CVE-2025-59611 Out-of-bounds Write in Core Services

Memory corruption in diagnostic services due to absence of input validation...

CVE-2025-59611 Out-of-bounds Write in Core Services

Memory corruption in diagnostic services due to absence of input validation...

Malicious code in @cbreone/core-services (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ae6ae37b27a798985e4dcf5adf27c7fe173717d253c4fab67acf96656bb9f8b The package @cbreone/core-services was found to contain malicious code...

MAL-2026-1589 Malicious code in @cbreone/core-services (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7ae6ae37b27a798985e4dcf5adf27c7fe173717d253c4fab67acf96656bb9f8b The package @cbreone/core-services was found to contain malicious code...

RHEL 7 / 8 : Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP3 (RHSA-2026:2994)

The remote Redhat Enterprise Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2994 advisory. Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP...

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP3 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 3 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

Important: Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.62 SP3 security update

Red Hat JBoss Core Services Apache HTTP Server 2.4.62 Service Pack 3 is now available. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

CVE-2026-1507

The affected products are vulnerable to an uncaught exception that could allow an unauthenticated attacker to remotely crash core PI services resulting in a denial-of-service...

CVE-2026-1507 Uncaught Exception vulnerability in AVEVA PI Data Archive

The affected products are vulnerable to an uncaught exception that could allow an unauthenticated attacker to remotely crash core PI services resulting in a denial-of-service...

CVE-2026-1507

The affected products are vulnerable to an uncaught exception that could allow an unauthenticated attacker to remotely crash core PI services resulting in a denial-of-service...

PT-2026-7471

The affected products are vulnerable to an uncaught exception that could allow an unauthenticated attacker to remotely crash core PI services resulting in a denial-of-service...

CVE-2026-1315

By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or applicatio...

CVE-2026-1315

By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or applicatio...

CVE-2026-1315 Unauthenticated Denial of Service via Firmware Update Endpoint on TP-Link Tapo C220 & C520WS

By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or applicatio...

EUVD-2026-4790

By sending crafted files to the firmware update endpoint of Tapo C220 v1 and C520WS v2, the device terminates core system services before verifying authentication or firmware integrity. An unauthenticated attacker can trigger a persistent denial of service, requiring a manual reboot or applicatio...

PT-2026-4989

Name of the Vulnerable Software and Affected Versions Tapo C220 version 1 Tapo C520WS version 2 Description Sending specially crafted files to the firmware update endpoint can cause the device to terminate core system services before authentication or firmware integrity is verified. This allows a...

TP-Link Tapo C220 and TP-Link Tapo C520WS have security vulnerabilities

Both the TP-Link Tapo C220 and TP-Link Tapo C520WS are WiFi cameras produced by the Chinese company TP-Link. The TP-Link Tapo C220 v1 and TP-Link Tapo C520WS v2 have security vulnerabilities. These vulnerabilities stem from the fact that firmware updates terminate core services without verifying...

CVE-2025-47321

CVE-2025-47321 concerns a memory corruption issue in Qualcomm embedded platform firmware when handling packets from Unix clients. Root cause: inadequate validation of incoming data size during buffer copying, allowing potential arbitrary code execution. Impact: potential local code execution on a...

CVE-2025-47321 Buffer Copy Without Checking Size of Input in Core Services

Memory corruption while copying packets received from unix clients...

CVE-2025-47321 Buffer Copy Without Checking Size of Input in Core Services

Memory corruption while copying packets received from unix clients...