SUSE CVE-2025-62408

c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...

AZL-71854 CVE-2025-62408 affecting package fluent-bit for versions less than 3.1.10-4

c-ares is an asynchronous resolver library. Versions 1.32.3 through 1.34.5 terminate a query after maximum attempts when using readanswer and processanswer, which can cause a Denial of Service. This issue is fixed in version 1.34.6...

EUVD-2019-16887

Malware in sbrugna...

EUVD-2019-16889

Malware in sbrugna...

EUVD-2019-16872

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2019-13072

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stored XSS in the Filters page Name field in ZoneMinder 1.32.3 allows a malicious user to embed and execute JavaScript code in the browser of any user who...

Linux Distros Unpatched Vulnerability : CVE-2019-7334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable 'Exportfile'...

Linux Distros Unpatched Vulnerability : CVE-2019-7344

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Reflected XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code in the view 'filter' as it insecurely prints the...

Linux Distros Unpatched Vulnerability : CVE-2019-7342

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - POST - Cross Site Scripting XSS exists in ZoneMinder through 1.32.3, allowing an attacker to execute HTML or JavaScript code via a vulnerable...

CVE-2019-7337

Reflected Cross Site Scripting XSS exists in ZoneMinder through 1.32.3 as the view 'events' events.php insecurely displays the limit parameter value, without applying any proper output filtration. This issue exists because of the function sortHeader in functions.php, which insecurely returns the...

c-ares 资源管理错误漏洞

c-ares is a C library for asynchronous DNS requests from the c-ares individual developer. A resource management error vulnerability exists in c-ares versions 1.32.3 through 1.34.4, which stems from reuse after release and could lead to a denial of service triggered by a remote attacker...

PT-2024-9686 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.31.5 Envoy versions prior to 1.32.3 Description: The issue is related to the incorrect implementation of the control flow when handling HTTP responses in the Envoy proxy server. This can lead to downstream failures i...

PT-2024-9687 · Envoy · Envoy

Name of the Vulnerable Software and Affected Versions: Envoy versions prior to 1.29.12 Envoy versions prior to 1.30.9 Envoy versions prior to 1.31.5 Envoy versions prior to 1.32.3 Description: The issue is related to the envoy.load shed points.http1 server abort dispatch configuration in Envoy, a...

Tailscale 跨站请求伪造漏洞

Tailscale is an open source WireGuard based application from Tailscale. Can provide a secure private network for any size team . Tailscale v1.32.3 before the version of the cross-site request forgery vulnerability , the vulnerability stems from allowing malicious websites to access the peer-to-pe...

Tailscale 访问控制错误漏洞

Tailscale is an open source WireGuard based application from Tailscale. Can provide a secure private network for any size team . An Access Control Error vulnerability exists in versions prior to Tailscale v1.32.3. Attackers use the vulnerability to remotely execute code...

PT-2022-26154 · Tailscale · Tailscale

Name of the Vulnerable Software and Affected Versions: Tailscale Windows client versions prior to v1.32.3 Description: A vulnerability in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon tailscaled, enabling remote code execution. The local API was bound...

PT-2019-13110 · Zoneminder +1 · Zoneminder +1

Name of the Vulnerable Software and Affected Versions: ZoneMinder version 1.32.3 Description: The issue allows a malicious user to embed and execute JavaScript code in the browser of any user who navigates to the Filters page, specifically by exploiting the Name field. This is a result of a store...

ZoneMinder Command Injection Vulnerability

ZoneMinder is a free and open source CCTV software application for Linux environments that supports IP, USB and analog cameras. A command injection vulnerability exists in ZoneMinder prior to version 1.32.3 in the daemonControl in includes/functions.php, which can be exploited by an attacker via...

ZoneMinder SQL Injection Vulnerability (CNVD-2019-04693)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. SQL injection vulnerability exists in the skins/classic/views/control.php file in versions prior to ZoneMinder 1.32.3, which can be exploited by remote attackers to execute SQ...

ZoneMinder SQL Injection Vulnerability (CNVD-2019-04687)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. SQL injection vulnerability exists in the ajax/status.php file in versions prior to ZoneMinder 1.32.3, which can be exploited by remote attackers to execute SQL commands with...