Fedora 43 : valkey (2026-76cf27ea56)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-76cf27ea56 advisory. Version 8.1.7 Security fixes - CVE-2026-23479 Use-After-Free in unblock client flow - CVE-2026-25243 Invalid Memory Access in RESTORE command -...

CVE-2021-33845

The Splunk Enterprise REST API allows enumeration of usernames via the lockout error message. The potential vulnerability impacts Splunk Enterprise instances before 8.1.7 when configured to repress verbose login errors...

EUVD-2024-28406

Malicious code in bioql PyPI...

Ergon Informatik AG Airlock IAM 安全漏洞

Ergon Informatik AG Airlock IAM is a secure access management system from Ergon Informatik AG, Switzerland. A security vulnerability exists in Ergon Informatik AG Airlock IAM, which stems from a difference in password reset time and could lead to username enumeration. The following versions are...

CVE-2024-41651

An issue in Prestashop v.8.1.7 and before allows a remote attacker to execute arbitrary code via the module upgrade functionality. NOTE: this is disputed by multiple parties, who report that exploitation requires that an attacker be able to hijack network requests made by an admin user who, by...

CVE-2024-30486

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...

CVE-2023-30631 Apache Traffic Server: Configuration option to block the PUSH method in ATS didn't work

Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration option proxy.config.http.pushmethodenabled didn't function. However, by default the PUSH method is blocked in the ipallow configuration file.This issue affects Apache Traffic Server:...

PHP < 7.4.30, 8.0.x < 8.0.20, 8.1.x < 8.1.7 Multiple Vulnerabilities (Jun 2022) - Windows

PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...

Silver Peak Systems EdgeConnect SD-WAN Information Disclosure Vulnerability

Silver Peak Systems EdgeConnect SD-WAN is a suite of software-defined, wide-area networking platforms from Silver Peak Systems, USA. The platform provides path conditioning, application classification, routing and virtual WAN overlay. A security vulnerability exists in Silver Peak Systems...

Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum Protect Operations Center and Client Management Service (CVE-2018-3139, CVE-2018-3180)

Summary There are multiple vulnerabilities in IBM® Runtime Environment Java™ that is used by IBM Spectrum Protect formerly Tivoli Storage Manager Operations Center and IBM Spectrum Protect formerly Tivoli Storage Manager Client Management Service. These issues were disclosed as part of the IBM Ja...

CVE-2007-0556

The query planner in PostgreSQL before 8.0.11, 8.1 before 8.1.7, and 8.2 before 8.2.2 does not verify that a table is compatible with a "previously made query plan," which allows remote authenticated users to cause a denial of service server crash and possibly access database content via an "ALTE...