21 matches found
EUVD-2020-27000
Malware in sbrugna...
EUVD-2019-7095
Malware in sbrugna...
EUVD-2007-5196
Malware in sbrugna...
EUVD-2019-7091
Malware in sbrugna...
EUVD-2021-18355
Malware in sbrugna...
EUVD-2019-7093
Malware in sbrugna...
EUVD-2025-22239
Malicious code in bioql PyPI...
Vyper's `slice()` may elide side-effects when output length is 0
Impact the slice builtin can elide side effects when the output length is 0, and the source bytestring is a builtin msg.data or .code. the reason is that for these source locations, the check that length = 1 is skipped:...
gcc security update
An update is available for gcc. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gcc packages provide compilers for C, C++, Java, Fortran, Objective C, and Ad...
CVE-2020-10906
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit Reader 9.7.1.29511. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
PT-2024-20009 · Parisneo · Lollms-Webui
Name of the Vulnerable Software and Affected Versions: parisneo/lollms-webui version latest Description: A remote code execution issue exists due to insufficient path sanitization in the reinstall binding functionality. This allows an attacker to exploit path traversal and navigate to arbitrary...
CVE-2023-50136
Cross Site Scripting XSS vulnerability in JFinalcms 5.0.0 allows attackers to run arbitrary code via the name field when creating a new custom table...
PT-2022-19115 · Hewlett Packard · Hpe Integrated Lights-Out 5 +1
Name of the Vulnerable Software and Affected Versions: HPE Integrated Lights-Out 5 iLO 5 versions prior to 2.71 Description: A local arbitrary code execution issue was discovered in HPE Integrated Lights-Out 5 iLO 5 firmware. An unprivileged user could locally exploit this issue to execute...
PT-2022-19116 · Hewlett Packard · Hpe Integrated Lights-Out 5 +1
Name of the Vulnerable Software and Affected Versions: HPE Integrated Lights-Out 5 iLO 5 versions prior to 2.71 Description: A local arbitrary code execution issue was discovered, allowing an unprivileged user to execute arbitrary code, resulting in a complete loss of confidentiality, integrity,...
PT-2022-9049 · Graphisoft · Graphisoft Bimx Desktop Viewer
Name of the Vulnerable Software and Affected Versions: Graphisoft BIMx Desktop Viewer version 2019.2.2328 Description: An exploitable code execution issue exists in the file format parsing functionality. A specially crafted file can cause a heap buffer overflow, resulting in code execution. An...
OPENSUSE-SU-2021:0911-1 Security update for xstream
This update for xstream fixes the following issues: Upgrade to 1.4.17 - CVE-2021-29505: Fixed potential code execution when unmarshalling with XStream instances using an uninitialized security framework bsc1186651 This update was imported from the SUSE:SLE-15-SP2:Update update project...
OPENSUSE-SU-2020:2065-1 Security update for dash
This update for dash fixes the following issues: - Fixed an issue where code was executed even if noexec '-n' was specified bsc1178978. This update was imported from the SUSE:SLE-15:Update update project...
SUSE-SU-2020:3480-1 Security update for dash
This update for dash fixes the following issues: - Fixed an issue where code was executed even if noexec '-n' was specified bsc1178978...
OPENSUSE-SU-2020:1998-1 Security update for moinmoin-wiki
This update for moinmoin-wiki fixes the following issues: - update to version 1.9.11: CVE-2020-25074 boo1178744: fix remote code execution via cache action CVE-2020-15275 boo1178745: fix malicious SVG attachment causing stored XSS vulnerability This update was imported from the...
SUSE-SU-2016:0112-1 Security update for foomatic-filters
This update fixes the following security issues: CVE-2015-8327: adds backtick and semicolon to the list of illegal shell escape characters bsc957531. CVE-2015-8560: fixed code execution via improper escaping of ; bsc957531...