Server-side Request Forgery (SSRF)

Overview fastmcp is a The fast, Pythonic way to build MCP servers and clients. Affected versions of this package are vulnerable to Server-side Request Forgery SSRF in the buildurl function. An attacker can access unauthorized internal backend endpoints and perform actions with elevated privileges...

Critical vulnerability in multiple SICK products

A critical vulnerability has been discovered in the .sdd files of several SICK products. This vulnerability could allow a remote, unauthenticated attacker to gain access to the "Authorized Client" user role, potentially impacting the availability and integrity of the affected SICK products. Users...

Veritas NetBackup 安全漏洞

Veritas NetBackup is a storage service from Veritas, Inc. that is used to provide backup and recovery capabilities for enterprise environments. The software supports the detection of ransomware and backup protection of environmental data such as metadata and virtual environments. A security...

Denial Of Service (DoS)

X.Org is vulnerable to Denial of Service DoS. Due to an incorrect calculation flaw in the X.Org Render extension, a malicious, authorized client can crash the X.Org server or, potentially, execute arbitrary code with root privileges...

Information Disclosure

xorg-x11-server is vulnerable to information disclosure. The vulnerability exists as a malicious authorized client could exploit this issue to cause a denial of service crash, or potentially view arbitrary memory content within the X server's address space...

Denial Of Service (DoS)

xorg-x11-server is vulnerable to denial of service. Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service crash or, potentially, execute arbitrary code with root privileges on the X.Org server...

Arbitrary Code Execution

xorg-x11-server is vulnerable to arbitrary code execution. Multiple integer overflow flaws were found in X.org's Render extension. A malicious authorized client could exploit these issues to cause a denial of service crash or, potentially, execute arbitrary code with root privileges on the X.Org...

xorg-x11-server: information leak in the XkbSetGeometry request of X servers

A buffer overflow flaw was found in the way the X.Org server handled XkbGetGeometry requests. A malicious, authorized client could use this flaw to disclose portions of the X.Org server memory, or cause the X.Org server to crash using a specially crafted XkbGetGeometry request...

Scientific Linux Security Update : xorg-x11-server on SL5.x, SL6.x i386/x86_64

X.Org is an open source implementation of the X Window System. It provides the basic low-level functionality that full-fledged graphical user interfaces are designed upon. Multiple input sanitization flaws were found in the X.Org GLX OpenGL extension to the X Window System extension. A malicious,...

CentOS Update for xorg-x11 CESA-2011:1360 centos4 i386

Check for the Version of xorg-x11 OpenVAS Vulnerability Test CentOS Update for xorg-x11 CESA-2011:1360 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

CentOS Update for xorg-x11-server-sdk CESA-2010:0382 centos5 i386

Check for the Version of xorg-x11-server-sdk OpenVAS Vulnerability Test CentOS Update for xorg-x11-server-sdk CESA-2010:0382 centos5 i386 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribu...

FreeBSD : openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients (d1c39c8e-05ab-4739-870f-765490fa2052)

James Yonan reports : If the client sends a packet which fails to decrypt on the server, the OpenSSL error queue is not properly flushed, which can result in another unrelated client instance on the server seeing the error and responding to it, resulting in disconnection of the unrelated client...

openvpn -- denial of service: undecryptable packet from authorized client can disconnect unrelated clients

James Yonan reports: If the client sends a packet which fails to decrypt on the server, the OpenSSL error queue is not properly flushed, which can result in another unrelated client instance on the server seeing the error and responding to it, resulting in disconnection of the unrelated client...

Nortel Wireless LAN Access Point 2200 Series - Denial of Service

// source: https://www.securityfocus.com/bid/9787/info Nortel Wireless LAN Access Point 2200 series appliances have been reported to be prone to a remote denial of service vulnerability. The issue is reported to present itself when a large network request is handled by one of the Wireless LAN...