CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

CVE-2025-9317

creationtimestamp| type| source ---|---|--- 2025-11-13 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-317-03 2025-11-18 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-322-01...

RockyLinux 10 : delve (RLSA-2025:9317)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2025:9317 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly...

MAL-2025-9317 Malicious code in @semdash-kit/grid (npm)

The package @semdash-kit/grid was found to contain malicious code...

Oracle Linux 10 : delve (ELSA-2025-9317)

The remote Oracle Linux 10 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2025-9317 advisory. 1.24.1-2.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.24.1-2 - Rebuild without changes Tenable has extracted the preceding description blo...

CVE-2024-9317

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be launched...

CVE-2019-9317

In libstagefright, there is a missing variable initialization. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112052258...

Linux Distros Unpatched Vulnerability : CVE-2016-9317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The gdImageCreate function in the GD Graphics Library aka libgd before 2.2.4 allows remote attackers to cause a denial of service system hang via an oversized...

CVE-2024-9317

creationtimestamp| type| source ---|---|--- 2024-09-28 23:40:52+00:00| seen| https://t.me/cvedetector/6614...

CVE-2024-9317

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be launched...

CVE-2024-9317 SourceCodester Online Eyewear Shop Master.php delete_category sql injection

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be launched...

RHEL 5 : gd (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gd: Double free in the gdImagePtr in gdgifout.c, gdjpeg.c, and gdwbmp.c CVE-2019-6978 - The...

Slackware: Security Advisory (SSA:2017-199-02)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-9317

CVE-2019-9317 affects Android 10’s libstagefright, where a missing variable initialization could allow remote information disclosure. Root cause is an uninitialized variable in libstagefright, enabling information leakage without additional privileges; exploitation requires user interaction per t...

CVE-2015-9317

The CVE-2015-9317 entry concerns the WordPress plugin Awesome Support (before 3.1.7). Affected component: the plugin’s handling of custom information messages in the UI. Root cause: cross-site scripting (XSS) vulnerability that allows injection of client-side code via information messages. Impact...

Debian: Security Advisory (DLA-1611-2)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2017-9317

The CVE-2017-9317 entry concerns Privilege escalation in some Dahua IP devices. The connected documents indicate that an attacker with a low-privilege account can access high-privilege credentials and then obtain device information or compromise the device, constituting a network-facing risk desc...

CVE-2017-9317

Privilege escalation vulnerability found in some Dahua IP devices. Attacker in possession of low privilege account can gain access to credential information of high privilege account and further obtain device information or attack the device...

ZOHO ManageEngine ServiceDesk Plus User Privilege Vulnerability

ZOHO ManageEngine ServiceDesk Plus SDP is the United States ZhuoHao ZOHO company's set of ITIL architecture based on IT service management software ITSM. The software integrates incident management, problem management, asset management, IT project management, procurement and contract management a...

CVE-2018-7248

An issue was discovered in Zoho ManageEngine ServiceDesk Plus 9.3 Build 9317. Unauthenticated users are able to validate domain user accounts by sending a request containing the username to an API endpoint. The endpoint will return the user's logon domain if the accounts exists, or 'null' if it...