CVE-2026-6148

creationtimestamp| type| source ---|---|--- 2026-04-13 03:16:54+00:00| published-proof-of-concept| Telegram/KiQO6BzL2B4UMdSmpPVmdPz1IvqmoqW4UFsejAlxhN67Qrk 2026-04-13 05:34:48+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mje5foj4i22r...

Debian: Security Advisory (DSA-6148-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Google Chrome < 67.0.3396.79 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 67.0.3396.79. It is, therefore, affected by a vulnerability as referenced in the 201806stable-channel-update-for-desktop advisory. - Incorrect implementation in Content Security Policy in Google Chrome prior to...

Google Chrome < 67.0.3396.79 Vulnerability

The version of Google Chrome installed on the remote macOS host is prior to 67.0.3396.79. It is, therefore, affected by a vulnerability as referenced in the 201806stable-channel-update-for-desktop advisory. - Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396....

Linux Distros Unpatched Vulnerability : CVE-2018-6148

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect implementation in Content Security Policy in Google Chrome prior to 67.0.3396.79 allowed a remote attacker to bypass navigation restrictions via a...

CVE-2025-6148

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. It has been rated as critical. This issue affects some unknown processing of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

CVE-2025-6148

creationtimestamp| type| source ---|---|--- 2025-06-17 00:32:47+00:00| published-proof-of-concept| Telegram/1YjoRTNXMY4RH6kXSKEWMrI4TetFUtva-ZdtH-4HJXYyJM 2025-06-17 04:08:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrrmonte6a2p 2025-06-17 16:41:30+00:00|...

CVE-2025-6148 TOTOLINK A3002RU HTTP POST Request formSysLog buffer overflow

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. It has been rated as critical. This issue affects some unknown processing of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

CVE-2025-6148 TOTOLINK A3002RU HTTP POST Request formSysLog buffer overflow

A vulnerability was found in TOTOLINK A3002RU 3.0.0-B20230809.1615. It has been rated as critical. This issue affects some unknown processing of the file /boafrm/formSysLog of the component HTTP POST Request Handler. The manipulation of the argument submit-url leads to buffer overflow. The attack...

Oracle Linux 8 : nodejs:18 (ELSA-2024-6148)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-6148 advisory. nodejs 1:18.20.4-1 - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 nodejs-nodemon nodejs-packaging Tenable has extracted the preceding...

CVE-2024-6148

creationtimestamp| type| source ---|---|--- 2024-07-10 23:54:55+00:00| seen| https://t.me/cvedetector/596...

CVE-2024-6148

Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5...

CVE-2024-6148

CVE-2024-6148 affects Citrix Workspace app for HTML5 prior to version 2404.1. The Citrix CTX678037 security bulletin documents two vulnerabilities: (1) bypass of GACS Policy Configuration settings, and (2) redirection of users to a vulnerable URL (CVE-2024-6149). The issue originates in the HTML5...

CVE-2024-6148

Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5...

CVE-2024-6148

Bypass of GACS Policy Configuration settings in Citrix Workspace app for HTML5...

Citrix Workspace app for HTML5 Security Bulletin CVE-2024-6148 and CVE-2024-6149

Description of Problem Two vulnerabilities have been discovered that impact the Citrix Workspace app for HTML5. Refer to below for further details: Affected Versions The vulnerabilities affect the following supported versions of the Citrix Workspace app for HTML5. Citrix Workspace app for HTML5...

CVE-2023-6148

creationtimestamp| type| source ---|---|--- 2024-01-09 10:26:23+00:00| seen| https://t.me/ctinow/164913 2024-01-26 08:36:18+00:00| seen| https://t.me/ctinow/174049 2024-01-26 20:26:54+00:00| seen| https://t.me/arpsyndicate/3060...

CVE-2023-6148

Qualys Jenkins Plugin for Policy Compliance (versions prior to and including 1.0.5) is affected by a permission-check weakness during connectivity checks to Qualys Cloud Services. This flaw allows any user with login access and the ability to configure/edit jobs to route traffic through a rogue e...

CVE-2023-6148 Possible XSS vulnerability in Jenkins Plugin for Qualys Policy Compliance

Qualys Jenkins Plugin for Policy Compliance prior to version and including 1.0.5 was identified to be affected by a security flaw, which was missing a permission check while performing a connectivity check to Qualys Cloud Services. This allowed any user with login access and access to configure o...

Ubuntu: Security Advisory (USN-6148-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...