EUVD-2024-18392

Malicious code in bioql PyPI...

Solaris 10 (i386): 148242-08

SunOS 5.10: SunOS 5.10x86: statd patch. Date this patch was last updated by Sun : Jan/15/24 %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid255261; scriptversion"1.1";...

Solaris 10 (sparc): 152252-05

SunOS 5.10: SunOS 5.10: sudo Patch. Date this patch was last updated by Sun : Jan/15/24 %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include"compat.inc"; if description scriptid255249; scriptversion"1.1";...

PT-2025-17430 · Unknown · Ova Based Connect

Name of the Vulnerable Software and Affected Versions: VMware End of Life OVA Connect versions prior to the end of support in January 2024 Description: An improper input validation vulnerability is identified in the End of Life EOL OVA based connect component, which is deployed for installation...

openSUSE Security Advisory (SUSE-SU-2024:0114-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-21646

Azure uAMQP is a general purpose C library for AMQP 1.0. The UAMQP library is used by several clients to implement AMQP protocol communication. When clients using this library receive a crafted binary type data, an integer overflow or wraparound or memory safety issue can occur and may cause remo...

CVE-2024-0206

A symbolic link manipulation vulnerability in Trellix Anti-Malware Engine prior to the January 2024 release allows an authenticated local user to potentially gain an escalation of privileges. This was achieved by adding an entry to the registry under the Trellix ENS registry folder with a symboli...

Ivanti Endpoint Manager 2024 - January 2025 Security Update

The version of Ivanti Endpoint Manager 2024 running on the remote host lacking the January 2024 Hotfix. It is, therefore, affected by mutliple vulnerabilities: - Absolute path traversal in Ivanti Endpoint Manager before 2024 January Security Update or 2022 SU6 November Security Update allows a...

Microsoft Office 365 (2016 Click-to-Run) RCE Vulnerability (Jan 2025)

This host is missing a critical security update according to Microsoft Office Click-to-Run update January 2025. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Oracle Siebel Server (January 2024 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by multiple vulnerabilities as referenced in the January 2024 CPU advisory. - Vulnerability in the Siebel CRM product of Oracle Siebel CRM component: EAI, UI Apache Tomcat. Supported versions that are affected are Prior t...

Oracle Siebel Server <= 23.7 (January 2024 CPU)

The versions of Oracle Siebel CRM installed on the remote host are affected by a vulnerability as referenced in the January 2024 CPU advisory. - Vulnerability in the Siebel CRM product of Oracle Siebel CRM component: EAI Jettison. Supported versions that are affected are Prior to 23.8. Easily...

CVE-2024-43643

creationtimestamp| type| source ---|---|--- 2024-11-12 18:26:35+00:00| seen| https://www.thezdi.com/blog/2024/11/12/the-november-2024-security-update-review 2024-11-12 20:11:00+00:00| seen| https://infosec.exchange/users/cve/statuses/113471799925402298 2025-01-09 17:19:03+00:00| seen|...

Trello Data Breach: Hacker Dumps Personal Info of Millions of Users

The hacker behind the Trello data breach claims the data was stolen in January 2024 and can be…...

Oracle Java SE Multiple Vulnerabilities (January 2024)

Oracle Java SE Multiple Vulnerabilities January 2024 CVE-2024-20918 CVSS 3.1 Base Score 7.4 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N. CVE-2024-20952 CVSS 3.1 Base Score 7.4 CVSS Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N. CVE-2024-20919 CVSS 3.1 Base Score 5.9 CVSS...

mysql: Server: Options unspecified vulnerability (CPU Jan 2024)

Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash complete DOS of MySQL Server...

mysql: Server: Optimizer unspecified vulnerability (CPU Jan 2024)

Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash complete DOS of MySQL Server...

January 9, 2024—KB5034119 (OS Build 14393.6614) - EXPIRED

January 9, 2024—KB5034119 OS Build 14393.6614 - EXPIRED EXPIRATION NOTICEIMPORTANT As of March 31, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 11/19/20 For...

January 9, 2024—KB5034134 (OS Build 10240.20402) - EXPIRED

January 9, 2024—KB5034134 OS Build 10240.20402 - EXPIRED EXPIRATION NOTICEIMPORTANT As of January 27, 2026, this update is no longer available from the Microsoft Update Catalog or other release channels. We recommend that you update your devices to the latest version of Windows. --- 12/8/20 For...

ThreatDown achieves perfect score in latest AVLab assessment

ThreatDown has once again earned a perfect score in AVLabs January 2024 real-world malware detection tests, marking the eleventh consecutive quarter in achieving this feat. Let’s delve into the details of the test and how ThreatDown outperformed competitors in exhaustive testing. The AVLab...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK (January 2024) affect IBM InfoSphere Information Server

Summary There are multiple vulnerabilities in the IBM® SDK Java™ Technology Edition, Version 8 that is used by IBM InfoSphere Information Server. These issues were disclosed as part of the IBM Java SDK updates in January 2024. Vulnerability Details CVEID:CVE-2024-20952 DESCRIPTION: An unspecified...