MAL-2025-9243 Malicious code in @povsicoenpm/consequatur-aut-harum-veritatis (npm)

The package @povsicoenpm/consequatur-aut-harum-veritatis was found to contain malicious code...

CVE-2024-9243

creationtimestamp| type| source ---|---|--- 2024-09-26 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1296/...

atlassian-jwt-auth (>=1.0.9 <=2.8.0), cloudmesh-client (>=4.2.6 <=4.4.0) +44 more potentially affected by CVE-2016-9243 via cryptography (>=0.6.1 <=1.5.2)

cryptography PYPI version =0.6.1, =1.0.9, =4.2.6, =0.9.5, =0.0.1, =0.0.1, =1.1.1, =1.0.2, =1.0.2, =1.0.2, =0.0.1, =0.0.1, =1.0.2, =1.0.3 and more Source cves: CVE-2016-9243 Source advisory: OSV:GHSA-Q3CJ-2R34-2CWC...

Oracle Linux 8 : openssl (ELSA-2022-9243)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-9243 advisory. 1:1.1.1k-5.0.1 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt Orabug: 33974871 Tenable has extracted the preceding description block directly from th...

Mageia: Security Advisory (MGASA-2016-0377)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2021-2428)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for python-cryptography (EulerOS-SA-2021-1837)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : python-cryptography (EulerOS-SA-2021-1837)

According to the version of the python-cryptography package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize.CVE-2016-9243 Note...

@kmanion/senpai (=1.0.0), be-more-hapi (=1.0.0-rc.1.1) +39 more potentially affected by CVE-2015-9243 via hapi (>=0.14.2 <=11.1.2)

hapi NPM version =0.14.2, =0.1.0-pre, =0.0.2, =0.0.7, =0.1.0, =0.1.0, =0.0.1, =0.0.4 - hapi-auth-passthrough =1.0.0 - hapi-exit =0.0.2 - hapi-mongoose-connect =1.0.0 - hapi-register-example =1.0.1 and more Source cves: CVE-2015-9243 Source advisory: OSV:GHSA-J3G2-M5JJ-6336...

CVE-2020-9243

HUAWEI Mate 30 with versions earlier than 10.1.0.150C00E136R5P3 have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service...

CVE-2020-9243

CVE-2020-9243 affects Huawei Mate 30 devices running versions earlier than 10.1.0.150 (C00E136R5P3). The issue is a denial-of-service vulnerability caused by insufficient recursion depth limiting in the system, which an attacker can trigger by convincing a user to install and run a malicious app....

Security Advisory - Denial of Service Vulnerability in Several Smartphones

There is a denial of service vulnerability in several smartphones. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service condition. Vulnerability ID:...

CVE-2019-9243

CVE-2019-9243 affects wpa_supplicant_8 in Android 10. The vulnerability is an out-of-bounds read caused by a missing bounds check in a component of wpa_supplicant_8, leading to local information disclosure without requiring privileges; no user interaction is needed. Several connected records corr...

CVE-2015-9243

CVE-2015-9243 affects the hapi Node.js framework prior to version 11.1.4, where merging server/connection/route-level CORS configurations could cause security restrictions (e.g., origin) to be overridden by less restrictive defaults (origin → *). This confluence creates weaker CORS controls than ...

CVE-2018-9243

CVE-2018-9243 affects GitLab Community and Enterprise Editions from 8.4 up to 10.4. The vulnerability arises from a lack of input validation in the merge request component, enabling cross-site scripting via filenames shown in the changes tab. A fix is available in 10.6.3, 10.5.7, and 10.4.7 (per ...

CVE-2017-9243

Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 has XSS on the Wireless Site Survey page, exploitable with the name of an access point...

CVE-2017-9243

Aries QWR-1104 Wireless-N Router with Firmware Version WRC.253.2.0913 has XSS on the Wireless Site Survey page, exploitable with the name of an access point...

BELL-CVE-2016-9243 CVE-2016-9243 does not affect BellSoft software

Bulletin has no description...

DEBIAN-CVE-2016-9243

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize...

CVE-2016-9243

HKDF in cryptography before 1.5.2 returns an empty byte-string if used with a length less than algorithm.digestsize...