CVE-2026-9355

A flaw has been found in SourceCodester Hospitals Patient Records Management System 1.0. The impacted element is an unknown function of the file /classes/Master.php?f=savepatienthistory. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely...

CVE-2025-9355

creationtimestamp| type| source ---|---|--- 2025-08-23 00:54:27+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lwzr3ukplo27...

MAL-2025-9355 Malicious code in @supernpm2024/at-quidem-repellat-iusto (npm)

The package @supernpm2024/at-quidem-repellat-iusto was found to contain malicious code...

TencentOS Server 3: grafana-pcp (TSSA-2024:0789)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0789 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

TencentOS Server 3: go-toolset:rhel8 (TSSA-2024:0769)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0769 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

CVE-2019-9355

In Bluetooth, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-115903122...

Alibaba Cloud Linux 3 : 0266: grafana-pcp (ALINUX3-SA-2024:0266)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0266 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-9355: A vulnerability was found in Golang...

Alibaba Cloud Linux 3 : 0224: go-toolset:rhel8 (ALINUX3-SA-2024:0224)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2024:0224 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2024-9355: A vulnerability was found in Golang...

RHEL 9 : osbuild and osbuild-composer (RHSA-2025:7118)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:7118 advisory. A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building...

Important: osbuild and osbuild-composer security update

A service for building customized OS artifacts, such as VM images and OSTree commits, that uses osbuild under the hood. Besides building images for local usage, it can also upload images directly to cloud. It is compatible with composer-cli and cockpit-composer clients. Security Fixes:...

Moderate: git-lfs security update

Git Large File Storage LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fixes: golang: crypto/tls: panic when processing post-handshake message on QUIC connections...

RHEL 9 : grafana-pcp (RHSA-2024:9551)

The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2024:9551 advisory. The Grafana plugin for Performance Co-Pilot includes datasources for scalable time series from pmseries and Redis, live PCP metrics and bpftrace...

Linux Distros Unpatched Vulnerability : CVE-2024-9355

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buff...

SUSE CVE-2024-9355

A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an uninitialized buffer length variable with a zeroed buffer to be returned in FIPS mode. It may also be possible to force a false positive match between non-equal hashes when comparing a trusted...

Azure Linux 3.0 Security Update: golang (CVE-2024-9355)

The version of golang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9355 advisory. - A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly cause an...

CBL Mariner 2.0 Security Update: golang / msft-golang (CVE-2024-9355)

The version of golang / msft-golang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9355 advisory. - A vulnerability was found in Golang FIPS OpenSSL. This flaw allows a malicious user to randomly...

CVE-2024-9355 affecting package golang for versions less than 1.22.9-1

CVE-2024-9355 affecting package golang for versions less than 1.22.9-1. An upgraded version of the package is available that resolves this issue...

RHEL 7 : rhc-worker-script (RHSA-2024:10133)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:10133 advisory. Remote Host Configuration rhc worker for executing scripts on hosts managed by Red Hat Insights. Security Fixes: net/http: Denial of servic...

Moderate: Red Hat Security Advisory: rhc-worker-script security update

An update for rhc-worker-script is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RockyLinux 8 : grafana-pcp (RLSA-2024:8847)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2024:8847 advisory. golang-fips: Golang FIPS zeroed buffer CVE-2024-9355 Tenable has extracted the preceding description block directly from the RockyLinux security advisory. Note th...