CVE-2024-8443 affecting package opensc for versions less than 0.26.1-1

CVE-2024-8443 affecting package opensc for versions less than 0.26.1-1. An upgraded version of the package is available that resolves this issue...

MAL-2025-8443 Malicious code in @malware-test-abear-aglet-solan-sangs/test-mlw3-abear-aglet-solan-sangs (npm)

The package @malware-test-abear-aglet-solan-sangs/test-mlw3-abear-aglet-solan-sangs was found to contain malicious code...

CVE-2025-8443

creationtimestamp| type| source ---|---|--- 2025-08-01 11:58:12+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvdlwi6q2a2s...

CVE-2025-8443

CVE-2025-8443 affects code-projects Online Medicine Guide 1.0. The vulnerability is a SQL injection in login.php via the uname parameter, exploitable remotely; multiple sources describe public disclosure and potential impact. A practical mitigation noted in PT Security documentation is to restric...

CVE-2025-8443 code-projects Online Medicine Guide login.php sql injection

A vulnerability was found in code-projects Online Medicine Guide 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-8443 code-projects Online Medicine Guide login.php sql injection

A vulnerability was found in code-projects Online Medicine Guide 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument uname leads to sql injection. The attack may be launched remotely. The exploit has been...

The vulnerability of the ExternalScripts web interface module of the NSClient++ monitoring tool allows a hacker to increase their privileges and execute arbitrary commands.

The vulnerability of the ExternalScripts web interface of the NSClient++ monitoring tool is related to the lack of authentication for the critical function. Exploiting this vulnerability allows a remote attacker to enhance their privileges and execute arbitrary commands by connecting to port 8443...

CVE-2025-34078

A local privilege escalation vulnerability exists in NSClient++ 0.5.2.35 when both the web interface and ExternalScripts features are enabled. The configuration file nsclient.ini stores the administrative password in plaintext and is readable by local users. By extracting this password, an attack...

TencentOS Server 4: opensc (TSSA-2024:0894)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0894 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

CVE-2020-8443

In OSSEC-HIDS 2.7 through 3.5.0, the server component responsible for log analysis ossec-analysisd is vulnerable to an off-by-one heap-based buffer overflow during the cleaning of crafted syslog msgs received from authenticated remote agents and delivered to the analysisd processing queue by...

Linux Distros Unpatched Vulnerability : CVE-2024-8443

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow vulnerability was found in the libopensc OpenPGP driver. A crafted USB device or smart card with malicious responses to the APDUs...

Low: opensc

Issue Overview: It is caused by the libopensc library in opensc porject. This vulnerability affects how the buffer data is handled and partially filled buffers can be accessed incorrectly when a specially crafted response to APDUs in a USB device or a smart card. CVE-2024-45615 It is caused by th...

The vulnerability of the application software interface of the Trend Micro Cloud Edge device for comprehensive network security management allows a perpetrator to execute arbitrary code.

The vulnerability of the application software interface of the Trend Micro Cloud Edge device for comprehensive network security management is related to the failure to take measures for data cleaning at the management level. Exploiting this vulnerability allows a malicious actor to execute...

SUSE-SU-2024:3517-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076 - CVE-2024-45619: Incorrect handling length of buffers or files in libopensc. bsc1230075 - CVE-2024-45618: Uninitialized values after incorrect or...

opensc-0.25.1-2.1 on GA media (moderate)

opensc-0.25.1-2.1 on GA media Announcement ID: openSUSE-SU-2024:14382-1 Rating: moderate Cross-References: CVE-2024-45615 CVE-2024-45616 CVE-2024-45617 CVE-2024-45618 CVE-2024-45619 CVE-2024-45620 CVE-2024-8443 CVSS scores: CVE-2024-45615 SUSE : 3.9 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L...

openSUSE Security Advisory (SUSE-SU-2024:3445-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:3443-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : opensc (SUSE-SU-2024:3445-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3445-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : opensc (SUSE-SU-2024:3444-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3444-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076...

SUSE SLES12 Security Update : opensc (SUSE-SU-2024:3443-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3443-1 advisory. - CVE-2024-45620: Incorrect handling of the length of buffers or files in pkcs15init. bsc1230076 - CVE-2024-45619: Incorrect handli...