MINI-6M65-9589-VG6C

Bulletin has no description...

MINI-HGHF-9589-C24C

Bulletin has no description...

CVE-2024-9589

creationtimestamp| type| source ---|---|--- 2024-10-22 12:06:33+00:00| seen| https://t.me/cvedetector/8598...

CVE-2024-9589

The Category and Taxonomy Meta Fields plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'newmetaname' parameter in the 'wpaftoptionpage' function in versions up to, and including, 1.0.0 due to insufficient input sanitization and output escaping on user supplied attributes...

WordPress Category and Taxonomy Meta Fields Plugin <= 1.0.0 is vulnerable to Cross Site Scripting (XSS)

Software Category and Taxonomy Meta Fields Type Plugin Vulnerable versions = 1.0.0 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-9589 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 6c6a133f113d Credits István...

CVE-2019-9589

There is a NULL pointer dereference vulnerability in PSOutputDev::setupResources located in PSOutputDev.cc in Xpdf 4.01. It can be triggered by sending a crafted pdf file to for example the pdftops binary. It allows an attacker to cause Denial of Service Segmentation fault or possibly have...

CVE-2020-9589

CVE-2020-9589 affects the Adobe DNG Software Development Kit (SDK) , with versions up to 1.5 and earlier. The issue is a heap overflow in the SDK that could allow a remote attacker to achieve arbitrary code execution . Public sources in the connected documents confirm the impact as remote code ex...

CVE-2019-9589

CVE-2019-9589 is a NULL pointer dereference in Xpdf 4.01, specifically PSOutputDev::setupResources() in PSOutputDev.cc. It can be triggered by processing a crafted PDF file (e.g., via the pdftops binary), potentially causing a Denial of Service (segmentation fault) and possibly other impacts. The...

CVE-2018-9589

CVE-2018-9589 affects the Android WiFi stack. In ieee802_11_rx_wnmsleep_req() within wnm_ap.c on Android 7.0–9 (including 7.0, 7.1.1, 7.1.2, 8.0, 8.1, 9), there is a possible out-of-bounds read due to a missing bounds check. This could lead to local information disclosure in the WiFi driver with ...

CVE-2018-9589

In ieee80211rxwnmsleepreq of wnmap.c in Android-7.0, Android-7.1.1, Android-7.1.2, Android-8.0, Android-8.1 and Android-9, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the wifi driver with no additional execution privileg...

RHEL 6 : Red Hat Single Sign-On 7.1 update on RHEL 6 (Moderate) (RHSA-2017:0872)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:0872 advisory. Red Hat Single Sign-On is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-o...

RHEL 7 : Red Hat Single Sign-On 7.1 update on RHEL 7 (Moderate) (RHSA-2017:0873)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:0873 advisory. Red Hat Single Sign-On is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-o...

RHEL 7 : JBoss Enterprise Application Platform 7.0.5 on RHEL 7 (Important) (RHSA-2017:0832)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:0832 advisory. Red Hat JBoss Enterprise Application Platform 6 is a platform for Java applications based on JBoss Application Server 7. This release of Red...

RHEL 6 : JBoss EAP (RHSA-2017:0831)

An update is now available for Red Hat JBoss Enterprise Application Platform 7.0 for RHEL 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for eac...

CVE-2016-9589

CVE-2016-9589 affects Undertow in Red Hat WildFly pre-11.0.0.Beta1, where a cache of seen HTTP headers on persistent connections can be abused to exhaust memory (max-headers default 200) × (max-header-size default 1 MB) per active TCP connection, causing a denial of service. Mitigations/patches e...

RHEL 6 : Red Hat JBoss Enterprise Application Platform 7.1.0 (RHSA-2017:3454)

"The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3454 advisory. Red Hat JBoss Enterprise Application Platform is a platform for Java applications based on the JBoss Application Server. This release of Re...

RHEL 6 / 7 : eap7-jboss-ec2-eap (RHSA-2017:3458)

"The remote Redhat Enterprise Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:3458 advisory. The eap7-jboss-ec2-eap packages provide scripts for Red Hat JBoss Enterprise Application Platform running on the Amazon Web Services AW...

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update

An update is now available for Red Hat JBoss Enterprise Application Platform 7.1 for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, ...

Important: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 7.1.0 security update

An update is now available for Red Hat JBoss Enterprise Application Platform. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

CVE-2017-9589

CVE-2017-9589 affects the iOS app “SCSB Shelbyville IL Mobile Banking” (version 3.0.0, app ID id938960224). The vulnerability is that the app does not verify X.509 certificates from SSL servers, allowing a man‑in‑the‑middle to spoof servers and obtain sensitive information via a crafted certifica...