CVE-2026-7865 Hidden Console Command

A hidden console command is vulnerable to command injection flaw when control characters are passed to its second argument. A third party researcher Eugene Lim had discovered vulnerability in the way console command passes to a popen function call. Attackers with authenticated access to SSH...

RHCOS 4 : OpenShift Container Platform 4.10.41 (RHSA-2022:7865)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:7865 advisory. - jenkins-plugin: Man-in-the-Middle MitM in org.jenkins-ci.plugins:git-client CVE-2022-36881 Note that Nessus has not tested for this issue b...

CVE-2020-7865

A vulnerabilityimproper input validation in the ExECM CoreB2B solution allows an unauthenticated attacker to download and execute an arbitrary file via httpDownload function. A successful exploit could allow the attacker to hijack vulnerable system...

Ubuntu Pro FIPS 16.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7865-1)

"The remote Ubuntu Pro FIPS 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7865-1 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor...

CVE-2025-7865

creationtimestamp| type| source ---|---|--- 2025-07-20 07:06:14+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3luevzeg7lh2w...

CVE-2025-7865 thinkgem JeeSite XSS Filter EncodeUtils.java xssFilter cross site scripting

A vulnerability was found in thinkgem JeeSite up to 5.12.0. It has been declared as problematic. This vulnerability affects the function xssFilter of the file src/main/java/com/jeesite/common/codec/EncodeUtils.java of the component XSS Filter. The manipulation of the argument text leads to cross...

CVE-2025-7865 thinkgem JeeSite XSS Filter EncodeUtils.java xssFilter cross site scripting

A vulnerability was found in thinkgem JeeSite up to 5.12.0. It has been declared as problematic. This vulnerability affects the function xssFilter of the file src/main/java/com/jeesite/common/codec/EncodeUtils.java of the component XSS Filter. The manipulation of the argument text leads to cross...

RHEL 8 : OpenShift Container Platform 4.10.41 (RHSA-2022:7865)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2022:7865 advisory. Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud...

CVE-2020-7865

creationtimestamp| type| source ---|---|--- 2021-09-07 18:17:18+00:00| seen| https://t.me/cibsecurity/28353...

CVE-2020-7865

The CVE-2020-7865 entry concerns the ExECM CoreB2B solution, where improper input validation allows an unauthenticated attacker to download and execute an arbitrary file via the httpDownload function, potentially hijacking the vulnerable system. Documents in the connected set corroborate this des...

CVE-2020-7865 Inoguard ExECM CoreB2B solution remote code execution vulnerability

A vulnerabilityimproper input validation in the ExECM CoreB2B solution allows an unauthenticated attacker to download and execute an arbitrary file via httpDownload function. A successful exploit could allow the attacker to hijack vulnerable system...

CVE-2019-7865

CVE-2019-7865 - Magento CSRF in checkout cart item. A CSRF vulnerability exists in Magento 2.1.x before 2.1.18, 2.2.x before 2.2.9, and 2.3.x before 2.3.2, exploitable during editing/configuration of checkout cart items. The issue stems from inadequate CSRF protections on the checkout cart item w...

Debian DLA-1654-1 : libav security update

Several security issues have been corrected in multiple demuxers and decoders of the libav multimedia library. CVE-2014-8542 libavcodec/utils.c omitted a certain codec ID during enforcement of alignment, which allowed remote attackers to cause a denial of ervice out-of-bounds access or possibly...

CVE-2018-7865

...

CVE-2018-7865

CVE-2018-7865 is rejected and does not represent an active vulnerability entry.

openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1067)

This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...

openSUSE Security Update : ffmpeg2 (openSUSE-2017-631)

This update for ffmpeg2 fixes security issues, bugs, and enables AC3 and MP3 decoding. The following vulnerabilities were fixed : - CVE-2017-7863: heap-based buffer overflow bsc1034179 - CVE-2017-7865: heap-based buffer overflow bsc1034177 - CVE-2017-7866: stack-based buffer overflow bsc1034176 -...

openSUSE Security Update : ffmpeg (openSUSE-2017-524)

This update for ffmpeg to version 3.3 fixes several issues. These security issues were fixed : - CVE-2016-10190: Heap-based buffer overflow in libavformat/http.c in FFmpeg allowed remote web servers to execute arbitrary code via a negative chunk size in an HTTP response boo1022920 - CVE-2016-1019...

CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideodecodeblockopcode0xA function in libavcodec/interplayvideo.c and the avcodecaligndimensions2 function in libavcodec/utils.c...

UBUNTU-CVE-2017-7865

FFmpeg before 2017-01-24 has an out-of-bounds write caused by a heap-based buffer overflow related to the ipvideodecodeblockopcode0xA function in libavcodec/interplayvideo.c and the avcodecaligndimensions2 function in libavcodec/utils.c...