UBUNTU-CVE-2026-6507

A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY Bootstrap Protocol Reply packet to a dnsmasq server configured with the --dhcp-split-relay option. This can lead to memory corruption, causing the dnsmasq...

CVE-2026-6507

A flaw was found in dnsmasq. A remote attacker could exploit an out-of-bounds write vulnerability by sending a specially crafted BOOTREPLY Bootstrap Protocol Reply packet to a dnsmasq server configured with the --dhcp-split-relay option. This can lead to memory corruption, causing the dnsmasq...

MiracleLinux 9 : nodejs-16.20.2-3.el9 (AXSA:2023-6507:05)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6507:05 advisory. nodejs: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 A Cybertrust Japan Co., Ltd. Security...

EUVD-2018-9404

Malware in sbrugna...

Deserialization of Untrusted Data

Overview Affected versions of this package are vulnerable to Deserialization of Untrusted Data due to an improper fix for CVE-2025-6507. An attacker can execute arbitrary code and access unauthorized system files by injecting malicious parameters that bypass regular expression filters by adding...

ai.h2o:h2o-admissibleml (>=3.34.0.1 <=3.46.0.10), ai.h2o:h2o-algos (>=0.1.9 <=3.46.0.10) +45 more potentially affected by CVE-2025-6507 +1 more via ai.h2o:h2o-core (>=0.1.10 <=3.46.0.7)

ai.h2o:h2o-core MAVEN version =0.1.10, =3.34.0.1, =0.1.9, =0.1.9, =3.12.0.1, =3.10.0.1, =3.14.0.7, =3.16.0.1, =3.14.0.1, =3.24.0.1, =3.30.1.1, =3.26.0.4, =3.10.5.1, =3.24.0.1, =3.30.0.1, =3.34.0.3, =3.46.0.10 and more Source cves: CVE-2025-6507, CVE-2025-6544 Source advisory:...

CVE-2025-6507

creationtimestamp| type| source ---|---|--- 2025-09-01 09:01:55+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lxrajqyulz2q 2025-09-01 09:25:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxrbtu4nl72m 2025-09-01 09:40:51+00:00| seen|...

ai.h2o:h2o-admissibleml (>=3.34.0.1 <=3.46.0.10), ai.h2o:h2o-algos (>=0.1.9 <=3.46.0.10) +45 more potentially affected by CVE-2024-10553 +1 more via ai.h2o:h2o-core (>=0.1.10 <=3.46.0.7)

ai.h2o:h2o-core MAVEN version =0.1.10, =3.34.0.1, =0.1.9, =0.1.9, =3.12.0.1, =3.10.0.1, =3.14.0.7, =3.16.0.1, =3.14.0.1, =3.24.0.1, =3.30.1.1, =3.26.0.4, =3.10.5.1, =3.24.0.1, =3.30.0.1, =3.34.0.3, =3.46.0.10 and more Source cves: CVE-2024-10553, CVE-2025-6507 Source advisory:...

Linux Distros Unpatched Vulnerability : CVE-2016-6507

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - epan/dissectors/packet-mmse.c in the MMSE dissector in Wireshark 1.12.x before 1.12.13 allows remote attackers to cause a denial of service infinite loop via a...

CVE-2024-6507

Command injection when ingesting a remote Kaggle dataset due to a lack of input sanitization in the ingestkaggle API...

Security Flaws in Popular ML Toolkits Enable Server Hijacks, Privilege Escalation

Cybersecurity researchers have uncovered nearly two dozen security flaws spanning 15 different machine learning ML related open-source projects. These comprise vulnerabilities discovered both on the server- and client-side, software supply chain security firm JFrog said in an analysis published...

CVE-2023-6507 affecting package python3 for versions less than 3.12.3-1

CVE-2023-6507 affecting package python3 for versions less than 3.12.3-1. An upgraded version of the package is available that resolves this issue...

Ubuntu: Security Advisory (USN-6891-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-6507

creationtimestamp| type| source ---|---|--- 2024-07-04 15:10:23+00:00| seen| https://t.me/cvedetector/51...

CVE-2024-6507

Command injection when ingesting a remote Kaggle dataset due to a lack of input sanitization in the ingestkaggle API...

CVE-2024-6507

CVE-2024-6507 relates to a command injection in the Deep Lake AI database when ingesting a remote Kaggle dataset, caused by insufficient input sanitization in the ingest_kaggle() API. The vulnerability is described across multiple sources (NVD/Red Hat/Veracode) with a high impact profile (CVSS v3...

CVE-2024-6507 Deep Lake Kaggle command injection

Command injection when ingesting a remote Kaggle dataset due to a lack of input sanitization in the ingestkaggle API...

MAL-2024-762 Malicious code in wlwz-2312-6507 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6818de3785383d7bb78087bf1728540d438cd8ea3b1825ba04dd4945e16b6beb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Malicious code in wlwz-2312-6507 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 6818de3785383d7bb78087bf1728540d438cd8ea3b1825ba04dd4945e16b6beb Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

CVE-2023-6507

creationtimestamp| type| source ---|---|--- 2023-12-31 15:16:41+00:00| seen| https://t.me/ctinow/161107...