Adobe InCopy 16.0.0 < 16.4.1 Multiple Vulnerabilities (APSB22-04)

The version of Adobe InCopy installed on the remote host is prior to 16.4.1. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB22-04 advisory. - Adobe InCopy version 16.4 and earlier is affected by an out-of-bounds write vulnerability that could result in arbitrary...

Atlassian Confluence < 7.19.25 Cross-Site Scripting

According to its self-reported version number, the Atlassian Confluence application running on the remote host is prior to 7.19.25, 7.20.x prior to 8.5.11 or 8.6.x prior to 8.9.3. It is, therefore, affected by a stored Cross-Site Scripting XSS vulnerability which allows an authenticated attacker ...

Adobe Character Animator 4.0 < 4.4 Multiple Vulnerabilities (APSB21-59) (macOS)

The version of Adobe Character Animator installed on the remote macOS host is prior to 4.4. It is, therefore, affected by multiple vulnerabilities as referenced in the APSB21-59 advisory. - Adobe Character Animator version 4.2 and earlier is affected by a memory corruption vulnerability when...

Atlassian Confluence 3.0.x < 7.19.25 / 7.20.x < 8.5.11 / 8.6.x < 8.9.3 (CONFSERVER-98205)

The version of Atlassian Confluence Server running on the remote host is affected by a vulnerability as referenced in the CONFSERVER-98205 advisory. - A type check was missing when handling fonts in PDF.js, which would allow arbitrary JavaScript execution in the PDF.js context. This vulnerability...

SUSE SLES15 Security Update : kernel (Live Patch 45 for SLE 15 SP3) (SUSE-SU-2024:3661-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:3661-1 advisory. This update for the Linux Kernel 5.3.18-15030059164 fixes several issues. The following security issues were fixed: - CVE-2024-35861: Fixed...

CVE-2024-49253

creationtimestamp| type| source ---|---|--- 2024-10-16 17:13:23+00:00| seen| https://t.me/cvedetector/8073...

WordPress Arkhe Blocks plugin <= 2.23.0 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Arkhe Blocks versions = 2.23.0...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-44971)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44971 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: dsa: bcmsf2: Fix a possible memory...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-42301)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42301 advisory. - In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array out-of- bound...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43884)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43884 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Add error handling to...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43856)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43856 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmamfreecoherent...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-43853)

"The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43853 advisory. - In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Prevent UAF in...

CBL Mariner 2.0 Security Update: kernel (CVE-2023-52889)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-52889 advisory. - In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix null pointer deref when...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-44934)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44934 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: wait for previous gc...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-46740)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46740 advisory. - In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF caused by offsets...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : OpenIPMI (SUSE-SU-2024:3604-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:3604-1 advisory. - CVE-2024-42934: Fixed missing check on the authorization type on incoming LAN messages in IPMI simulato...

CVE-2024-9758

creationtimestamp| type| source ---|---|--- 2024-10-11 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1361/...

Mozilla Thunderbird < 115.16.0

The version of Thunderbird installed on the remote Windows host is prior to 115.16.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2024-52 advisory. - An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation...

Schneider Electric Zelio Soft 2

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Exploitable remotely/low attack complexity Vendor : Schneider Electric Equipment : Zelio Soft 2 Vulnerabilities : Use After Free, Improper Input Validation 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

EulerOS 2.0 SP12 : krb5 (EulerOS-SA-2024-2530)

According to the versions of the krb5 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In MIT Kerberos 5 aka krb5 before 1.21.3, an attacker can cause invalid memory reads during GSS message token handling by sending message tokens wit...