Linux Distros Unpatched Vulnerability : CVE-2026-5890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race in WebCodecs in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to obtain potentially sensitive information from process memory via a crafte...

CVE-2026-5890

CVE-2026-5890 describes a race condition in Chrome’s WebCodecs, allowing a remote attacker to potentially read sensitive data from process memory via a crafted HTML page. Affected software: Google Chrome (WebCodecs path). Root cause: race in WebCodecs leading to information disclosure. Impact: po...

@actions-for-rust/core (>=0.1.6 <=0.1.8), @actions-rs-plus/core (>=0.0.0 <=0.7.5) +125 more potentially affected by CVE-2025-5890 via @actions/glob (>=0.1.2 <=0.7.0)

@actions/glob NPM version =0.1.2, =0.1.6, =0.0.0, =0.1.0, =1.0.1-2a6268e89ea5fbc66dadd1d897cac75b3f0a63e4.0, =0.1.0, =1.0.0, =4.0.0, =3.2.5, =1.1.0, =3.2.2, =2.0.0, =2.0.3 and more Source cves: CVE-2025-5890 Source advisory: SNYK:JS-ACTIONSGLOB-11484208...

CVE-2025-5890

A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects the function globEscape of the file toolkit/packages/glob/src/internal-pattern.ts of the component glob. The manipulation leads to inefficient regular expression complexity. It is possible to initiate...

CVE-2025-5890

A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects the function globEscape of the file toolkit/packages/glob/src/internal-pattern.ts of the component glob. The manipulation leads to inefficient regular expression complexity. It is possible to initiate...

CVE-2025-5890 actions toolkit glob internal-pattern.ts globEscape redos

A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects the function globEscape of the file toolkit/packages/glob/src/internal-pattern.ts of the component glob. The manipulation leads to inefficient regular expression complexity. It is possible to initiate...

CVE-2025-5890

The CVE-2025-5890 entry concerns actions toolkit 0.5.0, specifically the glob component’s globEscape function in toolkit/packages/glob/src/internal-pattern.ts. The vulnerability is described as causing inefficient regular expression complexity (a Regular Expression Denial of Service, DoS risk). I...

CVE-2020-5890

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1 and BIG-IQ 5.2.0-7.1.0, when creating a QKView, credentials for binding to LDAP servers used for remote authentication of the BIG-IP administrative interface will not fully obfuscate if they contain whitespace...

Debian: Security Advisory (DSA-5890-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-5890

creationtimestamp| type| source ---|---|--- 2024-12-02 21:16:10+00:00| seen| https://t.me/cvedetector/11812...

CVE-2024-5890 HTML Injection in the Assessment plugin

ServiceNow has addressed an HTML injection vulnerability that was identified in the Now Platform. This vulnerability could potentially enable an unauthenticated user to modify a web page or redirect users to another website. ServiceNow released updates to customers that addressed this...

CVE-2023-5890

creationtimestamp| type| source ---|---|--- 2023-11-01 06:34:42+00:00| seen| https://t.me/cibsecurity/73282...

CVE-2023-5890 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib

Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...

CVE-2023-5890 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib

Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...

CVE-2023-5890 Cross-site Scripting (XSS) - Stored in pkp/pkp-lib

Cross-site Scripting XSS - Stored in GitHub repository pkp/pkp-lib prior to 3.3.0-16...

CVE-2023-5890

CVE-2023-5890 affects pkp/pkp-lib (PKP Web Application Library) prior to version 3.3.0-16. The issue is a Stored Cross-site Scripting (XSS) vulnerability arising from unescaped input in the repository, leading to script injection in impacted sites. The public references consistently describe the ...

PT-2023-5890 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open5GS affected versions not specified Description: The issue is related to the lack of authentication in the Open5GS implementation of the GTP protocol for mobile networks. This allows a remote attacker to send an HTTP request to an Open5GS...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Open vSwitch vulnerabilities (USN-5890-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5890-1 advisory. Qian Chen discovered that Open vSwitch incorrectly handled certain Organization Specific TLVs. A remote attacker could use this...

K03318649: BIG-IP QKView vulnerability CVE-2020-5890

Security Advisory Description When creating a QKView, credentials for binding to LDAP servers used for remote authentication of the BIG-IP administrative interface will not fully obfuscate if they contain whitespace. CVE-2020-5890 Impact The BIG-IP system may disclose sensitive information used f...

CVE-2020-5890

On BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, and 12.1.0-12.1.5.1 and BIG-IQ 5.2.0-7.1.0, when creating a QKView, credentials for binding to LDAP servers used for remote authentication of the BIG-IP administrative interface will not fully obfuscate if they contain whitespace...