CVE-2026-5947

Undefined behavior may result due to a race condition leading to a use-after-free violation. If BIND receives an incoming DNS message signed with SIG0, it begins work to validate that signature. If, during that validation, the "recursive-clients" limit is reached as would occur during a query...

CVE-2026-3104

A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through...

EUVD-2016-5392

Malware in sbrugna...

CVE-2012-3279

Multiple cross-site scripting XSS vulnerabilities in HP Network Node Manager i NNMi 8.x, 9.0x, 9.1x, and 9.20 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors...

DEBIAN-CVE-2025-40775

When an incoming DNS protocol message includes a Transaction Signature TSIG, BIND always checks it. If the TSIG contains an invalid value in the algorithm field, BIND immediately aborts with an assertion failure. This issue affects BIND 9 versions 9.20.0 through 9.20.8 and 9.21.0 through 9.21.7...

Ektron Content Management System (CMS) Remote Re-enablement User Vulnerability

Ektron Content Management System is an enterprise-level Web content management system from Ektron, Inc. A remote re-enablement user vulnerability exists in Ektron Content Management System CMS version 9.20 SP2, which allows remote attackers to exploit the vulnerability to enable users...

CVE-2016-4392

A remote cross site scripting vulnerability has been identified in HP Business Service Management software v9.1x, v9.20 - v9.25IP1...

Input validation

In GE PACSystems RX3i CPE305/310 version 9.20 and prior, RX3i CPE330 version 9.21 and prior, RX3i CPE 400 version 9.30 and prior, PACSystems RSTi-EP CPE 100 all versions, and PACSystems CPU320/CRU320 RXi all versions, the device does not properly validate input, which could allow a remote attacke...

7zip NArchive::NHfs::CHandler::ExtractZlibFile method heap buffer overflow vulnerability

7-Zip is a free, open source compression/decompression software. A heap buffer overflow vulnerability exists in the NArchive::NHfs::CHandler::ExtractZlibFile method in 7-Zip 32 15.05 beta and 64 9.20. An attacker can exploit this vulnerability to execute arbitrary code...

7Zip UDF CInArchive::ReadFileItem Code Execution Vulnerability

7Zip is prone to a code execution vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:7-zip:7-zip"; ifdescription...

HP Network Node Manager i (NNMi) 8.x / 9.0x / 9.1x / 9.20 Unspecified XSS

According to its version number, the web interface for HP Network Node Manager i NNMi installed on the remote host is affected by an unspecified cross-site scripting vulnerability. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid79798; scriptversion"1.4";...