530 matches found
EUVD-2024-49013
Malicious code in bioql PyPI...
EUVD-2023-42476
Malicious code in bioql PyPI...
EUVD-2018-3778
Malicious code in bioql PyPI...
EUVD-2024-17224
Malicious code in bioql PyPI...
EUVD-2024-54214
Malicious code in bioql PyPI...
EUVD-2021-7969
Malicious code in bioql PyPI...
EUVD-2022-27919
Malicious code in bioql PyPI...
Vulnerabilities fixed in Microsoft SQL Server
Microsoft has fixed vulnerabilities in SQL Server. A malicious party could exploit the vulnerabilities to cause a denial-of-service DoS, grant themselves elevated privileges and/or gain access to sensitive data. Microsoft has made updates available that fix the described vulnerabilities. We...
CVE-2025-7774 Rockwell Automation ArmorBlock 5000 I/O – Web Server Vulnerabilities
A security issue exists within the 5032 16pt Digital Configurable module’s web server. Intercepted session credentials can be used within a 3-minute timeout window, allowing unauthorized users to perform privileged actions...
KLA86581 Multiple vulnerabilities in Microsoft Server Software
Multiple vulnerabilities were found in Microsoft Server Software. Malicious users can exploit these vulnerabilities to spoof user interface, obtain sensitive information, execute arbitrary code, gain privileges. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Microsoft...
Amazon Linux 2023 : httpd, httpd-core, httpd-devel (ALAS2023-2025-1125)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1125 advisory. HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response headers of applications hosted or proxied by the server can split the...
Amazon Linux 2 : httpd (ALAS-2025-2958)
The version of httpd installed on the remote host is prior to 2.4.64-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2958 advisory. HTTP response splitting in the core of Apache HTTP Server allows an attacker who can manipulate the Content-Type response...
Tableau Server 2023.3.x < 2023.3.19 / 2024.2.x < 2024.2.12 / 2025.1.x < 2025.1.3 Multiple Vulnerabilities (005105043)
The version of Tableau Server installed on the remote host is prior to 2023.3.19, 2024.2.12 and 2025.1.3. It is, therefore, affected by multiple vulnerabilities as referenced in the 005105043 and 005132575 advisories, including: - Improper Limitation of a Pathname to a Restricted Directory 'Path...
Emby Server <= 4.8 Multiple Vulnerabilities
Emby Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:emby:emby.releases"; if...
Security Bulletin: IBM HTTP Server, which is bundled with WebSphere Remote Server, is affected by multiple vulnerabilities due to the included Apache HTTP Server
Summary IBM HTTP Server is shipped with IBM WebSphere Remote Server. Information about security vulnerabilities affecting IBM HTTP Server has been published in a security bulletin. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and...
CVE-2025-54073
mcp-package-docs is an MCP Model Context Protocol server that provides LLMs with efficient access to package documentation across multiple programming languages and language server protocol LSP capabilities. A command injection vulnerability exists in the mcp-package-docs MCP Server prior to the...
HCL BigFix Server 10.0.x < 10.0.13 / 11.0.x < 11.0.4 Multiple Vulnerabilities (KB0120585)
The version of HCL BigFix Server installed on the remote host is 10.0.x prior to 10.0.13 or 11.x prior to 11.0.4. It is, therefore, affected by multiple vulnerabilities as referenced in the KB0120585 advisory. - HCL BigFix Web Reports' service communicates over HTTPS but exhibits a weakness in it...
Oracle MySQL Server 8.4.x < 8.4.6 (July 2025 CPU)
The versions of MySQL Server installed on the remote host are affected by a multiple vulnerabilities as referenced in the July 2025 CPU advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.0-8.0.42,...
Oracle WebLogic Server (July 2025 CPU)
The 12.2.1.4.0, 14.1.1.0.0, and 14.1.2.0.0 versions of WebLogic Server installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2025 CPU advisory. - Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware component: Centralized...
Oracle HTTP Server (July 2025 CPU)
The versions of HTTP Server installed on the remote host are affected by multiple vulnerabilities as referenced in the July 2025 CPU advisory. - In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap- based buffer under-read. To exploit this, a...