EUVD-2026-28534

A vulnerability in Legion of the Bouncy Castle Inc. BC-FJA BC-FIPS on Linux, X8664, AVX, AVX-512f. This vulnerability is associated with program files gcm128w, gcm512w. This issue affects BC-FJA: from 2.1.0 through 2.1.2...

K000160515: F5 System Scanner

Topic This article explains how to install and run the F5 System Scanner on BIG-IP and standard x8664 Linux systems. The F5 System Scanner supports the following BIG-IP versions hotfixes EHFs: BIG-IP versions released between October 2025 and May 5, 2026 EHFs released between October 2025 and Apr...

EUVD-2025-202049

Improper Privilege Management vulnerability in AlgoSec Firewall Analyzer on Linux, 64 bit allows Privilege Escalation, Parameter Injection. A local user with access to the command line may escalate their privileges by abusing the parameters of a command that is approved in the sudoers file. This...

CVE-2025-12381

AlgoSec Firewall Analyzer (Linux, 64‑bit) is affected by CVE-2025-12381 due to improper privilege management in a sudoers‑authorized command. A local user with CLI access can escalate privileges by abusing parameters of that approved command, enabling privilege escalation and parameter injection....

CVE-2025-12382

Improper Limitation of a Pathname 'Path Traversal' vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. This issue affects Algosec Firewall Analyzer: A33.0 up to build 320, A33.10 up to build...

EUVD-2025-124977

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows Path Traversal, Code Injection.This issue affects Algosec Firewall Analyzer: A33.0 up to build 320, A33.10 up to build 210...

CVE-2025-12382 Path Traversal Allows Remote Code Execution in AlgoSec Firewall Analyzer

Improper Limitation of a Pathname 'Path Traversal' vulnerability in Algosec Firewall Analyzer on Linux, 64 bit allows an authenticated user to upload files to a restricted directory leading to code injection. This issue affects Algosec Firewall Analyzer: A33.0 up to build 320, A33.10 up to build...

PT-2025-46586

Name of the Vulnerable Software and Affected Versions Algosec Firewall Analyzer versions A33.0 through build 320 Algosec Firewall Analyzer versions A33.10 through build 210 Description A Path Traversal issue exists in Algosec Firewall Analyzer on Linux, 64 bit. This allows for Path Traversal and...

Untrusted Search Path

Overview Affected versions of this package are vulnerable to Untrusted Search Path. An attacker can achieve remote code execution by planting malicious files on the victim's system, with knowledge of where they should be placed, then tricking a user to run these files. Remediation Upgrade...

CVE-2024-10205

Authentication Bypass vulnerability in Hitachi Ops Center Analyzer on Linux, 64 bit Hitachi Ops Center Analyzer detail view component, Hitachi Infrastructure Analytics Advisor on Linux, 64 bit Hitachi Data Center Analytics component .This issue affects Hitachi Ops Center Analyzer: from 10.0.0-00...

CVE-2024-10205

CVE-2024-10205: Authentication bypass affecting Hitachi Ops Center Analyzer (Linux 64-bit, detail view component) and Hitachi Infrastructure Analytics Advisor (Linux 64-bit). Affected ranges: Ops Center Analyzer 10.0.0-00 up to before 11.0.3-00; Infrastructure Analytics Advisor 2.1.0-00 through 4...

CVE-2024-10205 Authorization bypass vulnerability in Hitachi Infrastructure Analytics Advisor and Hitachi Ops Center Analyzer

Authentication Bypass vulnerability in Hitachi Ops Center Analyzer on Linux, 64 bit Hitachi Ops Center Analyzer detail view component, Hitachi Infrastructure Analytics Advisor on Linux, 64 bit Hitachi Data Center Analytics component .This issue affects Hitachi Ops Center Analyzer: from 10.0.0-00...

Security Bulletin: IBM® Db2® is vulnerable to an information disclosure vulnerability as sensitive information may be included in a log file (CVE-2024-25030)

Summary IBM® Db2® is vulnerable to an information disclosure vulnerability as sensitive information may be included in a log file. Vulnerability Details CVEID:CVE-2024-25030 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect Server stores potentially sensitive information in lo...

SUSE CVE-2019-19911

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux...

Security Bulletin: IBM® Db2® under very specific conditions, could allow a local user to keep running a procedure that could cause the system to run out of memory.and cause a denial of service. (CVE-2021-29763)

Summary IBM® Db2® under very specific conditions, could allow a local user to keep running a procedure that could cause the system to run out of memory.and cause a denial of service. Vulnerability Details CVEID: CVE-2021-29763 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connect...

Security Bulletin: IBM® Db2® is vulnerable to weak file permissions allowing access to specific files (CVE-2020-4976)

Summary IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server could allow a local user to read and write specific files due to weak file permissions. Vulnerability Details CVEID: CVE-2020-4976 DESCRIPTION: IBM DB2 for Linux, UNIX and Windows includes DB2 Connect Server could allow a loc...

Security Bulletin: Information disclosure in WebSphere Application Server Liberty bundled with IBM Operations Analytics - Log Analysis (CVE-2019-4305)

Summary Cookie created without secure flag in WAS Liberty Vulnerability Details CVEID: CVE-2019-4305 DESCRIPTION: IBM WebSphere Application Server Liberty could allow a remote attacker to obtain sensitive information caused by the improper setting of a cookie. IBM X-Force ID: 160951. CVSS Base...

DEBIAN-CVE-2019-19911

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux...

PYSEC-2020-172

There is a DoS vulnerability in Pillow before 6.2.2 caused by FpxImagePlugin.py calling the range function on an unvalidated 32-bit integer if the number of bands is large. On Windows running 32-bit Python, this results in an OverflowError or MemoryError due to the 2 GB limit. However, on Linux...

ManageEngine Applications Manager 14.0 - Authentication Bypass / Remote Command Execution (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ManageEngine Applications Manager %q This module exploits sqli and command injection vulnerability in the ManageEngine AM 14 and prior versions. I...