Ubuntu 16.04 LTS : ITK vulnerabilities (USN-8235-1)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8235-1 advisory. It was discovered that Expat, vendored in ITK incorrectly handled certain files. An attacker could possibly use this issue to cause a crash or execute...

CVE-2026-8235

creationtimestamp| type| source ---|---|--- 2026-05-10 10:35:10+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlikrmf4iv2t...

CVE-2026-8235 8421bit MiniClaw System kernel.ts resolveSkillScriptPath os command injection

A vulnerability was detected in 8421bit MiniClaw 0.8.0/0.9.0. This issue affects the function resolveSkillScriptPath of the file src/kernel.ts of the component System Command Handler. The manipulation results in os command injection. The exploit is now public and may be used. The patch is...

MiracleLinux 9 : libvirt-10.5.0-7.el9.ML.1 (AXSA:2024-9096:07)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-9096:07 advisory. libvirt: Crash of virtinterfaced via virConnectListInterfaces CVE-2024-8235 Tenable has extracted the preceding description block directly from the...

Linux Distros Unpatched Vulnerability : CVE-2024-8235

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libvirt. A refactor of the code fetching the list of interfaces for multiple APIs introduced a corner case on platforms where allocating 0...

MAL-2025-8235 Malicious code in @landmineaknpm2/adipisci-sequi-qui (npm)

The package @landmineaknpm2/adipisci-sequi-qui was found to contain malicious code...

CVE-2025-8235

A vulnerability was found in code-projects Online Ordering System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/product.php. The manipulation of the argument Name leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2025-8235

A vulnerability was found in code-projects Online Ordering System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/product.php. The manipulation of the argument Name leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...

CVE-2020-8235

Missing access control in Nextcloud Deck 1.0.4 caused an insecure direct object reference allowing an attacker to view all attachments...

CVE-2019-8235

An insecure direct object reference IDOR vulnerability exists in Magento 2.3 prior to 2.3.1, 2.2 prior to 2.2.8, and 2.1 prior to 2.1.17 versions. An authenticated user may be able to view personally identifiable shipping details of another user due to insufficient validation of user controlled...

RockyLinux 9 : libvirt (RLSA-2024:9128)

The remote RockyLinux 9 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:9128 advisory. libvirt: Crash of virtinterfaced via virConnectListInterfaces CVE-2024-8235 Tenable has extracted the preceding description block directly from the RockyLinux...

libvirt security update

An update is available for libvirt. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Kernel-based Virtual Machine KVM offers a full virtualization solution forLin...

Oracle Linux 9 : libvirt (ELSA-2024-9128)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-9128 advisory. - udevListInterfaces: Honour array length for zero-length NULL arrays CVE-2024-8235 CVE-2024-8235, RHEL-55373 - Fix off-by-one error in udevListInterfacesByStat...

libvirt security update

10.5.0-7.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 10.5.0-7 - qemu: Refactor default panic model RHEL-56451 - qemu: Sometimes the default panic model doesn't exist RHEL-56451 - qemu: Use pvpanic by default on aarch64 RHEL-56451 10.5.0-6 - udevListInterfaces: Honour array length fo...

Moderate: Red Hat Security Advisory: libvirt security update

An update for libvirt is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

RHEL 9 : libvirt (RHSA-2024:9128)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:9128 advisory. Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains...

Moderate: libvirt security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

ALSA-2024:9128 Moderate: libvirt security update

Kernel-based Virtual Machine KVM offers a full virtualization solution forLinux on numerous hardware platforms. The virt:rhel module contains packageswhich provide user-space components used to run virtual machines using KVM.The packages also provide APIs for managing and interacting with the...

BELL-CVE-2024-8235

Bulletin has no description...

CVE-2024-8235

creationtimestamp| type| source ---|---|--- 2024-08-30 19:49:50+00:00| seen| https://t.me/cvedetector/4535...