362 matches found
GHSA-G5QG-72QW-GW5V vulnerabilities
Vulnerabilities for packages: jitsucom-jitsu, langfuse...
CVE-2025-57822 vulnerabilities
Vulnerabilities for packages: jitsucom-jitsu, langfuse...
Security Bulletin: Multiple vulnerabilities in IBM® SDK Java™ Technology Edition shipped with IBM Tivoli Monitoring.
Summary Multiple vulnerabilities in IBM® SDK Java™ Technology Edition that is shipped as part of multiple IBM Tivoli Monitoring ITM components. CVE-2025-50106, CVE-2025-30749, CVE-2025-30761 and CVE-2025-30754 Vulnerability Details CVEID:CVE-2025-50106 DESCRIPTION: Vulnerability in the Oracle Jav...
CGA-9MGM-XRRG-XP43
Bulletin has no description...
Security Bulletin: Vulnerability in libsoup affects IBM watsonx Orchestrate with watsonx Assistant Cartridge
Summary IBM watsonx Orchestrate with watsonx Assistant Cartridge contains a vulnerable version of libsoup Vulnerability Details CVEID:CVE-2025-4948 DESCRIPTION: A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other...
postgresql:15 security update
pgaudit 1.7.0-1 - Update to 1.7.0 - Support postgresql 15 - Related: 2128241 pgrepack 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 2128241 1.4.6-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 postgres-decoderbufs 1.9.7-1.Final - Iitial import...
ROS-20250902-01
A vulnerability in the Input component of the Linux kernel is related to a memory corruption in the function imspcuflashfirmware in drivers/input/misc/ims-pcu.c. Exploitation of the vulnerability could allow an attacker to escalate privileges on the system A vulnerability in the i2c component of...
Poisoned at Scale: a Scalable Audit Uncovers Hidden Scam Endpoints in Production LLMs
Large Language Models LLMs have become critical to modern software development, but their reliance on internet datasets for training introduces a significant security risk: the absorption and reproduction of malicious content. To evaluate this threat, this paper introduces a scalable, automated...
Security Bulletin: NVIDIA Bluefield, ConnectX, DOCA, Mellanox DPDK, Cumulus Linux and NVOS - September 2025
NVIDIA has released a software update for NVIDIA Bluefield, ConnectX, DOCA, Mellanox DPDK, Cumulus Linux and NVOS. To protect your system, download and install the latest NVIDIA components from the links provided in this document. For earlier evaluation versions, contact your account manager to g...
Elastic Elasticsearch Detection Consolidation
Consolidation of Elastic Elasticsearch detections. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only include"pluginfeedinfo.inc"; if description...
CVE-2025-9789
creationtimestamp| type| source ---|---|--- 2025-09-01 21:30:07+00:00| seen| https://gist.github.com/Darkcrai86/53b4cbcf46c6517713ff1d36867ce623 2025-09-01 23:03:09+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxspjzomn32v...
MINI-H5Q5-5GJX-9X4R
Bulletin has no description...
CVE-2025-9809
creationtimestamp| type| source ---|---|--- 2025-09-01 20:44:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxshsvpso72v...
CVE-2025-9779
creationtimestamp| type| source ---|---|--- 2025-09-01 14:49:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxrtxmt6gc2v...
Security Bulletin: Tornado multipart/form-data Parser Vulnerability Enables Log-Based DoS Attack (Pre-6.5.0), which affects IBM watsonx.data
Summary Tornado is a Python web framework and asynchronous networking library. When Tornado's multipart/form-data parser encounters certain errors, it logs a warning but continues trying to parse the remainder of the data. This allows remote attackers to generate an extremely high volume of logs,...
CVE-2025-58318 DIAView - Authentication Bypass Vulnerability
Delta Electronics DIAView has an authentication bypass vulnerability...
Security Bulletin: IBM Tivoli Composite Application Manager for Application Diagnostics installed IBM WebSphere Application Server and WebSphere Application Server Liberty are affected by a denial of service due to Apache Commons FileUpload.
Summary The security issue described in CVE-2025-48976 has been identified in the WebSphere Application Server included as part of IBM Tivoli Composite Application Manager for Application Diagnostics. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
PUB-A-392596931
Bulletin has no description...
Ubuntu: Security Advisory (USN-7726-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...