73 matches found
Microsoft Edge (Chromium) < 134.0.3124.66 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 134.0.3124.66. It is, therefore, affected by multiple vulnerabilities as referenced in the March 12, 2025 advisory. - Out of bounds read in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to perfor...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : WebKitGTK vulnerabilities (USN-7279-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7279-1 advisory. Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious...
The vulnerability of the amdtp-stream component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the amdtp-stream component in the Linux operating system’s kernel is related to improper blocking mechanisms. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the Linux operating system’s kernel tracing component, which allows a hacker to trigger a service failure
The vulnerability of the Linux operating system’s kernel tracing component is related to improper blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2024-10591
The MWB HubSpot for WooCommerce – CRM, Abandoned Cart, Email Marketing, Marketing Automation & Analytics plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the hubwoosaveupdates function in all version...
Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : WebKitGTK vulnerabilities (USN-7142-1)
The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7142-1 advisory. Several security issues were discovered in the WebKitGTK Web and JavaScript engines. If a user were tricked into viewing a malicious...
USN-7132-1: PostgreSQL vulnerabilities
It was discovered that PostgreSQL incorrectly tracked tables with row security. A remote attacker could possibly use this issue to perform forbidden reads and modifications. CVE-2024-10976 Jacob Champion discovered that PostgreSQL clients used untrusted server error messages. An attacker that is...
Microsoft Edge (Chromium) < 131.0.2903.48 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 131.0.2903.48. It is, therefore, affected by multiple vulnerabilities as referenced in the November 14, 2024 advisory. - Inappropriate implementation in Extensions in Google Chrome prior to 131.0.6778.69 allowed a remo...
Microsoft Edge (Chromium) < 130.0.2849.80 Multiple Vulnerabilities
The version of Microsoft Edge installed on the remote Windows host is prior to 130.0.2849.80. It is, therefore, affected by multiple vulnerabilities as referenced in the November 7, 2024 advisory. - Use after free in Family Experiences in Google Chrome on Android prior to 130.0.6723.116 allowed a...
Qualcomm Chipsets 安全漏洞
Qualcomm Chipsets are a series of chipsets from Qualcomm, an American company. A security vulnerability exists in Qualcomm Chipsets. An attacker exploiting the vulnerability can cause memory corruption...
Cisco Firepower Management Center WEB Management Cross-Site Scripting Vulnerability
Cisco Firepower Management Center is a new generation of firewall management center software from the U.S. company Cisco Cisco. A cross-site scripting vulnerability exists in the Cisco Firepower Management Center WEB interface, which can be exploited by a remote attacker to inject malicious scrip...
Microsoft Defender 安全漏洞
Microsoft Defender is a threat protection software from Microsoft USA. A security vulnerability exists in Microsoft Defender. An attacker exploits the vulnerability to perform spoofing attacks...
SportsNET SQL Injection Vulnerability (CNVD-2024-37596)
SportsNET is a sports event network application from SportsNET, Inc. SportsNET suffers from a SQL injection vulnerability that can be exploited by an attacker to retrieve, update, and delete all information in the database via a specially crafted SQL query...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel. An attacker exploits the vulnerability to cause memory corruption...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel. An attacker exploits the vulnerability to cause a system crash...
Dell Repository Manager logger module directory traversal vulnerability
Dell Repository Manager is a suite of Dell USA's Dell Repository Manager ensures that Dell PowerEdge servers have the latest BIOS, drivers, firmware, and software. A directory traversal vulnerability exists in the Dell Repository Manager logger module, which can be exploited by a local attacker t...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel. An attacker exploits the vulnerability to cause a program to crash...
Maiwei Safety Production Control Platform Security Breach
Maiwei Safety Production Control Platform is a safety production control platform from Maiwei. A security vulnerability exists in Maiwei Safety Production Control Platform version 4.1. The vulnerability can be exploited by an attacker to obtain sensitive information...
SUSE-SU-2023:4057-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-4563: Fixed an use-after-free flaw in the nftables sub-component. This vulnerability could allow a local attacker to crash the system or lead to a...
USN-5541-1: Linux kernel (Azure) vulnerabilities
Eric Biederman discovered that the cgroup process migration implementation in the Linux kernel did not perform permission checks correctly in some situations. A local attacker could possibly use this to gain administrative privileges. CVE-2021-4197 Jann Horn discovered that the FUSE file system i...