9172 matches found
Dragonfly2 < 2.1.0-beta.1 - Hardcoded JWT Secret
Dragonfly is an open source P2P-based file distribution and image acceleration system. It is hosted by the Cloud Native Computing Foundation CNCF as an Incubating Level Project. Dragonfly uses JWT to verify user. However, the secret key for JWT, "Secret Key", is hard coded, which leads to...
VMWare Cloud Foundation NSX-V - XML External Entity (XXE)
VMware Cloud Foundation NSX-V contains an XML External Entity XXE vulnerability. On VCF 3.x instances with NSX-V deployed, this may allow a user to exploit this issue leading to a denial-of-service condition or unintended information disclosure. id: CVE-2022-31678 info: name: VMWare Cloud...
CVE-2026-14979 IBM Engineering Lifecycle Management - Jazz Foundation is vulnerable to XML Entity Expansion attack
IBM Engineering Lifecycle Management 7.0.3 Interim Fix 001 through Interim Fix 021, 7.1.0 Interim Fix 001 through Interim Fix 009, and 7.2.0 and 7.2.0 Interim Fix 001 DOORS could allow a remote attacker to cause a denial of service due to improper handling of XML entity expansion...
Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.20.15 security, enhancement & bug fix update
Red Hat OpenShift Data Foundation 4.20.15 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.20.15 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7340: RHODF 4.20.15 release DFBUGS-7331: Backport for 4.20 - GSSODFMCG noobaa-db-pg-cluster won't...
CVE-2026-57094
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-57090
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-57087
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code over a network...
CVE-2026-56189
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code locally...
CVE-2026-58610
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code locally...
CVE-2026-54993
Heap-based buffer overflow in Microsoft Windows Media Foundation allows an unauthorized attacker to execute code locally...
CVE-2026-57087
CVE-2026-57087 is a Windows Media Foundation remote code execution vulnerability caused by a heap-based buffer overflow in Windows Media Foundation. An unauthenticated attacker could trigger code execution over a network. Public sources confirm the flaw affects Windows Media/Media Foundation comp...
CVE-2026-57087 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
CVE-2026-57094
CVE-2026-57094 is a remote-code-execution vulnerability in Microsoft Windows Media Foundation caused by a heap-based buffer overflow. It affects Windows Media Foundation components and can be exploited over a network to run arbitrary code. Public details confirm the vulnerability as a network-att...
CVE-2026-57094 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
CVE-2026-57090
CVE-2026-57090 is a remote code execution vulnerability in Windows Media Foundation due to a heap-based buffer overflow. The flaw allows an unauthenticated attacker to run arbitrary code over the network. Public sources in the connected documents corroborate an RCE impact for Windows Media Founda...
CVE-2026-57090 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
CVE-2026-57090 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
CVE-2026-56189 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...
CVE-2026-56189
CVE-2026-56189 is a local, heap-based buffer overflow in Microsoft Windows Media Foundation. The affected component is Windows Media Foundation within Windows, and the vulnerability allows an unauthenticated local attacker to execute arbitrary code. The root cause is a heap-based overflow in the ...
CVE-2026-50655 Microsoft Windows Media Foundation Remote Code Execution Vulnerability
...