BIT-MONGODB-2025-13644 MongoDB may be susceptible to Invariant Failure due to batched delete

MongoDB Server may experience an invariant failure during batched delete operations when handling documents. The issue arises when the server mistakenly assumes the presence of multiple documents in a batch based solely on document size exceeding BSONObjMaxSize. This issue affects MongoDB Server...

RHSA-2025:22187 Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.2 security update

Bulletin has no description...

Moderate: Red Hat Security Advisory: Red Hat JBoss Enterprise Application Platform 8.1.2 Security update

A security update is now available for Red Hat JBoss Enterprise Application Platform 8.1 for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

CVE-2025-10061

CVE-2025-10061 : An authorized user can crash the MongoDB Server via a specially crafted $group query. The issue arises from incorrect handling of certain accumulator functions when extra parameters are used in $group, potentially causing a denial of service if triggered repeatedly. Affected Mong...

CVE-2025-9812

creationtimestamp| type| source ---|---|--- 2025-09-02 04:45:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxtcnvq4e72n 2025-09-02 07:32:26+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3lxtlyoaodq2s...

O2OA Security Breach

O2OA is an enterprise application development platform from O2OA Open Source. A security vulnerability exists in O2OA 8.1.2 and earlier versions, which stems from the presence of a Remote Code Execution RCE vulnerability. The vulnerability can be exploited by an attacker to create a new interface...

1E Platform SQL Injection Vulnerability

1E Platform is a terminal endpoint management and automation solution from 1E. A security vulnerability exists in 1E Platform versions prior to v8.1.2, prior to v8.4.1, prior to v9.0.1, and prior to v23.7.1 SaaS, which stems from the incorrect neutralization of special elements used in SQL...

DEBIAN-CVE-2021-37148

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.0.1...

DEBIAN-CVE-2021-37147

Improper input validation vulnerability in header parsing of Apache Traffic Server allows an attacker to smuggle requests. This issue affects Apache Traffic Server 8.0.0 to 8.1.2 and 9.0.0 to 9.1.0...

PT-2021-21532 · Apache · Apache Traffic Server

Name of the Vulnerable Software and Affected Versions: Apache Traffic Server versions 8.0.0 through 8.1.2 Apache Traffic Server versions 9.0.0 through 9.1.0 Description: The issue is related to improper input validation in the header parsing of Apache Traffic Server, allowing an attacker to smugg...

Dell Vnx2 Oe For File 操作系统命令注入漏洞

Dell Vnx2 Oe For File is an operating environment from Dell USA. A remote code execution vulnerability exists in Dell Vnx2 Oe For File version 8.1.21.266 and earlier. An attacker could exploit this vulnerability to execute commands on the system...

Brocade Fibre Channel SAN Product Brocade Fabric OS Cross-Site Scripting Vulnerability

Brocade Fibre Channel SAN products are all switch products of the American company Brocade Brocade, and Brocade Fabric OS FOS is a set of embedded systems running on them. A cross-site scripting vulnerability exists in the Web-based management interface of Brocade FOS versions prior to 7.4.2b,...

CVE-2017-6227

A vulnerability in the IPv6 stack on Brocade Fibre Channel SAN products running Brocade Fabric OS FOS versions before 7.4.2b, 8.1.2 and 8.2.0 could allow an attacker to cause a denial of service CPU consumption and device hang condition by sending crafted Router Advertisement RA messages to a...