108 matches found
CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1
CVE-2026-45846 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2026-46072 affecting package kernel for versions less than 6.6.141.1-1
CVE-2026-46072 affecting package kernel for versions less than 6.6.141.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2026-48306 Substance3D - Sampler | Out-of-bounds Write (CWE-787)
Substance3D - Sampler versions 6.0.0 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
OpenCTI 访问控制错误漏洞
OpenCTI is an open-source network threat intelligence platform developed by OpenCTI. Versions of OpenCTI prior to 6.9.7 contained a access control vulnerability. This vulnerability stemmed from incorrect Access Control Lists ACLs when users were editing relationship additions, potentially allowin...
CVE-2026-43292 affecting package kernel for versions less than 6.6.138.1-1
CVE-2026-43292 affecting package kernel for versions less than 6.6.138.1-1. An upgraded version of the package is available that resolves this issue...
EUVD-2026-23462
Firebird is an open-source relational database management system. In versions prior to 6.0.0, 5.0.4, 4.0.7 and 3.0.14, when processing an opslice network packet, the server passes an unprepared structure containing a null pointer to the SDLinfo function, resulting in a null pointer dereference an...
CubeCart 安全漏洞
CubeCart is an open-source e-commerce software developed by CubeCart. Versions of CubeCart prior to 6.6.0 contained security vulnerabilities. These vulnerabilities were caused by a path traversal issue, which could allow users with administrative privileges to access directories that they shouldn...
CVE-2026-23368 affecting package kernel for versions less than 6.6.130.1-1
CVE-2026-23368 affecting package kernel for versions less than 6.6.130.1-1. An upgraded version of the package is available that resolves this issue...
BIT-SUPERSET-2026-23980 Apache Superset: Improper Neutralization of Special Elements used in a SQL Command
Improper Neutralization of Special Elements used in a SQL Command 'SQL Injection' vulnerability in Apache Superset allows an authenticated user with read access to conduct error-based SQL injection via the sqlExpression or where parameters. This issue affects Apache Superset: before 6.0.0. Users...
CVE-2026-23019 affecting package kernel for versions less than 6.6.121.1-1
CVE-2026-23019 affecting package kernel for versions less than 6.6.121.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-49968 affecting package kernel for versions less than 6.6.121.1-1
CVE-2024-49968 affecting package kernel for versions less than 6.6.121.1-1. A patched version of the package is available...
Wing FTP Server 跨站请求伪造漏洞
Wing FTP Server is an open-source, cross-platform FTP server software developed by Wing FTP Server. Versions of Wing FTP Server prior to 6.2.7 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from cross-site request forgery within the web management interface, whi...
PT-2026-6812
Name of the Vulnerable Software and Affected Versions Wing FTP Server versions prior to 6.2.7 Description Wing FTP Server versions prior to 6.2.7 have a cross-site request forgery CSRF issue in the web administration interface. This allows attackers to delete administrative users by crafting a...
SUSE CVE-2026-24688
pypdf is a free and open-source pure-python PDF library. An attacker who uses an infinite loop vulnerability that is present in versions prior to 6.6.2 can craft a PDF which leads to an infinite loop. This requires accessing the outlines/bookmarks. This has been fixed in pypdf 6.6.2. If projects...
CVE-2026-24873
Out-of-bounds Read vulnerability in Rinnegatamante lpp-vita.This issue affects lpp-vita: before lpp-vita r6...
CVE-2026-24873
CVE-2026-24873 describes an out-of-bounds read vulnerability in Rinnegatamante lpp-vita affecting versions before lpp-vita r6. The issue is categorized as a high-severity flaw with a CVSS 3.1 score of 7.8 (LOCAL access, low attack complexity, no privileges required, user interaction needed, scope...
CVE-2025-11044
An Allocation of Resources Without Limits or Throttling vulnerability in the ANSL-Server component of B Automation Runtime versions prior to 6.5 and prior to R4.93 could be exploited by an unauthenti-cated attacker on the network to win a race condition, resulting in permanent denial-of-service D...
AZL-74439 CVE-2025-71077 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: tpm: Cap the number of PCR banks tpm2getpcrallocation does not cap any upper limit for the number of banks. Cap the limit to eight banks so that out of bounds values coming from external I/O cause on only limited harm...
AZL-73066 CVE-2025-68345 affecting package kernel for versions less than 6.6.121.1-1
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41hdareadacpi The acpigetfirstphysicalnode function can return NULL, in which case the getdevice function also returns NULL, but this value is then dereferenced without...
CVE-2025-13326 Mattermost Desktop App fails to enable Hardened Runtime when packaged for Mac App Store
Mattermost Desktop App versions 6.0.0 fail to enable the Hardened Runtime on the Mattermost Desktop App when packaged for Mac App Store which allows an attacker to inherit TCC permissions via copying the binary to a tmp folder...