CVE-2026-8535 vulnerabilities

Vulnerabilities for packages: chromium...

MAL-2025-8535 Malicious code in @malware-test-cadis-idant/test-mlw3-cadis-idant (npm)

The package @malware-test-cadis-idant/test-mlw3-cadis-idant was found to contain malicious code...

CVE-2025-8535

creationtimestamp| type| source ---|---|--- 2025-08-05 04:13:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lvmttu5lyv2z...

CVE-2025-8535 cronoh NanoVault xrb URL main.js executeJavaScript cross site scripting

A vulnerability, which was classified as problematic, has been found in cronoh NanoVault up to 1.2.1. This issue affects the function executeJavaScript of the file /main.js of the component xrb URL Handler. The manipulation leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8535

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as ...

CVE-2024-8535

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as...

CVE-2024-8535

Affected products: Citrix NetScaler ADC and NetScaler Gateway. Vulnerability: Authenticated users can access unintended user capabilities when the appliance is configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) with Kerberos SSO using a KCDAccount, or as an Auth Server (AAA Vserver) wi...

CVE-2024-8535 Authenticated user can access unintended user capabilities

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as...

CVE-2024-8535 Authenticated user can access unintended user capabilities

Authenticated user can access unintended user capabilities in NetScaler ADC and NetScaler Gateway if the appliance must be configured as a Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy with KCDAccount configuration for Kerberos SSO to access backend resources OR the appliance must be configured as...

CVE-2024-8535

creationtimestamp| type| source ---|---|--- 2024-11-12 16:21:28+00:00| seen| https://infosec.exchange/users/screaminggoat/statuses/113470897346004162 2024-11-12 21:24:48+00:00| seen| https://t.me/cvedetector/10695 2024-12-11 18:02:21+00:00| seen| https://t.me/itsecnews/4953 2024-12-16...

Rocky Linux 8 : GNOME (RLSA-2019:3553)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2019:3553 advisory. - WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH, ...

SUSE: Security Advisory (SUSE-SU-2019:1137-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2019:1155-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2015-8535

creationtimestamp| type| source ---|---|--- 2020-03-27 17:52:10+00:00| seen| https://t.me/cibsecurity/10787...

CVE-2015-8535

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A directory traversal vulnerability was discovered fixed and publicly disclosed in 2015 in Lenovo Solution Center LSC prior to version 3.3.002 that could allow a user to execute arbitrary code with elevated...

CVE-2015-8535

MITRE is populating this ID because it was assigned prior to Lenovo becoming a CNA. A directory traversal vulnerability was discovered fixed and publicly disclosed in 2015 in Lenovo Solution Center LSC prior to version 3.3.002 that could allow a user to execute arbitrary code with elevated...

CVE-2015-8535

Summary of CVE-2015-8535: A directory traversal vulnerability in Lenovo Solution Center (LSC) prior to version 3.3.002 allows an attacker to execute arbitrary code with elevated privileges. Affected product: Lenovo Solution Center. Root cause: directory traversal enabling code execution via manip...

CVE-2019-8535

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 12.2, tvOS 12.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution...

RHEL 8 : GNOME (RHSA-2019:3553)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:3553 advisory. GNOME is the default desktop environment of Red Hat Enterprise Linux. Security Fixes: evince: uninitialized memory use in function...

openSUSE Security Update : webkit2gtk3 (openSUSE-2019-1391)

This update for webkit2gtk3 to version 2.24.1 fixes the following issues : Security issues fixed : - CVE-2019-6201, CVE-2019-6251, CVE-2019-7285, CVE-2019-7292, CVE-2019-8503, CVE-2019-8506, CVE-2019-8515, CVE-2019-8524, CVE-2019-8535, CVE-2019-8536, CVE-2019-8544, CVE-2019-8551, CVE-2019-8558,...