36947 matches found
ROS-20260403-73-0010
A vulnerability in the proc component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260403-73-0003
A vulnerability in the ksmbdsessionrpcopen function in the fs/smb/server/mgmt/usersession.c module of the Linux kernel SMB server support is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availabili...
ROS-20260403-73-0006
A vulnerability in the setblocksize function of the block/bdev.c module of the Linux kernel block layer is related to null pointer dereferencing. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
EUVD-2026-18176
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
CVE-2026-33615
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
CVE-2026-33615 MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the setinfo Endpoint
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
CVE-2026-33615
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
CVE-2026-33615 MB connect line mbCONNECT24 vulnerable to an unauthenticated SQL injection in the setinfo Endpoint
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
conftest-0.67.1-2.1 on GA media (moderate)
conftest-0.67.1-2.1 on GA media Announcement ID: openSUSE-SU-2026:10472-1 Rating: moderate Cross-References: CVE-2026-33747 CVSS scores: CVE-2026-33747 SUSE : 8.4 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-33747 SUSE : 8.6 CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N...
PT-2026-29712
An unauthenticated remote attacker can exploit an unauthenticated SQL Injection vulnerability in the setinfo endpoint due to improper neutralization of special elements in a SQL UPDATE command. This can result in a total loss of integrity and availability...
python311-Pygments-2.20.0-2.1 on GA media (moderate)
python311-Pygments-2.20.0-2.1 on GA media Announcement ID: openSUSE-SU-2026:10476-1 Rating: moderate Cross-References: CVE-2026-4539 CVSS scores: CVE-2026-4539 SUSE : 3.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Tumbleweed An update that solves one vulnerability ca...
CVE-2025-67807
The CVE concerns Sage DPW 2025_06_004. The login mechanism exposes different responses for valid vs invalid usernames, enabling account enumeration in versions prior to 2021_06_000. In newer, on-premise deployments, administrators can toggle this behavior. The connected records do not provide any...
PT-2026-29807
Name of the Vulnerable Software and Affected Versions opensc affected versions not specified Description These are all security issues fixed in the opensc-0.27.1-1.1 package on the GA media of openSUSE Tumbleweed. Recommendations At the moment, there is no information about a newer version that...
OPENSUSE-SU-2026:10473-1 dnsdist-2.0.3-1.1 on GA media
These are all security issues fixed in the dnsdist-2.0.3-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:10472-1 conftest-0.67.1-2.1 on GA media
These are all security issues fixed in the conftest-0.67.1-2.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:10475-1 opensc-0.27.1-1.1 on GA media
These are all security issues fixed in the opensc-0.27.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:10480-1 python313-3.13.12-3.1 on GA media
These are all security issues fixed in the python313-3.13.12-3.1 package on the GA media of openSUSE Tumbleweed...
python311-nltk-3.9.4-1.1 on GA media (moderate)
python311-nltk-3.9.4-1.1 on GA media Announcement ID: openSUSE-SU-2026:10461-1 Rating: moderate Cross-References: CVE-2026-33230 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
OPENSUSE-SU-2026:10478-1 python311-3.11.15-4.1 on GA media
These are all security issues fixed in the python311-3.11.15-4.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2026:10479-1 python312-3.12.13-4.1 on GA media
These are all security issues fixed in the python312-3.12.13-4.1 package on the GA media of openSUSE Tumbleweed...