Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

Vulnerability of the Server component: The Optimizer component of the MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component involves an uncontrolled consumption of resources. Exploiting this vulnerability can allow a malicious actor to cause service interruptions using the MySQL network protocol...

Advantech iView CUtils.checkSQLInjection Function SQL Injection Vulnerability

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. An SQL injection vulnerability exists in the Advantech iView CUtils.checkSQLInjection function, which can be exploited by an attacker to cause an information disclosure or...

Advantech iView Cross-Site Scripting Vulnerability (CNVD-2025-17827)

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. A cross-site scripting vulnerability exists in Advantech iView due to improper validation of user-supplied input. An attacker could use this vulnerability to execute...

Wireshark Analyzer 4.4.8

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. Thi...

Vulnerability of the Cluster component: The general system for managing MySQL Cluster databases, which allows attackers to gain access to read, modify, or delete data.

Vulnerability of the MySQL Cluster component: General database management systems related to MySQL Cluster are vulnerable due to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain read, modify, or delete access to data using the MySQL network protocol...

Vulnerability of the MySQL Server component: The DML mechanism of the MySQL database management system’s server allows a hacker to trigger a service failure.

The vulnerability of the MySQL Server component relates to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

Vulnerability of the MySQL Server component: The DML mechanism of the MySQL database management system’s server allows a hacker to cause a service failure.

The vulnerability of the MySQL Server component relates to uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions using the MySQL network protocol...

Vulnerability of the Server component: The stored procedures of the MySQL Server database management system, which allow attackers to cause service interruptions.

The vulnerability of the MySQL Server component, specifically the stored procedures, is related to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service interruptions using the MySQL network protocol...

SUSE-SU-2025:02333-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2023-52888: media: mediatek: vcodec: Only free buffer VA that is not NULL bsc1228557. - CVE-2024-49568: net/smc: check v2extoffset/eidcnt/ismgidcnt when...

Advantech iView 跨站脚本漏洞

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. A cross-site scripting vulnerability exists in Advantech iView due to improper validation of user-supplied input. An attacker could use this vulnerability to execute...

Advantech iView SQL注入漏洞

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. An SQL injection vulnerability exists in Advantech iView, which can be exploited by an attacker to perform SQL injection and execute code in the context of the 'nt...

Advantech iView 跨站脚本漏洞

Advantech iView is a Simple Network Protocol SNMP based software from Advantech, China to manage B + B SmartWorx devices. A cross-site scripting vulnerability exists in Advantech iView due to improper validation of user-supplied input. An attacker could use this vulnerability to execute...

CVE-2025-38148

In the Linux kernel, the following vulnerability has been resolved: net: phy: mscc: Fix memory leak when using one step timestamping Fix memory leak when running one-step timestamping. When running one-step sync timestamping, the HW is configured to insert the TX time into the frame, so there is ...

UBUNTU-CVE-2022-50136

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix duplicated reported IWCMEVENTCONNECTREPLY event If siwrecvmparr returns -EAGAIN, it means that the MPA reply hasn't been received completely, and should not report IWCMEVENTCONNECTREPLY in this case. This may trigge...

ALSA-2025:9121 Moderate: wireshark security update

The wireshark packages contain a network protocol analyzer used to capture and browse the traffic running on a computer network. Security Fixes: wireshark: Uncontrolled Recursion in Wireshark CVE-2025-1492 For more details about the security issues, including the impact, a CVSS score,...

The vulnerability of the PROFINET protocol implementation in the modular security system software SIRIUS 3RK3, as well as the security relay software SIRIUS 3SK2, allows a intruder to gain unauthorized access to protected information.

The vulnerability of the PROFINET protocol implementation in the modular security system SIRIUS 3RK3 and the security relay software SIRIUS 3SK2 is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability could allow an intruder to gain unauthorized...

The vulnerability of the PROFINET protocol implementation in the modular safety system SIRIUS 3RK3 and the safety relay software SIRIUS 3SK2 allows a intruder to disclose protected information.

The vulnerability of the PROFINET protocol implementation in the modular safety system SIRIUS 3RK3 and the safety relay software SIRIUS 3SK2 lies in the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow an intruder to remotely exploit the syst...

OS Command Exec, Unix Command Shell, Reverse TCP SSL (telnet)

Execute an OS command from PHP. Creates an interactive shell via mkfifo and telnet. This method works on Debian and other systems compiled without /dev/tcp support. This module uses the '-z' option included on some systems to encrypt using SSL. Module Options msf use...

Security update for go1.24

This update for go1.24 fixes the following issues: go1.24.4 released 2025-06-05 includes security fixes to the crypto/x509, net/http, and os packages, as well as bug fixes to the linker, the go command, and the hash/maphash and os packages. bsc1236217 go1.24 release tracking CVE-2025-22874...