OESA-2024-2263 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

OESA-2024-2264 gnutls security update

GnuTLS is a secure communications library implementing the SSL, TLS and DTLS protocols and technologies around them. It provides a simple C language application programming interface API to access the secure communications protocols as well as APIs to parse and write X.509, PKCS 12, and other...

CVE-2024-8531

CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could compromise the Data Center Expert software when an upgrade bundle is manipulated to include arbitrary bash scripts that are executed as root...

CVE-2024-8531

Summary: CVE-2024-8531 affects Schneider Electric EcoStruxure Data Center Expert. The flaw is improper verification of cryptographic signatures in upgrade bundles, allowing manipulation with arbitrary bash scripts that can be executed with root privileges (remote code execution). Affected product...

CVE-2024-8531

CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could compromise the Data Center Expert software when an upgrade bundle is manipulated to include arbitrary bash scripts that are executed as root...

CVE-2024-5005

creationtimestamp| type| source ---|---|--- 2024-10-11 12:24:01+00:00| seen| https://vulnerability.circl.lu/bundle/db9dd42d-746e-40cf-bae6-61042f0c1d48...

CVE-2024-9623

creationtimestamp| type| source ---|---|--- 2024-10-10 13:24:34+00:00| seen| https://t.me/cvedetector/7577 2024-10-10 15:20:05+00:00| seen| https://t.me/truesecator/6305 2024-10-11 12:24:01+00:00| seen| https://vulnerability.circl.lu/bundle/db9dd42d-746e-40cf-bae6-61042f0c1d48...

CVE-2024-45720

creationtimestamp| type| source ---|---|--- 2024-10-09 15:38:50+00:00| seen| https://t.me/cvedetector/7463 2024-10-10 09:20:30+00:00| published-proof-of-concept| https://t.me/HackingInsights/15672 2024-10-10 11:33:46+00:00| seen| https://t.me/CyberBulletin/26061 2024-10-10 11:33:46+00:00| seen|...

CVE-2024-8925

creationtimestamp| type| source ---|---|--- 2024-10-08 07:00:59+00:00| seen| https://t.me/cvedetector/7303 2025-04-14 04:19:32+00:00| seen| https://vulnerability.circl.lu/bundle/9bbd91e2-309f-4b35-9b31-fc613b3101d9...

CVE-2024-9026

creationtimestamp| type| source ---|---|--- 2024-10-08 07:00:56+00:00| seen| https://t.me/cvedetector/7299 2025-04-14 04:19:32+00:00| seen| https://vulnerability.circl.lu/bundle/9bbd91e2-309f-4b35-9b31-fc613b3101d9...

CVE-2024-47617 Reflected XSS Vulnerability in Sulu Media Bundle

Sulu is a PHP content management system. This vulnerability allows an attacker to inject arbitrary HTML/JavaScript code through the media download URL in Sulu CMS. It affects the SuluMediaBundle component. The vulnerability is a Reflected Cross-Site Scripting XSS issue, which could potentially...

CVE-2024-47617 Reflected XSS Vulnerability in Sulu Media Bundle

Sulu is a PHP content management system. This vulnerability allows an attacker to inject arbitrary HTML/JavaScript code through the media download URL in Sulu CMS. It affects the SuluMediaBundle component. The vulnerability is a Reflected Cross-Site Scripting XSS issue, which could potentially...

GHSA-W63J-6G73-WMG5

creationtimestamp| type| source ---|---|--- 2024-09-30 07:31:43+00:00| seen| https://vulnerability.circl.lu/bundle/19c15eba-7fb7-4f1e-8fdd-f5871d05e797 2025-05-08 17:24:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15564...

GHSA-P9RH-JXMQ-GQ47

creationtimestamp| type| source ---|---|--- 2024-09-30 07:31:43+00:00| seen| https://vulnerability.circl.lu/bundle/19c15eba-7fb7-4f1e-8fdd-f5871d05e797 2025-05-08 17:24:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15564...

GHSA-7XFX-47QG-GRP6

creationtimestamp| type| source ---|---|--- 2024-09-30 07:31:43+00:00| seen| https://vulnerability.circl.lu/bundle/19c15eba-7fb7-4f1e-8fdd-f5871d05e797 2025-05-08 17:24:19+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/15564...

GHSA-RJ88-6MR5-RCW8

creationtimestamp| type| source ---|---|--- 2024-09-29 07:52:16+00:00| published-proof-of-concept| https://t.me/CyberDilara/995 2024-09-29 07:52:22+00:00| published-proof-of-concept| https://t.me/GrayHatsHack/7478 2024-09-29 07:52:22+00:00| published-proof-of-concept| https://t.me/GrayHatsHack/88...

Ubuntu: Security Advisory (USN-7034-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-7034-2 ca-certificates update

USN-7034-1 updated ca-certificates. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64...

PT-2024-41022 · Unknown · Ca-Certificates

Name of the Vulnerable Software and Affected Versions: ca-certificates versions prior to 2.64 Description: The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64 version of the Mozilla certificate authority...

USN-7034-1 ca-certificates update

The ca-certificates package contained outdated CA certificates. This update refreshes the included certificates to those contained in the 2.64 version of the Mozilla certificate authority bundle...