71 matches found
CVE-2023-5643
Summary (CVE-2023-5643) : An out-of-bounds write vulnerability exists in Arm Mali GPU kernel drivers (Bifrost, Valhall) and Arm 5th Gen GPU Architecture Kernel Driver. The issue allows a local, non-privileged user to trigger improper GPU memory processing, potentially writing outside buffer bound...
SUSE: Security Advisory (SUSE-SU-2013:0327-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2013:0327-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2016:1996-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-5643
creationtimestamp| type| source ---|---|--- 2020-11-06 07:50:18+00:00| seen| https://t.me/cibsecurity/15957...
CVE-2020-5643
Improper input validation vulnerability in Cybozu Garoon 5.0.0 to 5.0.2 allows a remote authenticated attacker to delete some data of the bulletin board via unspecified vector...
CVE-2020-5643
Consolidated details for CVE-2020-5643 show a vulnerability in Cybozu Garoon (Cybozu Garoon 5.0.0–5.0.2) due to improper input validation (CWE-20). An authenticated user can remotely delete bulletin board data via an unspecified vector. The root cause centers on input validation weaknesses that p...
CVE-2019-5643
CVE-2019-5643 affects Computing For Good’s Basic Laboratory Information System (C4G BLIS) up to version 3.5. The issue is CWE-284 (Improper Access Control). An unauthenticated user could enumerate usernames and facility names on a targeted installation. The Connected documents confirm the vulnera...
ca.islandora.alpaca:islandora-connector-broadcast (>=0.2.0 <=0.3.0), ca.islandora.alpaca:islandora-indexing-triplestore (>=0.2.0 <=0.3.0) +913 more potentially affected by CVE-2017-5643 via org.apache.camel:camel-core (>=2.18.0 <=2.18.1)
org.apache.camel:camel-core MAVEN version =2.18.0, =0.2.0, =0.2.0, =2.7, =2.18.0, =2.18.1 - com.tatsuyafw:camel-fluentd =2.18.0 - cool.pandora:acrepo-exts-image =0.0.3 - cool.pandora:pandora-exts-encoder =0.0.4 and more Source cves: CVE-2017-5643 Source advisory: OSV:GHSA-VQ9J-JH62-5HMP...
at.researchstudio.sat:won-core (>=0.2 <=0.9), at.researchstudio.sat:won-cryptography (>=0.3 <=0.6) +1432 more potentially affected by CVE-2017-5643 via org.apache.camel:camel-core (>=1.0.0 <=2.17.5)
org.apache.camel:camel-core MAVEN version =1.0.0, =0.2, =0.3, =0.2, =0.2, =0.3, =0.3, =0.3, =0.3, =0.3, =0.2, =0.3, =0.3, =0.4, =0.9 and more Source cves: CVE-2017-5643 Source advisory: OSV:GHSA-VQ9J-JH62-5HMP...
CVE-2017-5643
It was found that Apache Camel's validation component evaluates DTD headers of XML stream sources, although a validation against XML schemas XSD is executed. Remote attackers can use this feature to make Server-Side Request Forgery SSRF attacks by sending XML documents with remote DTDs URLs or XM...
CVE-2017-5643
The CVE-2017-5643 issue affects Apache Camel’s Validation Component, which is vulnerable to SSRF via remote DTDs and XML External Entities (XXE) in XML streams. The vulnerability arises when the component processes DTDs/XXEs, allowing remote resources to be fetched. Impact details in connected do...
CVE-2015-5643
CVE-2015-5643 affects ICZ MATCHA INVOICE: installer flaw during database configuration allows an unauthenticated attacker to execute arbitrary PHP code on the server. Impact is code injection (CWE-94) via the installer for MATCHA INVOICE 2.5.6 and earlier. Remediation guidance in connected docs i...
CVE-2015-5643
The installer in ICZ MATCHA INVOICE before 2.5.7 does not properly configure the database, which allows remote attackers to execute arbitrary PHP code via unspecified vectors...
Fedora 22 : jenkins-matrix-project-plugin-1.4.1-1.fc22 / jenkins-script-security-plugin-1.13-2.fc22 / etc (2015-5643)
Fix CVE-2015-1806 SECURITY-125 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...
Oracle Solaris Third-Party Patch Update : squid (multiple_vulnerabilities_in_squid)
The remote Solaris system is missing necessary patches to address security updates : - Multiple memory leaks in tools/cachemgr.cc in cachemgr.cgi in Squid 2.x and 3.x before 3.1.22, 3.2.x before 3.2.4, and 3.3.x before 3.3.0.2 allow remote attackers to cause a denial of service memory consumption...
Joomla Component com_books SQL Injection (CVE-2008-5643)
An SQL injection vulnerability has been reported in Joomla Com Books. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
CVE-2014-5643
The CVE-2014-5643 entry concerns the Instachat – Instagram Messenger Android app (com.instachat.android), version 1.6.2. Root cause: the app does not verify X.509 certificates from SSL servers. Impact: enables man‑in‑the‑middle attackers to spoof servers and access sensitive information via a cra...
openSUSE Security Update : squid3 (openSUSE-SU-2013:0162-1)
update to 3.1.23 fix for bnc794954, CVE-2012-5643, SQUID:2012-1 - Additional fixes for CVE-2012-5643 / SQUID:2012-1 - http://www.squid-cache.org/Advisories/SQUID-20121.txt - https://vulners.com/cve/CVE-2012-5643 - removed 3.1.12 config, nobuilddates, swapdir patch - added FSF, config,...
CVE-2013-5643
This CVE-2013-5643 entry is rejected and does not represent an active vulnerability.