EUVD-2025-209661

HCL DFXAnalytics is affected by a Using Components with Known Vulnerabilities flaw where the application utilizes unpatched libraries or sub-components, which could allow an attacker to identify and exploit publicly known security vulnerabilities to gain unauthorized access or compromise the...

ch.iterial.keycloak.plugins:keycloak-directus-plugin (>=0.1.0 <=0.7.0), com.c4-soft.springaddons:keycloak-grants-mapper (>=3.1.13-jdk1.8 <=3.1.14-jdk17) +215 more potentially affected by CVE-2026-6856 via org.keycloak:keycloak-services (>=10.0.0 <=9.0.3)

org.keycloak:keycloak-services MAVEN version =10.0.0, =0.1.0, =3.1.13-jdk1.8, =11.0.1, =1.2.6, =1.2.5, =0.1, =0.1, =1.0.1, =0.1, =1.0.1, =0.1, =1.2.0, =1.4.11 - com.github.wnameless.spring.boot.up:spring-boot-up-embedded-keycloak =24.3.0.0 -...

[SECURITY] Fedora 42 Update: qt5-qtwebengine-5.15.19-2.fc42

Qt5 - QtWebEngine components...

EUVD-2018-14279

Malware in sbrugna...

EUVD-2018-9631

Malware in sbrugna...

EUVD-2020-2721

Malware in sbrugna...

EUVD-2022-4625

Malicious code in bioql PyPI...

Establishing a Baseline of Software Supply Chain Security Task Adoption by Software Organizations

Software supply chain attacks have increased exponentially since 2020. The primary attack vectors for supply chain attacks are through: 1 software components; 2 the build infrastructure; and 3 humans a.k.a software practitioners. Software supply chain risk management frameworks provide a list of...

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound due to improper handling of integer values in the msdia140.dll process. An attacker can execute arbitrary code by supplying specially crafted input that triggers an integer overflow and subsequent heap-bas...

CVE-2025-53032

...

CVE-2025-50091

CVE-2025-50091 : In Oracle MySQL, vulnerability in the MySQL Server Server: Optimizer affects versions 8.0.0–8.0.42, 8.4.0–8.4.5 and 9.0.0–9.3.0. It is described as easily exploitable with network access via multiple protocols, potentially causing a hang or crash (DOS) of MySQL Server. The CVSS b...

CVE-2025-50073

...

CVE-2025-50076

...

CVE-2025-50060

...

CVE-2025-30762

...

CVE-2025-30754

...

CVE-2025-30751

CVE-2025-30751 affects Oracle Database Server (Oracle Database component). Affected supported versions are 19.27 and 23.4–23.8. The flaw enables a low-privileged attacker who has Create Session and Create Procedure privileges with network access via Oracle Net to compromise the database, potentia...

TencentOS Server 4: java-11-konajdk (TSSA-2024:0587)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0587 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

BIT-MARIADB-MIN-2022-32088

MariaDB v10.2 to v10.7 was discovered to contain a segmentation fault via the component Exectimetracker::getloops/Filesorttracker::reportuse/filesort...

BIT-JOOMLA-2024-21726 [20240205] - Core - Inadequate content filtering within the filter code

Inadequate content filtering leads to XSS vulnerabilities in various components...