233 matches found
SUSE CVE-2007-6422
The balancerhandler function in modproxybalancer in the Apache HTTP Server 2.2.0 through 2.2.6, when a threaded Multi-Processing Module is used, allows remote authenticated users to cause a denial of service child process crash via an invalid bb variable...
SUSE CVE-2010-4479
Unspecified vulnerability in pdf.c in libclamav in ClamAV before 0.96.5 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted PDF document, aka "bb 2380," a different vulnerability than CVE-2010-4260...
Malicious Package
Overview bb-netlify is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...
Malicious Package
Overview netlify-bb is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...
Malicious code in bb-babelfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb96e05c3ac756b608a0e5cf45982b178fc77c21c104ce68e6e557efa105489d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-1472 Malicious code in bb-babelfish (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fb96e05c3ac756b608a0e5cf45982b178fc77c21c104ce68e6e557efa105489d Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
bbPress Cross-site Scripting (XSS) vulnerability
bbPress through 1.0.2 has XSS in /bb-login.php url via the re parameter...
FBI catches up with one of its Most Wanted, arrests head of advance-fee crime network
Some dont mind putting extra effort into making their crime appear as legitimate as possible by perpetuating more lies as long as they are guaranteed money in the end. Osondu Victor Igwilo is one such Nigerian scammer. The "catchers" 52-year-old Igwilo has been on the Federal Bureau of...
bb-china.net Cross Site Scripting vulnerability OBB-2384903
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
@abc.xyz/drop-down-treeview (>=0.0.15 <=0.0.16), @abcpros/bitcore-build (>=8.25.29 <=8.25.30) +1332 more potentially affected by CVE-2022-0437 via karma (>=0.10.2 <=6.3.13)
karma NPM version =0.10.2, =0.0.15, =8.25.29, =1.0.0, =0.1.1, =0.1.14, =1.0.2, =1.0.0, =1.2.0, =0.2.0-preview.3, =5.0.0, =0.23.0, =2.3.0, =2.11.0 and more Source cves: CVE-2022-0437 Source advisory: OSV:GHSA-7X7C-QM48-PQ9C...
Mageia: Security Advisory (MGASA-2021-0279)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Malicious code in lib-bb-html-sanitizer (npm)
--- -= Per source details. Do not edit below this line.=- Source: checkmarx 74072bddc9908e0147976fde0680c197ac5b38167bfcdf14afc5f79f23749f72 Malicious packages campaign since 2021 targeting developers, steals source code and secrets...
bb-vantoor.nl Improper Access Control vulnerability OBB-2240459
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Null pointer dereference
An issue was discovered in libredwg through v0.10.1.3751. A NULL pointer dereference exists in the function bitreadBB located in bits.c. It allows an attacker to cause Denial of Service...
libredwg 代码问题漏洞
LibreDWG is a free C library for reading and writing DWG files. a null pointer dereference vulnerability exists in the bitreadBB function in bits.c in LibreDWG version 0.10.1.3751. An attacker could exploit this vulnerability to cause a denial of service...
CVE-2021-22222
Infinite loop in DVB-S2-BB dissector in Wireshark 3.4.0 to 3.4.5 allows denial of service via packet injection or crafted capture file...
openSUSE: Security Advisory for wireshark (openSUSE-SU-2021:1118-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
OPENSUSE-SU-2021:1118-1 Security update for wireshark
This update for wireshark fixes the following issues: Update wireshark to 3.4.6. Including a fix for: - DVB-S2-BB dissector infinite loop bsc1186790. This update was imported from the SUSE:SLE-15:Update update project...
Security update for wireshark (moderate)
openSUSE Security Update: Security update for wireshark Announcement ID: openSUSE-SU-2021:1118-1 Rating: moderate References: 1186790 Affected Products: openSUSE Leap 15.2 An update that contains security fixes can now be installed. Description: This update for wireshark fixes the following issue...
CVE-2021-20783
Cross-site request forgery CSRF vulnerability in Optical BB unit E-WMTA2.3 allows a remote attacker to hijack the authentication of administrators via a specially crafted page...