Linux Distros Unpatched Vulnerability : CVE-2026-7343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Views in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially...

CVE-2026-7343

Use after free in Views in Google Chrome on Windows prior to 147.0.7727.138 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

CVE-2026-7343

creationtimestamp| type| source ---|---|--- 2026-04-28 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/google-chrome-multiple-vulnerabilities20260429 2026-04-29 00:00:44+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mkls6yfyxg2p 2026-04-29 00:01:01+00:00| seen|...

RockyLinux 9 : nginx:1.26 (RLSA-2026:7343)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:7343 advisory. nginx: NGINX: Denial of Service or Code Execution via specially crafted MP4 files CVE-2026-32647 NGINX: NGINX: Denial of Service or file modification via...

CVE-2023-7343

The CVE-2023-7343 entry concerns the HiSecOS web server where an authenticated operator/auditor can escalate to administrator by sending specially crafted packets. The core issue is a privilege-escalation vulnerability that can grant full administrative access to the affected device. The provided...

CVE-2019-7343

Reflected - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'newMonitorMethod' parameter value in the view monitor monitor.php because proper filtration is omitted...

Linux Distros Unpatched Vulnerability : CVE-2013-7343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in flowplayer.swf in the Flash fallback feature in Flowplayer HTML5 5.4.3 allows remote attackers to inject arbitrary web...

CVE-2025-7343

creationtimestamp| type| source ---|---|--- 2025-07-21 09:34:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3luhorrem2x2j...

CVE-2025-7343 Digiwin｜SFT - SQL Injection

The SFT developed by Digiwin has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 : Jinja2 vulnerabilities (USN-7343-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7343-1 advisory. Rafal Krupinski discovered that Jinja2 did not properly restrict the execution of cod...

CentOS 7 : pcs (RHSA-2022:7343)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:7343 advisory. - jQuery before 3.4.0, as used in Drupal, Backdrop CMS, and other products, mishandles jQuery.extendtrue, , ... because of Object.prototype pollution. ...

CVE-2024-7343

creationtimestamp| type| source ---|---|--- 2024-08-01 07:53:50+00:00| seen| https://t.me/cvedetector/2209...

EUVD-2022-7343

Cross-site Scripting in Backdrop CMS...

Scientific Linux Security Update : pcs on SL7.x x86_64 (2022:7343)

The remote Scientific Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the SLSA-2022:7343-1 advisory. - rubygem-rack: crafted requests can cause shell escape sequences CVE-2022-30123 - jquery: Prototype pollution in object's prototype leading to...

Oracle Linux 7 : pcs (ELSA-2022-7343)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-7343 advisory. 0.9.169-3.0.1 - replace logo pcsd/public/favicon.ico in tarball - remove Source1 HAM-logo.png 0.9.169-3.el73.2 - Update rubygem rack - Upgrade jquery i...

CVE-2020-7343

Missing Authorization vulnerability in McAfee Agent MA for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files...

CVE-2020-7343

CVE-2020-7343 describes a Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1. Local users can block McAfee product updates by manipulating a directory MA uses for temporary files, causing the product to continue operating with-out-of-date detection files. Public r...

CVE-2020-7343 Improper Authorization vulnerability in MA

Missing Authorization vulnerability in McAfee Agent MA for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files...

CVE-2015-7343

creationtimestamp| type| source ---|---|--- 2020-03-09 18:13:11+00:00| seen| https://t.me/cibsecurity/10375...

CVE-2015-7343

JNews Joomla Component before 8.5.0 has XSS via the mailingsearch parameter...