Linux Distros Unpatched Vulnerability : CVE-2017-5855

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The PoDoFo::PdfParser::ReadXRefSubsection function in PdfParser.cpp in PoDoFo 0.9.4 allows remote attackers to cause a denial of service NULL pointer dereferenc...

CVE-2025-5855 Tenda AC6 SetRebootTimer formSetRebootTimer stack-based overflow

A vulnerability, which was classified as critical, was found in Tenda AC6 15.03.05.16. This affects the function formSetRebootTimer of the file /goform/SetRebootTimer. The manipulation of the argument rebootTime leads to stack-based buffer overflow. It is possible to initiate the attack remotely...

CVE-2025-5855

creationtimestamp| type| source ---|---|--- 2025-06-08 09:35:09+00:00| seen| https://infosec.exchange/users/vuldb/statuses/114647060242416753 2025-06-09 03:00:46+00:00| published-proof-of-concept| Telegram/IcrvFDR0isMABNY7xD8IZKGUH3hubjVbOLpxqZcAkUCPY1k 2025-06-09 03:03:43+00:00| seen|...

Debian: Security Advisory (DSA-5855-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CGA-7V9X-5855-7352

Bulletin has no description...

CVE-2024-5855

creationtimestamp| type| source ---|---|--- 2024-07-09 04:42:35+00:00| seen| https://t.me/cvedetector/222...

CVE-2024-5855 Media Hygiene <= 3.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Deletion

The Media Hygiene: Remove or Delete Unused Images and More! plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the bulkactiondelete and deletesingleimagecall AJAX actions in all versions up to, and including, 3.0.1. This makes it possible for...

CVE-2024-5855

CVE-2024-5855 affects the WordPress plugin Media Hygiene: Remove or Delete Unused Images and More! It allows authenticated users with Subscriber+ privileges to delete arbitrary attachments due to a missing capability check on bulk_action_delete and delete_single_image_call. A nonce check was adde...

WordPress Media Hygiene Plugin <= 3.0.1 is vulnerable to Broken Access Control

Software Media Hygiene Type Plugin Vulnerable versions = 3.0.1 Fixed in 3.0.2 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5855 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 6586cb78deae Credits Lucio Sá Required privilege...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0368-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-5855

creationtimestamp| type| source ---|---|--- 2024-02-27 15:16:21+00:00| seen| https://t.me/ctinow/194475...

Fedora: Security Advisory for chromium (FEDORA-2023-f29e9560a1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Vulnerabilities fixed in Microsoft Edge

Microsoft has fixed vulnerabilities in Edge. A malicious person could exploit the vulnerabilities to impersonate another user, grant himself elevated privileges or execute arbitrary code execute arbitrary code in the context of the browser. Successful exploitation requires the malicious party to...

Fedora: Security Advisory (FEDORA-2023-f83b5e84d3)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-5546-1 : chromium - security update

The remote Debian 11 / 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5546 advisory. - Inappropriate implementation in Payments in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to bypass XSS preventions via a malicious file...

Chromium: CVE-2023-5855 Use after free in Reading Mode

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

CVE-2023-5855

creationtimestamp| type| source ---|---|--- 2023-11-01 21:22:10+00:00| seen| https://t.me/cibsecurity/73375 2025-04-29 21:13:50+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/13941...

CVE-2023-5855

Use after free in Reading Mode in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. Chromium security severity: Medium...

CVE-2023-5855

Use after free in Reading Mode in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. Chromium security severity: Medium...

CVE-2023-5855

Use after free in Reading Mode in Google Chrome prior to 119.0.6045.105 allowed a remote attacker who convinced a user to engage in specific UI gestures to potentially exploit heap corruption via specific UI gestures. Chromium security severity: Medium...