CVE-2025-25164

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Yuichiro ABE Meta Accelerator meta-accelerator allows Reflected XSS.This issue affects Meta Accelerator: from n/a through = 1.0.4...

CVE-2025-25164 WordPress Meta Accelerator plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Yuichiro ABE Meta Accelerator meta-accelerator allows Reflected XSS.This issue affects Meta Accelerator: from n/a through = 1.0.4...

CVE-2025-25164

CVE-2025-25164 affects WordPress Meta Accelerator plugin versions up to 1.0.4, where Reflected XSS arises from improper input neutralization during web page generation. Root cause: improper neutralization of user input leads to reflected cross-site scripting. Impact: XSS could affect pages render...

CVE-2025-25164 WordPress Meta Accelerator plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Yuichiro ABE Meta Accelerator meta-accelerator allows Reflected XSS.This issue affects Meta Accelerator: from n/a through = 1.0.4...

WordPress plugin Meta Accelerator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerabili...

Security update for openssh8.4

This update for openssh8.4 fixes the following issues: CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. Other bugfixes: Fix usage of local accelerator cards via openssl-ibmca bsc1216474, bsc1218871. Add patches from upstream to change the default...

SUSE-SU-2025:0744-1 Security update for openssh8.4

This update for openssh8.4 fixes the following issues: - CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. Other bugfixes: - Fix usage of local accelerator cards via openssl-ibmca bsc1216474, bsc1218871. - Add patches from upstream to change the...

The vulnerability of the integrated data streaming accelerator Intel Data Streaming Accelerator (Intel DSA), a microprogramming-based software component of Intel processors, arises due to incorrect sequence of processor instructions. This vulnerability allows attackers to trigger a system failure.

The vulnerability of the integrated data streaming accelerator Intel Data Streaming Accelerator Intel DSA in Intel microcomputer software is related to incorrect sequence of processor instructions. Exploiting this vulnerability can allow attackers to cause system failures...

UBUNTU-CVE-2022-49566

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - fix memory leak in RSA When an RSA key represented in form 2 as defined in PKCS 1 V2.1 is used, some components of the private key persist even after the TFM is released. Replace the explicit calls to free the buffe...

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local...

Security update for ucode-intel

This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local...

SUSE-SU-2025:0569-1 Security update for ucode-intel

This update for ucode-intel fixes the following issues: - Intel CPU Microcode was updated to the 20250211 release bsc1237096 - CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via loca...

The vulnerability of the DRM/GMA500 components of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/GMA500 components in Linux operating systems is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

FreeBSD : Intel CPUs -- multiple vulnerabilities (d598266d-7772-4a31-9594-83b76b1fb837)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the d598266d-7772-4a31-9594-83b76b1fb837 advisory. Intel reports: A potential security vulnerability in some Intel Processors may allow denial of...

Intel® Data Streaming Accelerator Advisory

Summary: A potential security vulnerability in the Intel® Data Streaming Accelerator Intel® DSA for some Intel® Xeon® Processors may allow denial of service. Intel is releasing software updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2024-37020 Description:...

Intel CPUs -- multiple vulnerabilities

Intel reports: A potential security vulnerability in some Intel Processors may allow denial of service. Intel released microcode updates to mitigate this potential vulnerability. A potential security vulnerability in some Intel Software Guard Extensions Intel SGX Platforms may allow denial of...

CVE-2024-37940

Cross-Site Request Forgery CSRF vulnerability in Seraphinite Solutions Seraphinite Accelerator Full, premium.This issue affects Seraphinite Accelerator Full, premium: from n/a through 2.21.13...

Security Bulletin: Vulnerabilites in the IBM WebSphere Application Server Liberty version 17.0.0.3 - 24.0.0.5 affects Watson Machine Learning Accelerator on Cloud Pak for Data

Summary Vulnerabilites in the IBM WebSphere Application Server Liberty version 17.0.0.3 - 24.0.0.5 affects Watson Machine Learning Accelerator on Cloud Pak for Data several releases. It has be fixed in Watson Machine Learning Accelerator on Cloud Pak for Data 5.0.1 release. Vulnerability Details...

WordPress Meta Accelerator plugin <= 1.0.4 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Meta Accelerator versions = 1.0.4...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in the V6 DA module, which may allow out-of-bounds writes...