4 matches found
ActiveRecord-JDBC-Adapter (AR-JDBC) lib/arjdbc/jdbc/adapter.rb sql.gsub() Function SQL Injection
ActiveRecord-JDBC-Adapter AR-JDBC contains a flaw that may allow carrying out an SQL injection attack. The issue is due to the sql.gsub function in lib/arjdbc/jdbc/adapter.rb not properly sanitizing user-supplied input before using it in SQL queries. This may allow a remote attacker to inject or...
CVE-2025-61727 vulnerabilities
Vulnerabilities for packages: kube-bench, thanos-operator, falco-no-driver, helm-operator, nri-mssql, secrets-store-csi-driver-provider-azure, rancher, kargo, terraform-provider-time, mongodb-kubernetes-operator, nri-couchbase, steampipe, paranoia, grafana-image-renderer, stakater-reloader,...
The vulnerability of the wireless adapter for Xbox Windows operating systems, allowing a hacker to execute arbitrary code
The vulnerability of the wireless adapter in Xbox Windows operating systems relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially created malicious link or malicious file...
MGASA-2022-0305 Updated kernel packages fix security vulnerabilities
This kernel update is based on upstream 5.15.62 and fixes at least the following security issues: A use-after-free flaw was found in the Linux kernel Atheros wireless adapter driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages. This flaw allows a...