Security Bulletin: IBM Maximo Application Suite - Predict Component uses cryptography-46.0.6-cp311-abi3-manylinux_2_34_x86_64.whl which is vulnerable to CVE-2026-39892

Summary Security Bulletin: IBM Maximo Application Suite - Predict Component uses cryptography-46.0.6-cp311-abi3-manylinux234x8664.whl which is vulnerable to CVE-2026-39892. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-39892...

.NET 9.0 security update

An update is available for dotnet9.0. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list .NET is a managed-software framework. It implements a subset of the .NET...

Oracle Linux 8 : .NET / 9.0 (ELSA-2026-4443)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-4443 advisory. 9.0.115-1.0.1 - Add support for Oracle Linux 9.0.115-1 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152941 Tenable has extracted th...

.NET 9.0 security update

9.0.115-1.0.1 - Add support for Oracle Linux 9.0.115-1 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152944...

Allocation of Resources Without Limits or Throttling

Overview Microsoft.AspNetCore.App.Runtime.win-x64 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in...

Allocation of Resources Without Limits or Throttling

Overview Microsoft.AspNetCore.App.Runtime.linux-musl-arm is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Allocation of Resources Without Limits or...

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling in the SignalR service. An attacker can exhaust internal buffers and cause service disruption by sending malicious messages. Remediation Upgrade...

Out-of-bounds Read

Overview Microsoft.Bcl.Memory is a package that provides Index and Range types to simplify slicing operations on collections for .NET Framework and .NET Standard 2.0. Affected versions of this package are vulnerable to Out-of-bounds Read when decoding malformed Base64Url input. An attacker can...

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read when decoding malformed Base64Url input. An attacker can cause a disruption of service. Remediation Upgrade Microsoft.NETCore.App.Runtime.win-x86 to version 9.0.14, 10.0.4 or higher. References - GitHub Commit - GitHu...

2026-03 .NET 9.0.14 Security Update for x64 Client (KB5081278)

2026-03 .NET 9.0.14 Security Update for x64 Client KB5081278...

RHEL 8 : tomcat (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - tomcat: EncryptInterceptor documentation mistake CVE-2022-29885 - The HTTP/2 implementation in Apache...

CVE-2021-3045

An OS command argument injection vulnerability in the Palo Alto Networks PAN-OS web interface enables an authenticated administrator to read any arbitrary file from the file system. This issue impacts: PAN-OS 8.1 versions earlier than PAN-OS 8.1.19; PAN-OS 9.0 versions earlier than PAN-OS 9.0.14;...

Service Update 0.14 for Microsoft Dynamics 365 9.0

Service Update 0.14 for Microsoft Dynamics 365 9.0 INTRODUCTION Service Update 9.0.14 for Microsoft Dynamics CRM on-premises 9.0 is now available. This article describes the hotfixes and updates that are included in Service Update 9.0.14. MORE INFORMATION Update package| Version number ---|---...

ServersCheck Monitoring Software 9.0.12 / 9.0.14 - Stored XSS

No description provided by source. Author: loneferret of Offensive Security Product: ServersCheck Monitoring Software Version: 9.0.12 - 9.0.14 some versions of 9.0.15 Vendor Site: http://www.serverscheck.com Software Download: http://www.serverscheck.com/monitoringsoftware/download.asp Note: Olde...

ServersCheck Monitoring Software 9.0.129.0.14 - Persistent Cross-Site Scripting

ServersCheck Monitoring Software 9.0.129.0.14 - Persistent Cross-Site Scripting Author: loneferret of Offensive Security Product: ServersCheck Monitoring Software Version: 9.0.12 - 9.0.14 some versions of 9.0.15 Vendor Site: http://www.serverscheck.com Software Download:...

ServersCheck Monitoring Software 9.0.12/9.0.14 - Persistent Cross-Site Scripting

Author: loneferret of Offensive Security Product: ServersCheck Monitoring Software Version: 9.0.12 - 9.0.14 some versions of 9.0.15 Vendor Site: http://www.serverscheck.com Software Download: http://www.serverscheck.com/monitoringsoftware/download.asp Note: Older Appliances may be affected...

ServersCheck Monitoring Software v9.0.12 / 9.0.14 - Stored XSS

Exploit for multiple platform in category web applications Author: loneferret Product: ServersCheck Monitoring Software Version: 9.0.12 - 9.0.14 some versions of 9.0.15 Vendor Site: http://www.serverscheck.com Software Download: http://www.serverscheck.com/monitoringsoftware/download.asp Note:...