39 matches found
EUVD-2026-33550
An incorrect handling of permissions in OTRS External Interface and the ConfigItem List module allows an authenticated customer to query the system for CI information. Please note that CMDB has to be anabled and CustomerGroupSupport has to be used to be affected. This issue affects OTRS: 7.0.X...
OTRS 安全漏洞
OTRS is a service management solution developed by the German company OTRS. There is a security vulnerability in OTRS, which stems from an issue with the SQL Box component where resource consumption is uncontrolled, potentially leading to denial-of-service attacks against web servers. The followi...
MiracleLinux 9 : dotnet6.0-6.0.123-1.el9.ML.1 (AXSA:2023-6529:25)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6529:25 advisory. HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487 Tenable has extracted the preceding description...
CVE-2023-53402
In the Linux kernel, the following vulnerability has been resolved: kernel/printk/index.c: fix memory leak with using debugfslookup When calling debugfslookup the result must have dput called on it, otherwise the memory will leak over time. To make things simpler, just call debugfslookupandremove...
CVE-2023-53169
In the Linux kernel, the following vulnerability has been resolved: x86/resctrl: Clear stagedconfig before and after it is used As a temporary storage, stagedconfig in rdtdomain should be cleared before and after it is used. The stale value in stagedconfig could cause an MSR access error. Here is...
CVE-2023-53243
In the Linux kernel, the following vulnerability has been resolved: btrfs: add handling for RAID1C23/DUP to btrfsreduceallocprofile Callers of btrfsreduceallocprofile expect it to return exactly one allocation profile flag, and failing to do so may ultimately result in a WARNON and remount-ro whe...
SAMSUNG Mobile devices 安全漏洞
SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc., from the South Korean company Samsung SAMSUNG. A security vulnerability exists in SAMSUNG Mobile devices versions prior to SMR Apr-2023 Release 1, which stems from improper input validation and cou...
OTRS 安全漏洞
OTRS is a service management solution from OTRS Germany. A security vulnerability exists in OTRS that stems from an external interface that allows the inference of user account presence, which could lead to the identification of valid email addresses. The following versions are affected: version...
CVE-2023-41139
A maliciously crafted STP file when parsed through Autodesk AutoCAD 2024 and 2023 can be used to dereference an untrusted pointer. This vulnerability, along with other vulnerabilities, could lead to code execution in the current process...
CVE-2023-41939
Jenkins SSH2 Easy Plugin 1.4 and earlier does not verify that permissions configured to be granted are enabled, potentially allowing users formerly granted typically optional permissions, like Overall/Manage to access functionality they're no longer entitled to...
CVE-2025-39395
CVE-2025-39395 affects the WordPress plugin WPAMS (Apartment Management System) versions n/a through 44.0 (17-08-2023). The issue is an SQL Injection due to improper neutralization of specific elements in SQL commands. CVSS 3.1/3.1 vector: AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L, base score 9.3 (CRIT...
Linux Distros Unpatched Vulnerability : CVE-2023-52798
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix dfs radar event locking The ath11k active pdevs are protected by RCU but t...
CVE-2020-35951
An issue was discovered in the Quiz and Survey Master plugin before 7.0.1 for WordPress. It allows users to delete arbitrary files such as wp-config.php file, which could effectively take a site offline and allow an attacker to reinstall with a WordPress instance under their control. This occurre...
SUSE CVE-2024-23793
The file upload feature in OTRS and OTRS Community Edition has a path traversal vulnerability. This issue permits authenticated agents or customer users to upload potentially harmful files to directories accessible by the web server, potentially leading to the execution of local code like Perl...
CVE-2023-7009
creationtimestamp| type| source ---|---|--- 2024-03-15 18:27:02+00:00| seen| https://t.me/ctinow/209010...
CVE-2023-21413
creationtimestamp| type| source ---|---|--- 2024-02-20 08:44:42+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9989 2025-06-16 17:38:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/18490...
CVE-2023-51404
creationtimestamp| type| source ---|---|--- 2024-02-10 10:31:37+00:00| seen| https://t.me/ctinow/182513 2024-03-03 12:11:39+00:00| seen| https://t.me/ctinow/198700...
CVE-2023-43317
creationtimestamp| type| source ---|---|--- 2024-01-24 08:26:46+00:00| seen| https://t.me/ctinow/172573 2024-01-31 02:17:12+00:00| seen| https://t.me/ctinow/176424 2024-02-17 17:46:22+00:00| seen| https://t.me/ctinow/186994...
CVE-2023-51062
creationtimestamp| type| source ---|---|--- 2024-01-13 05:31:43+00:00| seen| https://t.me/ctinow/167683 2024-01-15 13:09:31+00:00| seen| https://t.me/arpsyndicate/2784 2024-02-03 07:41:23+00:00| seen| https://t.me/ctinow/178412 2025-06-16 19:40:51+00:00| published-proof-of-concept|...
CVE-2023-42886
creationtimestamp| type| source ---|---|--- 2024-01-02 08:07:01+00:00| seen| https://t.me/ctinow/161549...