RHEL 8 : 389-ds:1.4 (RHSA-2026:5196)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:5196 advisory. 389 Directory Server is an LDAP version 3 LDAPv3 compliant server. The base packages include the Lightweight Directory Access Protocol LDAP server an...

MiracleLinux 9 : kernel-5.14.0-162.18.1.el9_1 (AXSA:2023-5196:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5196:07 advisory. kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and...

Linux Distros Unpatched Vulnerability : CVE-2013-5196

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.1.1 and 7.x before 7.0.1, allows remote attackers to execute arbitrary code or cause a denial of service memory...

CVE-2025-5196

A vulnerability has been found in Wing FTP Server up to 7.4.3 and classified as critical. Affected by this vulnerability is an unknown functionality of the component Lua Admin Console. The manipulation leads to execution with unnecessary privileges. The attack can be launched remotely. The...

CVE-2025-5196

creationtimestamp| type| source ---|---|--- 2025-05-26 13:47:18+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17555 2025-05-26 15:23:17+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq3i3nr7rcy2 2025-05-26...

CVE-2023-5196

Mattermost fails to enforce character limits in all possible notification props allowing an attacker to send a really long value for a notificationprop resulting in the server consuming an abnormal quantity of computing resources and possibly becoming temporarily unavailable for its users...

CVE-2020-5196

Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated attacker to create files, display hidden files, list directories, and list files without the permission to zip and download or unzip and upload files. There are multiple ways to bypass certain...

CVE-2010-5196

Untrusted search path vulnerability in KeePass Password Safe before 2.13 allows local users to gain privileges via a Trojan horse DwmApi.dll file in the current working directory, as demonstrated by a directory that contains a .kdbx file. NOTE: some of these details are obtained from third party...

SUSE CVE-2016-5196

The content renderer client in Google Chrome prior to 54.0.2840.85 for Android insufficiently enforced the Same Origin Policy amongst downloaded files, which allowed a remote attacker to access any downloaded file and interact with sites, including those the user was logged into, via a crafted HT...

Linux Distros Unpatched Vulnerability : CVE-2015-5196

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-7703. Reason: This candidate is a reservation duplicate of CVE-2015-7703. Notes: All CVE...

CVE-2024-5196

A vulnerability classified as critical has been found in Arris VAP2500 08.50. This affects an unknown part of the file /toolscommand.php. The manipulation of the argument cmbheader/txtcommand leads to command injection. It is possible to initiate the attack remotely. The exploit has been disclose...

CVE-2024-5196

CVE-2024-5196 targets Arris VAP2500 v08.50. A vulnerability in /tools_command.php (parameter cmb_header/txt_command) allows remote command injection. Exploitation is possible remotely; public disclosure noted. No remediation details provided in the supplied documents.

Mattermost Server < 7.8.10 / 8.0.x < 8.0.2 / 8.1.0 Multiple Vulnerabilities (MMSA-2023-00222) (MMSA-2023-00224) (MMSA-2023-00230)

The version of Mattermost Server running on the remote host is prior to 7.8.10, 8.0.x prior to 8.0.2, or 8.1.0. It is, therefore, affected by multiple vulnerabilities: - Mattermost fails to properly check permissions when retrieving a post allowing for a System Role with the permission to manage...

CVE-2023-5196

creationtimestamp| type| source ---|---|--- 2023-09-29 14:37:34+00:00| seen| https://t.me/cibsecurity/71277...

CVE-2023-5196

Mattermost vulnerability CVE-2023-5196 involves an uncontrolled resource consumption DoS caused by failure to enforce character limits in all notification props. Attackers can send an overly long value for a notification_prop, potentially exhausting server resources and taking services temporaril...

CVE-2023-5196 DoS via Channel Notification Properties

Mattermost fails to enforce character limits in all possible notification props allowing an attacker to send a really long value for a notificationprop resulting in the server consuming an abnormal quantity of computing resources and possibly becoming temporarily unavailable for its users...

CVE-2023-5196 DoS via Channel Notification Properties

Mattermost fails to enforce character limits in all possible notification props allowing an attacker to send a really long value for a notificationprop resulting in the server consuming an abnormal quantity of computing resources and possibly becoming temporarily unavailable for its users...

RHEL 8 : frr (RHSA-2023:5196)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:5196 advisory. FRRouting is free software that manages TCP/IP based routing protocols. It supports BGP4, OSPFv2, OSPFv3, ISIS, RIP, RIPng, PIM, NHRP, PBR, EIGRP and...

CVE-2020-5196

Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 is affected. An authenticated attacker could bypass permissions via the zip/unzip features to create files, view hidden files, and list directories/files without having zip/download (or unzip/upload) rights. The root caus...

CVE-2018-5196

The CVE-2018-5196 entry affects ESTsoft ALZip (versions 10.76.0.0 and earlier). The root cause is a stack overflow caused by improper bounds checking when handling specially crafted LZH archives. Exploitation wording from multiple sources indicates that convincing a user to open a malicious LZH f...