SUSE CVE-2026-31690

In the Linux kernel, the following vulnerability has been resolved: firmware: thead: Fix buffer overflow and use standard endian macros Addresses two issues in the TH1520 AON firmware protocol driver: 1. Fix a potential buffer overflow where the code used unsafe pointer arithmetic to access the...

CVE-2026-31690

In the Linux kernel, the following vulnerability has been resolved: firmware: thead: Fix buffer overflow and use standard endian macros Addresses two issues in the TH1520 AON firmware protocol driver: 1. Fix a potential buffer overflow where the code used unsafe pointer arithmetic to access the...

Malicious code in poliaoz-aiksgsdfo-aon (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9dc27c8021a1a2bc4ec88285390f53375483fcc32c57544bc501945aeb79aca0 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Malicious code in yam-aon-project (npm)

The package yam-aon-project was found to contain malicious code...

MAL-2025-40141 Malicious code in yam-aon-project (npm)

The package yam-aon-project was found to contain malicious code...

CVE-2023-33085

Memory corruption in wearables while processing data from AON...

CVE-2023-33085

Memory corruption in wearables while processing data from AON...

Memory corruption

Memory corruption in wearables while processing data from AON...

CVE-2023-33085

CVE-2023-33085 is a memory corruption vulnerability described as a Buffer Copy Without Checking Size of Input in Wearables, linked to processing data from AON. The available documents indicate this affects wearable/Qualcomm components and is categorized with high severity (CVSS 3.1: HIGH, LOCAL e...

humancapital-staging.aon.com Cross Site Scripting vulnerability OBB-3595819

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

aon-celtic.com Cross Site Scripting vulnerability OBB-3364595

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

How to put your organization’s cloud security strategy into action

CISOs of Paramount, Aon and Wiz reveal their secrets for creating a future-proof approach to cloud security...

assessment.aon.com Cross Site Scripting vulnerability OBB-3106136

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Wiz expands board and executive team with top security leaders from DocuSign, Aon, Meta and Okta

Wiz continues momentum with addition of security luminary Emily Heath to board of directors; expands executive team to lead hyper-growth...

humancapital.aon.com Cross Site Scripting vulnerability OBB-2218013

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

aon.com Cross Site Scripting vulnerability OBB-2032251

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Kentico CMS 12.0.14 Remote Command Execution Exploit

This Metasploit module exploits a vulnerability in the Kentico CMS platform versions 12.0.14 and earlier. Remote command execution is possible via unauthenticated XML requests to the Staging Service SyncServer.asmx interface ProcessSynchronizationTaskData method stagingTaskData parameter. XML inp...

Aon Browser - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application Aon Browser published at the 'play' market has multiple vulnerabilities...

aon.mediaroom.com XSS vulnerability

Open Bug Bounty ID: OBB-198863 Description| Value ---|--- Affected Website:| aon.mediaroom.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

business-insurance.aon.co.nz XSS vulnerability

Vulnerable URL: http://business-insurance.aon.co.nz/search-results.aspx?q=%22--%3E%20%3C/script%3E%3Csvg/onload=%27;alert%28/XSSPOSED/%29;%27%3E Details: Description| Value ---|--- Patched:| No Latest check for patch:| 25.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed...