MiracleLinux 8 : java-21-openjdk-21.0.6.0.7-1.el8.ML.1 (AXSA:2025-9623:04)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9623:04 advisory. JDK: Enhance array handling CVE-2025-21502 Tenable has extracted the preceding description block directly from the MiracleLinux security advisory. Note that...

AlmaLinux 10 : osbuild-composer (ALSA-2025:9623)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2025:9623 advisory. net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 Tenable has extracted the preceding description block directly fr...

EUVD-2022-4019

Malicious code in bioql PyPI...

CVE-2025-9623

creationtimestamp| type| source ---|---|--- 2025-09-11 07:37:07+00:00| seen| Telegram/seeHcLZ2ofyyZDDopzcbZkJDeClgipDUPYoRJUaOy7FAQI...

WordPress Admin in English with Switch plugin <= 1.1 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by Claw.k in WordPress Plugin Admin in English with Switch versions = 1.1...

Linux Distros Unpatched Vulnerability : CVE-2024-9623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4...

Oracle Linux 10 : osbuild-composer (ELSA-2025-9623)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-9623 advisory. - Ensure build on latest golang: CVE-2024-34156 - Rebuild for CVE-2025-22871 Tenable has extracted the preceding description block directly from the Oracle Lin...

GHSA-9623-MJ7J-P9V4

creationtimestamp| type| source ---|---|--- 2025-06-23 20:47:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19268 2025-07-16 12:26:35+00:00| seen| https://gist.github.com/safer-bot/9b1964e5d86640580eef7861e4f37f4c...

Linux Distros Unpatched Vulnerability : CVE-2016-9623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service segmentation fault and crash...

CVE-2024-9623

creationtimestamp| type| source ---|---|--- 2024-10-10 13:24:34+00:00| seen| https://t.me/cvedetector/7577 2024-10-10 15:20:05+00:00| seen| https://t.me/truesecator/6305 2024-10-11 12:24:01+00:00| seen| https://vulnerability.circl.lu/bundle/db9dd42d-746e-40cf-bae6-61042f0c1d48...

CVE-2024-9623

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

CVE-2024-9623 Incorrect Authorization in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

CVE-2024-9623

Removed by vendor...

CVE-2024-9623 Incorrect Authorization in GitLab

An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys to push to an archived repository...

GitLab 8.16 < 17.2.9 / 17.3 < 17.3.5 / 17.4 < 17.4.2 (CVE-2024-9623)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue was discovered in GitLab CE/EE affecting all versions starting from 8.16 prior to 17.2.9, starting from 17.3 prior to 17.3.5, and starting from 17.4 prior to 17.4.2, which allows deploy keys ...

SUSE CVE-2016-9623

An issue was discovered in the Tatsuya Kinoshita w3m fork before 0.5.3-33. w3m allows remote attackers to cause a denial of service segmentation fault and crash via a crafted HTML page...

GHSA-GVJG-R9FV-7QX9 OpenStack Image Service (Glance) allows remote authenticated users to bypass storage quota, cause denial of service

OpenStack Image Service Glance before 2014.2.4 juno and 2015.1.x before 2015.1.2 kilo allows remote authenticated users to bypass the storage quota and cause a denial of service disk consumption by deleting images that are being uploaded using a token that expires during the process. NOTE: this...

Mageia: Security Advisory (MGASA-2018-0024)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2021-9623)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2021-9623 advisory. - bpf: Fix integer overflow in preallocelemsandfreelist Tatsuhiko Yasumatsu Orabug: 33431722 CVE-2021-41864 Tenable has extracted the preceding description...

CVE-2020-9623

Adobe DNG SDK (1.5 and earlier) has an out-of-bounds read vulnerability (CVE-2020-9623) that could disclose information. Patches in 2020 (SDK update to 1.5.1) fix multiple out-of-bounds read flaws and related heap overflow issues, per APSB20-26 and ThreatPost coverage. NVD lists CVSS v3.1 base sc...