CVE-2025-58744 Hard-Coded Default Credentials Enable Document Archive Decryption in Milner ImageDirector Capture

Use of Default Credentials, Hard-coded Credentials vulnerability in C2SGlobalSettings.dll in Milner ImageDirector Capture on Windows allows decryption of document archive files using credentials decrypted with hard-coded application encryption key. This issue affects ImageDirector Capture: from...

CVE-2025-29918

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...

DEBIAN-CVE-2025-29917

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The bytes setting in the decodebase64 keyword is not properly limited. Due to this, signatures using the keyword and setting can cause large memory allocations of up to 4 GiB per...

CVE-2023-33304

A use of hard-coded credentials vulnerability in Fortinet FortiClient Windows 7.0.0 - 7.0.9 and 7.2.0 - 7.2.1 allows an attacker to bypass system protections via the use of static credentials...

Access Restriction Bypass

Overview Microsoft.AspNetCore.App.Runtime.linux-musl-x64 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Access Restriction Bypass. A vulnerability exist...

Access Restriction Bypass

Overview Microsoft.AspNetCore.App.Runtime.linux-musl-arm64 is a package providing a default set of APIs for building an ASP.NET Core application. Contains assets used for self-contained deployments. Affected versions of this package are vulnerable to Access Restriction Bypass. A vulnerability exi...

CVE-2022-47135

Cross-Site Request Forgery CSRF vulnerability in chronoengine.Com Chronoforms plugin = 7.0.9 versions...

UBUNTU-CVE-2023-28425

Redis is an in-memory database that persists on disk. Starting in version 7.0.8 and prior to version 7.0.10, authenticated users can use the MSETNX command to trigger a runtime assertion and termination of the Redis server process. The problem is fixed in Redis version 7.0.10...

CVE-2022-45861

An access of uninitialized pointer vulnerability CWE-824 in the SSL VPN portal of Fortinet FortiOS version 7.2.0 through 7.2.3, version 7.0.0 through 7.0.9 and before 6.4.11 and FortiProxy version 7.2.0 through 7.2.1, version 7.0.0 through 7.0.7 and before 2.0.11 allows a remote authenticated...

UBUNTU-CVE-2020-27752

A flaw was found in ImageMagick in MagickCore/quantum-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger a heap buffer overflow. This would most likely lead to an impact to application availability, but could potentially lead to an impact to data...

ImageMagick Studio ImageMagick 输入验证错误漏洞

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A heap buffer overflow vulnerability exists in ImageMagick MagickCore version 7.0.9-0...

ImageMagick Studio ImageMagick 输入验证错误漏洞

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.9-0, which stems...

IBM Cúram Social Program Management Denial of Service Vulnerability (CNVD-2020-59031)

IBM Cúram Social Program Management SPM is a suite of social program management solutions from IBM in the United States that support the end-to-end social program delivery process. A denial of service vulnerability exists in IBM Cúram Social Program Management versions 7.0.9.0 and 7.0.10.0. The...

CVE-2020-4781

An improper input validation before calling java readLine method may impact IBM Curam Social Program Management 7.0.9 and 7.0.10, which could result in a denial of service. IBM X-Force ID: 189159...

CVE-2020-4775

A cross-site scripting XSS vulnerability may impact IBM Curam Social Program Management 7.0.9 and 7.0.10. This vulnerability allows attackers to inject malicious scripts into web applications for the purpose of running unwanted actions on the end user's device, restricted to a single location. IB...

Servicing stack update for Windows 10 Version 1709: March 5, 2018

Servicing stack update for Windows 10 Version 1709: March 5, 2018 Summary This update makes stability improvements for the Windows 10 Version 1709 servicing stack. How to get this update Method 1: Windows Update This update will be downloaded and installed automatically. Important When installing...

BELL-CVE-2014-8709 CVE-2014-8709 does not affect BellSoft software

Bulletin has no description...

2018-04 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4093105)

2018-04 Cumulative Update for Windows 10 Version 1709 for x86-based Systems KB4093105...

2019-07 Cumulative Update for Windows 10 Version 1709 for x64-based Systems (KB4507465)

2019-07 Cumulative Update for Windows 10 Version 1709 for x64-based Systems KB4507465...

2018-07 Cumulative Update for Windows 10 Version 1709 for x86-based Systems (KB4338817)

2018-07 Cumulative Update for Windows 10 Version 1709 for x86-based Systems KB4338817...