Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7516-8)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7516-8 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

CVE-2025-7516

creationtimestamp| type| source ---|---|--- 2025-09-09 20:51:39+00:00| seen| MISP/e0a0042d-e47b-4875-b781-99d4428af3c2...

The vulnerability of the implementation of the JSON Web Encryption (JWE) standard RFC 7516 in the Ruby programming language allows a perpetrator to disclose and modify the protected information.

The vulnerability of the JSON Web Encryption JWE RFC 7516 standard implementation in the Ruby programming language is related to improper verification of data integrity. Exploiting this vulnerability could allow an attacker to disclose and modify the protected information...

CVE-2025-7516

A vulnerability classified as critical was found in code-projects Online Appointment Booking System 1.0. This vulnerability affects unknown code of the file /cancelbookingpatient.php. The manipulation of the argument appointment leads to sql injection. The attack can be initiated remotely. The...

CVE-2020-7516

A CWE-316: Cleartext Storage of Sensitive Information in Memory vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker access to login credentials...

Linux Distros Unpatched Vulnerability : CVE-2016-7516

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted VIFF file...

CVE-2024-7516

creationtimestamp| type| source ---|---|--- 2024-11-12 21:24:51+00:00| seen| https://t.me/cvedetector/10699...

CVE-2024-7516 Brocade Fabric OS before 9.2.2 does not enforce strict host key checking

A vulnerability in Brocade Fabric OS versions before 9.2.2 could allow man-in-the-middle attackers to conduct remote Service Session Hijacking that may arise from the attacker's ability to forge an SSH key while the Brocade Fabric OS Switch is performing various remote operations initiated by a...

GHSA-RM8V-MXJ3-5RMQ github.com/lestrrat-go/jwx vulnerable to Potential Padding Oracle Attack

Summary Decrypting AES-CBC encrypted JWE has Potential Padding Oracle Attack Vulnerability. Details On v2.0.10, decrypting AES-CBC encrypted JWE may return an error "failed to generate plaintext from decrypted blocks: invalid padding":...

SUSE CVE-2016-7516

The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted VIFF file...

CVE-2020-7516

A CWE-316: Cleartext Storage of Sensitive Information in Memory vulnerability exists in Easergy Builder V1.4.7.2 and prior which could allow an attacker access to login credentials...

CVE-2020-7516

CVE-2020-7516 (Easergy Builder) affects Schneider Electric Easergy Builder 1.4.7.2 and earlier. A CWE-316 flaw causes Cleartext Storage of Sensitive Information in Memory, enabling an attacker to access login credentials. The linked sources (NVD, Red Hat advisory, CNVD, CVE list, PRION-family ent...

CVE-2018-7516

CVE-2018-7516 describes a Server-Side Request Forgery (SSRF) in Geutebruck G-Cam/EFD-2250 v1.12.0.4 and Topline TopFD-2125 v3.15.1 IP cameras. Root cause: unauthenticated SSRF that could proxy network scans. Impact per sources includes potential proxying of scans and other access risks; exploitat...

CVE-2017-7516

CVE-2017-7516 is a duplicate of CVE-2015-1197 and has been superseded; the related issue affects the cpio tool. The connected documents describe a path traversal vulnerability introduced by reverting patches affecting --no-absolute-filenames, enabling an attacker to write to arbitrary files via a...

CVE-2017-7516

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2015-1197. Reason: This candidate is a duplicate of CVE-2015-1197. Notes: All CVE users should reference CVE-2015-1197 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usag...

Fedora Update for techne FEDORA-2017-8f27031c8f

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-7516

CVE-2015-7516 affects ONOS before 1.5.0 when using the ifwd app. A remote attacker can cause a denial of service by sending two Ethernet frames with ether_type 0x8870, triggering a NULL pointer dereference and switch disconnect. The available documents describe the impact as DoS but do not specif...

Critical vulnerability in JSON Web Encryption (JWE) - RFC 7516

tl;dr if you are using go-jose, node-jose, jose2go, Nimbus JOSE+JWT or jose4j with ECDH-ES please update to the latest version. RFC 7516 aka JSON Web Encryption JWE hence many software libraries implementing this specification used to suffer from a classic Invalid Curve Attack. This would allow a...

SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2016:2964-1)

This update for ImageMagick fixes the following issues: These vulnerabilities could be triggered by processing specially crafted image files, which could lead to a process crash or resource consumtion, or potentially have unspecified futher impact. - CVE-2016-8862: Memory allocation failure in...

openSUSE Security Update : ImageMagick (openSUSE-2016-1282)

This update for ImageMagick fixes the following issues: These vulnerabilities could be triggered by processing specially crafted image files, which could lead to a process crash or resource consumtion, or potentially have unspecified futher impact. - CVE-2016-8684: Mismatch between real filesize...