librtsp security vulnerabilities

Librtsp is a RTSP protocol library developed by CIJLiu as an individual project. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtspparserequest function, potentially allowing local attacks...

librtsp security vulnerabilities

Librtsp is a RTSP protocol library developed by CIJLIU. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtsprelydumps function, potentially allowing local attacks...

Clay code issues and vulnerabilities

Clay is a high-performance UI layout library developed by Nic Barker personally. Versions of Clay prior to 0.14 contained code vulnerabilities; these vulnerabilities stemmed from a null pointer dereferencing in the ClayMeasureTextCached function within the clay.h library, which could lead to loca...

Open Asset Import Library Assimp Resource Management Error Vulnerability

Open Asset Import Library Assimp is an official open-source asset import library. It allows loading of more than 40 3D file formats into a unified and clean data structure. Versions of Open Asset Import Library Assimp 6.0.2 and earlier contained a resource management vulnerability. This...

Open Chinese Convert security vulnerability

Open Chinese Convert is a conversion software for traditional Chinese and Simplified Chinese developed by Carbo Kuo. Versions of BYVoid OpenCC 1.1.9 and earlier contained security vulnerabilities. These vulnerabilities stemmed from a heap buffer overflow in the opencc::MaxMatchSegmentation functi...

librtsp security vulnerabilities

Librtsp is a RTSP protocol library developed by CIJLIU as an individual project. Librtsp has a security vulnerability, which stems from a buffer overflow in the rtspparsemethod function, potentially allowing local attacks...

CVE-2026-23726

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, An Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and...

Black Basta Ransomware Leader Added to EU Most Wanted and INTERPOL Red Notice

Ukrainian and German law enforcement authorities have identified two Ukrainians suspected of working for the Russia-linked ransomware-as-a-service RaaS group Black Basta. In addition, the group's alleged leader, a 35-year-old Russian national named Oleg Evgenievich Nefedov Нефедов Олег Евгеньевич...

CVE-2026-23726

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, An Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and...

CVE-2026-23726 WeGIA has an Open Redirect Vulnerability in control.php Endpoint via nextPage Parameter (metodo=listarTodos, nomeClasse=TipoEntradaControle)

WeGIA is a web manager for charitable institutions. Prior to 3.6.2, An Open Redirect vulnerability was identified in the /WeGIA/controle/control.php endpoint of the WeGIA application, specifically through the nextPage parameter when combined with metodo=listarTodos and...

Agentic Browser Security: 2025 Year-End Review

Are agentic browsers the new Flash? A 2025 review of new attacks, vendor security layers, and a roadmap for navigating AI browser risks...

What is Breach and Attack Simulation (BAS)? A Guide

If you’re on a vulnerability management team, you’re likely drowning in a sea of CVEs. Your scanners produce massive lists of potential weaknesses, but with limited time and resources, which ones do you fix first? A high CVSS score doesn't always translate to real-world risk. You need context to...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001557)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001557 advisory. An issue was discovered in the Linux kernel before 5.11.8. kernel/bpf/verifier.c has an off-by-one error with a resultant integer underflow affecting out-of-bounds...

MiracleLinux 4 : java-1.6.0-openjdk-1.6.0.41-1.13.13.1.AXS4 (AXSA:2017-1237:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-1237:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2016-5542 Unspecified vulnerability in Oracle Java SE 6u121, 7u111,...

MiracleLinux 4 : openssl-1.0.0-27.AXS4.2 (AXSA:2013-168:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-168:01 advisory. The OpenSSL toolkit provides support for secure communications between machines. OpenSSL includes a certificate management tool and shared libraries...

WeGIA input validation error vulnerability

WeGIA is a network manager for the welfare organization developed by Nilson Lazarin. Versions of WeGIA prior to 3.6.2 contained a vulnerability related to input validation errors. This vulnerability stemmed from the lack of validation or restrictions on the nextPage parameter, which could lead to...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003848)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003848 advisory. kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004029)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004029 advisory. An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to sen...

MiracleLinux 4 : hplip-3.12.4-4.AXS4 (AXSA:2013-130:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-130:01 advisory. The Hewlett-Packard Linux Imaging and Printing Project provides drivers for HP printers and multi-function peripherals. Security issues fixed with th...

WeGIA input validation error vulnerability

WeGIA is a network manager for the welfare organization developed by Nilson Lazarin. Versions of WeGIA prior to 3.6.2 contained a vulnerability related to input validation errors. This vulnerability stemmed from the lack of validation or restrictions on the nextPage parameter, which could lead to...