119 matches found
EUVD-2004-2117
Malware in sbrugna...
EUVD-2021-2392
Malware in sbrugna...
EUVD-2017-6014
Malware in sbrugna...
EUVD-2018-9985
Malware in sbrugna...
EUVD-2005-2347
Malware in sbrugna...
EUVD-2024-50847
Malicious code in bioql PyPI...
EUVD-2025-31481
Malicious code in bioql PyPI...
EUVD-2022-6287
Malicious code in bioql PyPI...
EUVD-2022-6373
Malicious code in bioql PyPI...
EUVD-2022-25068
Malicious code in bioql PyPI...
EUVD-2022-6376
Malicious code in bioql PyPI...
CVE-2025-52373
Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...
CVE-2022-25090
Printix Secure Cloud Print Management through 1.3.1106.0 creates a temporary temp.ini file in a directory with insecure permissions, leading to privilege escalation because of a race condition...
Medium: libreoffice
Issue Overview: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that support...
SUSE CVE-2024-2746
Incomplete fix for CVE-2024-1929 The problem with CVE-2024-1929 was that the dnf5 D-Bus daemon accepted arbitrary configuration parameters from unprivileged users, which allowed a local root exploit by tricking the daemon into loading a user controlled "plugin". All of this happened before Polkit...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: mlxsw: corelinecards: Fixed double memory deallocation in case of an invalid INI file. In the case of an invalid INI file, mlxswlinecardtypesinit deallocates memory, but does not reset the pointer to NULL and returns 0. If any...
USN-7228-1 libreoffice vulnerabilities
Thomas Rinsma discovered that LibreOffice incorrectly handled paths when processing embedded font files. If a user or automated system were tricked into opening a specially crafted LibreOffice file, a remote attacker could possibly use this issue to create arbitrary files ending with ".ttf"...
CVE-2024-12426
A flaw was found in LibreOffice. This issue may allow the exposure of environmental variables and arbitrary INI file values, leading to sensitive information disclosure via crafted URLs embedded in documents...
CVE-2024-12426
Exposure of Environmental Variables and arbitrary INI file values to an Unauthorized Actor vulnerability in The Document Foundation LibreOffice. URLs could be constructed which expanded environmental variables or INI file values, so potentially sensitive information could be exfiltrated to a remo...
CVE-2024-12426
CVE-2024-12426 concerns LibreOffice up to version 24.8.3 (impacted) with an exposure vulnerability where URLs could cause environmental variables and arbitrary INI file values to be exfiltrated to a remote server when opening certain documents. Affected component/issue: exporting sensitive enviro...