CVE-2026-8851

SOGo versions 5.12.7 and prior contains a SQL injection vulnerability in the Access Control List management functionality that allows authenticated users to extract arbitrary data from the database by injecting SQL subqueries through the uid parameter of the addUserInAcls endpoint. Attackers can...

CVE-2026-8851

creationtimestamp| type| source ---|---|--- 2026-05-23 17:30:52+00:00| seen| https://bsky.app/profile/cyberowi.pl/post/3mmjy2wwqxc2j...

Linux Distros Unpatched Vulnerability : CVE-2026-8851

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SOGo versions 5.12.7 and prior contains a SQL injection vulnerability in the Access Control List management functionality that allows authenticated users to...

CVE-2026-8851 SOGo < 5.12.8 SQL Injection via addUserInAcls endpoint

SOGo versions 5.12.7 and prior contains a SQL injection vulnerability in the Access Control List management functionality that allows authenticated users to extract arbitrary data from the database by injecting SQL subqueries through the uid parameter of the addUserInAcls endpoint. Attackers can...

MAL-2026-3771 Malicious code in request-logger-canary (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cf0d566d7abb400988aea74b00099a6db4c5ea928f32e7d44648193e21a36035 [email protected] ships a preinstall.js that, when npm install runs, opens a TCP socket to 52.74.242.200:8851 and pipes an interactive...

Photon OS 5.0: Libtiff PHSA-2025-5.0-0620

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0620. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

ROOT-OS-DEBIAN-12-CVE-2025-8851 CVE-2025-8851 in rootio-tiff - Patched by Root

Root has patched CVE-2025-8851 in the rootio-tiff package for Root:Debian:12. Multiple fixed versions available...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2026-1441)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2026-1129)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2026-1053)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2026-1032)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2026-1053)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2025-2466)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps...

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2025-2485)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps...

SUSE SLES12 Security Update : tiff (SUSE-SU-2025:3989-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:3989-1 advisory. - CVE-2025-8851: Fixed stack-based buffer overflow vulnerability in tools/tiffcrop.c function readSeparateStripsIntoBuffer by implementing additional...

SUSE-SU-2025:3989-1 Security update for tiff

This update for tiff fixes the following issues: - CVE-2025-8851: Fixed stack-based buffer overflow vulnerability in tools/tiffcrop.c function readSeparateStripsIntoBuffer by implementing additional error handling bsc1248278...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : tiff (SUSE-SU-2025:3957-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:3957-1 advisory. Update to 4.7.1: - CVE-2025-8851: Fixed stack-based buffer overflow bsc1248278. - CVE-2025-9900:...

libtiff-devel-32bit-4.7.1-3.1 on GA media (moderate)

libtiff-devel-32bit-4.7.1-3.1 on GA media Announcement ID: openSUSE-SU-2025:15682-1 Rating: moderate Cross-References: CVE-2025-8851 CVSS scores: CVE-2025-8851 SUSE : 5.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVE-2025-8851 SUSE : 4.8...

CVE-2025-8851 vulnerabilities

Vulnerabilities for packages: tiff...

Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2025-1164)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1164 advisory. A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the component tiffcrop. The manipulation leads ...