppRTU MMS interpreter in versions below 1.4.6.0. Root cause: vulnerability to malformed packets that can be crafted remotely, allowing a remote, unauthenticated attacker to trigger ...

RHEL 8 : thunderbird (RHSA-2023:5188)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2023:5188 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 102.15.1. Security Fixes: libwebp...

Oracle Linux 5 : ecryptfs-utils (ELSA-2009-1307)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2009-1307 advisory. 75-4 - fix EOF handling 499367 - add icon to gui desktop file 75-3 - ask for password confirmation when creating openssl key 500850 - removed executable...

BELL-CVE-2019-5188 CVE-2019-5188 does not affect BellSoft software

Bulletin has no description...

SUSE CVE-2018-5188

Memory safety bugs present in Firefox 60, Firefox ESR 60, and Firefox ESR 52.8. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Thunderbird 60, Thunderbird 52.9,...