JDWPEx

JDWP Remote Code Execution Exploit A Python 3 implement...

MINI-M8MW-3WP4-V32X

Bulletin has no description...

media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()

...

staging: most: remove broken i2c driver

...

Duplicate Advisory: Keycloak allows Binding to an Unrestricted IP Address

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-j4vq-q93m-4683. This link is maintained to preserve external references. Original Description A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to...

CVE-2025-11538

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

CVE-2025-11538 Keycloak-server: debug default bind address

A vulnerability exists in Keycloak's server distribution where enabling debug mode --debug insecurely defaults to binding the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes the debug port to the local network, allowing an attacker on the same network segment to...

PT-2025-46862

Name of the Vulnerable Software and Affected Versions Keycloak affected versions not specified Description A security issue exists in Keycloak where enabling debug mode with the --debug flag insecurely binds the Java Debug Wire Protocol JDWP port to all network interfaces 0.0.0.0. This exposes th...

EUVD-2018-17255

Malware in sbrugna...

EUVD-2015-0558

Malware in sbrugna...

EUVD-2016-4903

Malware in sbrugna...

EUVD-2021-7495

Malicious code in bioql PyPI...

BIT-MONGODB-2025-3083 Malformed MongoDB wire protocol messages may cause mongos to crash

Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31, MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to...

Linux Distros Unpatched Vulnerability : CVE-2025-3083

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connectio...

CVE-2025-39680

The CVE-2025-39680 entry concerns the Linux kernel I2C RTL9300 driver. Vulnerable code path is rtl9300_i2c_smbus_xfer where data->block[0] is sourced from user input and could be very large, enabling an out-of-bounds access. The issue is remedied by validating data->block[0] before use. Aff...

Java Debug Wire Protocol (JDWP) Service Public WAN (Internet) / Public LAN Accessible

The script checks if the target host is running a Java Debug Wire Protocol JDWP service accessible from a public WAN Internet / public LAN. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

UBUNTU-CVE-2023-53146

In the Linux kernel, the following vulnerability has been resolved: media: dw2102: Fix null-ptr-deref in dw2102i2ctransfer In dw2102i2ctransfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally reach...

CVE-2025-3083

Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31, MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to...

CVE-2025-3083 Malformed MongoDB wire protocol messages may cause mongos to crash

Specifically crafted MongoDB wire protocol messages can cause mongos to crash during command validation. This can occur without using an authenticated connection. This issue affects MongoDB v5.0 versions prior to 5.0.31, MongoDB v6.0 versions prior to 6.0.20 and MongoDB v7.0 versions prior to...

CVE-2025-3083

This CVE affects MongoDB: malformed wire protocol messages can crash mongos during command validation, exploitable without authentication. Affected versions are MongoDB v5.0 before 5.0.31, v6.0 before 6.0.20, and v7.0 before 7.0.16. Impact is a denial of service (availability) with a high severit...