Amazon Linux 2 : perl-Module-ScanDeps (ALAS-2025-2738)

The version of perl-Module-ScanDeps installed on the remote host is prior to 1.10-3. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2738 advisory. Qualys discovered that if unsanitized input was used with the library Modules::ScanDeps, before version 1.36 a local...

Huawei EulerOS: Security Advisory for python3 (EulerOS-SA-2025-1027)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important: Red Hat Security Advisory: firefox security update

An update for firefox is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

CVE-2024-13173

The CVE-2024-13173 entry describes a vulnerability in the health module where loading URLs lacks sufficient restrictions, potentially causing information leakage. Connected sources specify affected software as Vivo Health prior to version 4.1.6.33, indicating a partial information disclosure risk...

CVE-2024-54121

Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally...

PT-2025-3289 · Unknown · Findnetwork Module

Name of the Vulnerable Software and Affected Versions: Findnetwork module affected versions not specified Description: The issue is related to an instruction authentication bypass vulnerability in the Findnetwork module. Successful exploitation of this vulnerability may cause features to perform...

CVE-2021-26278

CVE-2021-26278 affects the vivo wifi module. The vulnerability arises from improper permission control on the module’s exposed interface, leading to leakage of sensitive device information. Publicly available documents describe the issue but do not provide concrete details on affected product ver...

CVE-2024-54115

Out-of-bounds read vulnerability in the DASH module Impact: Successful exploitation of this vulnerability will affect availability...

CVE-2024-54113

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect power consumption...

CVE-2024-54100

Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally...

CVE-2024-54115

CVE-2024-54115 is an out-of-bounds read vulnerability in the Huawei HarmonyOS DASH module that can affect availability. The provided connected sources confirm the issue and its relation to the DASH component, but do not disclose specific vulnerable versions, exploit details, or a confirmed remedi...

CVE-2024-54115

Out-of-bounds read vulnerability in the DASH module Impact: Successful exploitation of this vulnerability will affect availability...

CVE-2024-54113

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect power consumption...

CVE-2024-54103

Vulnerability of improper access control in the album module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2024-54097

Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity...

CVE-2024-54097

Technical details about CVE-2024-54097 are not publicly available in the provided connected documents; no specific affected products, versions, root cause, or fixes are disclosed here. Monitor for official disclosures and updates.

Medium: python3.11

Issue Overview: The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which...

Drupal Entity Form Steps module < 1.1.4 - Authenticated Cross Site Scripting (XSS) vulnerability

Authenticated Cross Site Scripting XSS vulnerability discovered by Ide Braakman in WordPress Module Entity Form Steps versions 1.1.4...

Drupal Minify JS module < 3.0.3 - Authenticated Cross Site Request Forgery (CSRF) vulnerability

Authenticated Cross Site Request Forgery CSRF vulnerability discovered by Pierre Rudloff in WordPress Module Minify JS versions 3.0.3...

Huawei HarmonyOS Entry Unsecured Checksum Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an Incoming Parameter Unsecure Checksum vulnerability, which stems from an inbound parameter unsecure checksum in the HDC modul...