MINI-8397-2W6F-Q96H

Bulletin has no description...

MAL-2025-8397 Malicious code in @leaffm/leaf-connect-novomins (npm)

The package @leaffm/leaf-connect-novomins was found to contain malicious code...

WordPress GDPR Cookie Consent plugin <= 2.6.0 - Unauthenticated Stored XSS vulnerability

Unauthenticated Stored XSS vulnerability discovered by Zitec/Teodora Jilaveanu in WordPress Plugin GDPR Cookie Consent versions = 2.6.0...

CVE-2024-8397

The webtoffee-gdpr-cookie-consent WordPress plugin before 2.6.1 does not properly sanitize and escape the IP headers when logging them, allowing visitors to conduct Stored Cross-Site Scripting attacks. The payload gets triggered when an admin visits the 'Consent report' page and the malicious...

CVE-2024-8397 GDPR Cookie Consent <= 2.6.0 - Unauthenticated Stored XSS

The webtoffee-gdpr-cookie-consent WordPress plugin before 2.6.1 does not properly sanitize and escape the IP headers when logging them, allowing visitors to conduct Stored Cross-Site Scripting attacks. The payload gets triggered when an admin visits the 'Consent report' page and the malicious...

CVE-2024-8397 GDPR Cookie Consent <= 2.6.0 - Unauthenticated Stored XSS

The webtoffee-gdpr-cookie-consent WordPress plugin before 2.6.1 does not properly sanitize and escape the IP headers when logging them, allowing visitors to conduct Stored Cross-Site Scripting attacks. The payload gets triggered when an admin visits the 'Consent report' page and the malicious...

Linux Distros Unpatched Vulnerability : CVE-2017-8397

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.28, is vulnerable to an invalid read of size 1 and an invalid write of size ...

SUSE CVE-2019-8397

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5Tclosereal in H5T.c...

Microsoft Graphics Device Interface Remote Code Execution (CVE-2018-8397)

A remote code execution vulnerability exists in the GDI components of Microsoft Windows. The vulnerability is due to improper handling of objects in memory. A remote attacker could exploit the vulnerability by enticing a user to open a specially crafted document...

CVE-2020-8397

...

CVE-2020-8397

CVE-2020-8397 entry is rejected/not used and does not represent an active vulnerability.

Huawei EulerOS: Security Advisory for binutils (EulerOS-SA-2019-1799)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

UBUNTU-CVE-2019-8397

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5Tclosereal in H5T.c...

CVE-2019-8397

An issue was discovered in the HDF HDF5 1.10.4 library. There is an out of bounds read in the function H5Tclosereal in H5T.c...

CVE-2019-8397

The CVE-2019-8397 issue affects the HDF5 1.10.4 library and is caused by an out-of-bounds read in the H5T_close_real function in H5T.c. Publicly referenced records (CNVD-2019-42551 and related OSV/NVD entries) describe an attacker-exploitable scenario leading to a denial of service. No vendor-spe...

CVE-2018-8397

CVE-2018-8397 is a remote code execution vulnerability in the Windows GDI+. It arises from improper handling of objects in memory within the GDI components, allowing an attacker to remotely take control of an affected system by convincing a user to open a crafted document or visit a malicious web...

CVE-2018-8397

A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface GDI handles objects in the memory, aka "GDI+ Remote Code Execution Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2...

Microsoft Windows GDI+ Component CVE-2018-8397 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition. Successful exploitatio...

KLA11789 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Eextended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote code execution vulnerability in...

Security Updates for Windows Server 2008 (August 2018) (Foreshadow)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities : - Errors exist related to microprocessors utilizing speculative execution and L1 data cache that could allow information disclosure. CVE-2018-3615, CVE-2018-3620, CVE-2018-3646 - A remote...