CVE-2026-6235

creationtimestamp| type| source ---|---|--- 2026-04-22 10:23:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mk3bquwmcy2c 2026-04-22 11:16:16+00:00| published-proof-of-concept| Telegram/4Ce1p0rz1Dwr7V7nrROOlVFZDWJLAA0UiQHZa7V2KBLsc 2026-04-22 11:16:22+00:00| seen|...

CVE-2025-6235

creationtimestamp| type| source ---|---|--- 2025-09-09 20:56:44+00:00| seen| MISP/2bceffac-02c3-4c54-a709-6e253b38ec76...

CVE-2025-6235 ExtremeControl (NAC) 'onmouseover' XSS

In ExtremeControl before 25.5.12, a cross-site scripting XSS vulnerability was discovered in a login interface of the affected application. The issue stems from improper handling of user-supplied input within HTML attributes, allowing an attacker to inject script code that may execute in a user's...

CVE-2025-6235

CVE-2025-6235 affects ExtremeControl prior to 25.5.12, with an XSS in the login interface due to improper handling of user input in HTML attributes. The vulnerability can allow injected script to run in a user’s browser under certain interactions, potentially exposing user data or enabling unauth...

CVE-2024-6235

Sensitive information disclosure in NetScaler Console...

CVE-2020-6235

SAP Solution Manager Diagnostics Agent, version 7.2, does not perform the authentication check for the functionalities of the Collector Simulator, leading to Missing Authentication...

CVE-2024-6235

Sensitive information disclosure in NetScaler Console...

CVE-2024-6235 Sensitive information disclosure

Sensitive information disclosure in NetScaler Console...

CVE-2024-6235

CVE-2024-6235 is a NetScaler vulnerability in the NetScaler Console (and related components) that enables sensitive information disclosure. It affects NetScaler Console versions 14.1 before 14.1-25.53 (and related console/SDX/agent lines for CVE-2024-6236); exploitation can reveal sensitive data ...

CVE-2024-6235

creationtimestamp| type| source ---|---|--- 2024-07-10 10:17:47+00:00| published-proof-of-concept| https://t.me/HackingInsights/5523 2024-07-10 21:49:01+00:00| seen| https://t.me/cvedetector/573 2024-07-11 05:53:00+00:00| seen| https://t.me/thehackernews/5237 2025-04-22 21:20:42+00:00| seen|...

CVE-2023-6235

An uncontrolled search path element vulnerability has been found in the Duet Display product, affecting version 2.5.9.1. An attacker could place an arbitrary libusk.dll file in the C:\Users\user\AppData\Local\Microsoft\WindowsApps\ directory, which could lead to the execution and persistence of...

CVE-2023-6235 Arbitrary code execution in Duet Display

An uncontrolled search path element vulnerability has been found in the Duet Display product, affecting version 2.5.9.1. An attacker could place an arbitrary libusk.dll file in the C:\Users\user\AppData\Local\Microsoft\WindowsApps\ directory, which could lead to the execution and persistence of...

CVE-2023-6235

The CVE-2023-6235 issue affects Duet Display (version 2.5.9.1). It describes an uncontrolled search path element vulnerability that could let an attacker place an arbitrary libusk.dll in C:\Users\user\AppData\Local\Microsoft\WindowsApps, enabling execution and persistence of arbitrary code. This ...

Ubuntu: Security Advisory (USN-6235-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2008-6235

The Netrw plugin netrw.vim in Vim 7.0 and 7.1 allows user-assisted attackers to execute arbitrary commands via shell metacharacters in a filename used by the 1 "D" delete command or 2 b:netrwcurdir variable, as demonstrated using the netrw.v4 and netrw.v5 test cases...

Ubuntu: Security Advisory (USN-393-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

com.coherentlogic.fred.client:fred-client-core (=0.9.3), com.coherentlogic.fred.client:fred-client-core-it (=0.9.3) +36 more potentially affected by CVE-2013-6235 via com.jamonapi:jamon (>=1.0 <=2.75)

com.jamonapi:jamon MAVEN version =1.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.3.0, =1.1.4, =0.9.0, =0.9.1 and more Source cves: CVE-2013-6235 Source advisory: OSV:GHSA-QPR7-5M63-HQ2Chttps://vulners.com/osv/OSV:GHSA...

CVE-2020-6235

CVE-2020-6235 affects SAP Solution Manager (Diagnostics Agent) 7.2, where the Collector Simulator lacks authentication checks, causing Missing Authentication. Multiple sources (NVD, Red Hat, CNVD, CVE lists) describe this issue with network-facing exposure and potential high impact on confidentia...

About the security content of iTunes 12.9.3 for Windows - Apple Support

About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available. Recent releases are listed on the Apple security updates page. Apple security documents reference...

CVE-2019-6235

CVE-2019-6235 is an Apple memory-corruption issue fixed in iOS 12.1.3, macOS Mojave 10.14.3, tvOS 12.1.2, watchOS 5.1.3, and iTunes 12.9.3 for Windows. A sandboxed process may be able to circumvent sandbox restrictions. The fix is described as improved validation. Apple advisories HT209443/HT2094...