CVE-2025-11538 Keycloak-server: debug default bind address

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

CVE-2025-11538

Keycloak is affected by CVE-2025-11538 in versions prior to 26.4.4 where enabling debug mode (--debug) binds the JDWP port to all interfaces (0.0.0.0), exposing the debug port on the local network. This potentially allows a local-network attacker to attach a remote debugger and achieve remote cod...

PT-2025-46862

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A security issue exists in Keycloak where enabling debug mode with the --debug flag insecurely binds the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes th...

Siemens SIMATIC S7-1500 Out-of-bounds Read (CVE-2019-1010180)

GNU gdb All versions is affected by: Buffer Overflow - Out of bound memory access. The impact is: Deny of Service, Memory Disclosure, and Possible Code Execution. The component is: The main gdb module. The attack vector is: Open an ELF for debugging. The fixed version is: Not fixed yet. This plug...

CVE-2025-11412 affecting package gdb for versions less than 11.2-10

CVE-2025-11412 affecting package gdb for versions less than 11.2-10. A patched version of the package is available...

CVE-2021-32256 affecting package gdb for versions less than 11.2-10

CVE-2021-32256 affecting package gdb for versions less than 11.2-10. A patched version of the package is available...

CVE-2025-11083 affecting package gdb for versions less than 11.2-10

CVE-2025-11083 affecting package gdb for versions less than 11.2-10. A patched version of the package is available...

CVE-2025-5244 affecting package gdb for versions less than 11.2-10

CVE-2025-5244 affecting package gdb for versions less than 11.2-10. A patched version of the package is available...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990630)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990630 advisory. In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-complete Currently, when the user attempts symbol completion...

CVE-2025-20743

The CVE-2025-20743 entry concerns the clkdbg component, where a use-after-free condition can lead to local privilege escalation if an attacker already has System privileges. The vulnerability does not require user interaction and has a local attack vector with low complexity. The patch reference ...

OESA-2025-2567 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A vulnerability has been found in GNU Binutils 2.45. The affected element is the function elfswapshdr in the...

编号撤回

dnsmasq is a lightweight DNS forwarding and DHCP, TFTP server written in C. edb is a cross-platform AArch32/x86/x86-64 debugger. This CVE number has been withdrawn...

CVE-2025-60791

Easywork Enterprise 2.1.3.354 is vulnerable to Cleartext Storage of Sensitive Information in Memory. The application leaves valid device-bound license keys in process memory after a failed activation attempt. The keys can be obtained by attaching a debugger or analyzing the process/memory dump an...

PT-2025-43983

Name of the Vulnerable Software and Affected Versions Easywork Enterprise version 2.1.3.354 Description Easywork Enterprise version 2.1.3.354 exhibits a security issue related to the cleartext storage of sensitive information in memory. Specifically, valid device-bound license keys remain in...

编号撤回

dnsmasq is a lightweight DNS forwarding and DHCP, TFTP server written in C. edb is a cross-platform AArch32/x86/x86-64 debugger. This CVE number has been withdrawn...

编号撤回

dnsmasq is a lightweight DNS forwarding and DHCP, TFTP server written in C. edb is a cross-platform AArch32/x86/x86-64 debugger. This CVE number has been withdrawn...

OESA-2025-2416 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A critical vulnerability was found in GNU Binutils version 2.45. This vulnerability is classified as CWE-122...

OESA-2025-2415 gdb security update

GDB, the GNU Project debugger, allows you to see what is going on inside another program while it executes -- or what another program was doing at the moment it crashed. Security Fixes: A critical vulnerability was found in GNU Binutils version 2.45. This vulnerability is classified as CWE-122...

[SECURITY] Fedora 41 Update: insight-13.0.50.20220502-27.fc41

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...

[SECURITY] Fedora 42 Update: insight-13.0.50.20220502-27.fc42

Insight is a tight graphical user interface to GDB written in Tcl/Tk. It provides a comprehensive interface that enables users to harness most of GDB's power. It's also probably the only up-to-date UI for the latest GDB version...