1649 matches found
Security update for rsync
This update for rsync fixes the following issues: NOTE: This update has been retracted due to a buggy security fix. A followup update will be provided. CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client...
Security update for rsync
This update for rsync fixes the following issues: CVE-2024-12085: leak of uninitialized stack data on the server leading to possible ASLR bypass. bsc1234101 CVE-2024-12086: leak of a client machine's file contents through the processing of checksum data. bsc1234102 CVE-2024-12087: arbitrary file...
Hewlett Packard Enterprise ArubaOS 安全漏洞
Hewlett Packard Enterprise ArubaOS HPE ArubaOS is a networked wireless operating system from Hewlett Packard Enterprise. A security vulnerability exists in Hewlett Packard Enterprise ArubaOS that stems from an authenticated parameter injection vulnerability, which can be exploited successfully to...
CVE-2025-22137 Arbitrary File Overwrite via HTTP POST in Pingvin Share
Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated if anonymous shares are allowed user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issu...
Pingvin Share 代码问题漏洞
Pingvin Share is a self-hosted file sharing platform by Elias Schneider Personal Developer. A code issue vulnerability exists in Pingvin Share versions 0.6.0 through 1.3.0. An attacker can exploit the vulnerability to overwrite arbitrary files on the server via an HTTP POST request...
CVE-2024-41887
CVE-2024-41887 affects NVR devices where a flaw lets an attacker remotely execute code by creating a log file in a parent directory, enabling file corruption. Root cause: unauthorized log handling/creation path that allows privilege-impacting actions on the system. Impact: potential remote code e...
CVE-2024-41887 Arbitrary File Overwrite
Team ENVY, a Security Research TEAM has found a flaw that allows for a remote code execution on the NVR. An attacker can create an NVR log file in a directory one level higher on the system, which can be used to corrupt files in the directory. The manufacturer has released patch firmware for the...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
hornetq-core-client: Arbitrarily overwrite files or access sensitive information
A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...
MGASA-2024-0390 Updated socat packages fix security vulnerability
CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...
Updated socat packages fix security vulnerability
CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...
SUSE-SU-2024:4348-1 Security update for socat
This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462...
H2O-3 Arbitrary File Overwrite (CVE-2024-6854)
An arbitrary file overwrite vulnerability exists in H2O-3. The endpoint that allows for exporting models & does not limit where models can be exported to. As such an attacker can export a model to any file in the server file structure, overwriting it, by simply using the force flag. Note that...
SUSE SLES12 Security Update : socat (SUSE-SU-2024:4294-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2024:4294-1 advisory. - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462 Tenable has extracted the preceding description block direct...
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : socat (SUSE-SU-2024:4295-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2024:4295-1 advisory. - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh...
SUSE-SU-2024:4302-1 Security update for socat
This update for socat fixes the following issues: - CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory bsc1225462...
openSUSE Security Advisory (SUSE-SU-2024:4295-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2024:4294-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security update for socat
This update for socat fixes the following issues: CVE-2024-54661: Fixed arbitrary file overwrite via predictable /tmp directory in socat readline.sh bsc1225462 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch"...