IBM Security ReaQta Code Issue Vulnerability

IBM Security ReaQta is an AI autonomous detection and response platform from International Business Machines IBM. IBM Security ReaQta version 3.12 suffers from a code issue vulnerability that stems from the application's lack of effective validation of uploaded files. An attacker can exploit the...

Acronis Cyber Protect Cloud Agent 代码问题漏洞

Acronis Cyber Protect Cloud Agent is a cloud agent from Acronis Switzerland. A code issue vulnerability exists in Acronis Cyber Protect Cloud Agent versions prior to 39713, which stems from binary hijacking and could lead to local elevation of privilege...

Hitachi Energy RTU500 代码问题漏洞

Hitachi Energy RTU500 is a series of industrial control components from Hitachi, Ltd Hitachi, Japan. A code issue vulnerability exists in the Hitachi Energy RTU500 that stems from a specially crafted message sequence that could lead to a denial of service in the RTU500 CMU application...

Digiwin ERP 代码问题漏洞

Digiwin ERP is an e-commerce platform from China Dingxin Digiwin. A code issue vulnerability exists in Digiwin ERP version 5.0.1, which originates from an unrestricted upload and could lead to a remote attack...

JetBrains Runtime Code Issue Vulnerability

JetBrains Runtime JBR is a Czech JetBrains company based on OpenJDK designed specifically for JetBrains products runtime environment . Used to run JetBrains platform products , to provide an optimized Java running experience . JetBrains Runtime has a code issue vulnerability that originates from ...

LLaVA 代码问题漏洞

LLaVA is an application by Haotian Liu, an individual developer. A code issue vulnerability exists in LLaVA that stems from server-side request forgery, which could lead to the disclosure of sensitive data...

Apache Druid 代码问题漏洞

Apache Druid is an open source, column-oriented, distributed database written in the Java language from the Apache Foundation USA. Apache Druid suffers from a code issue vulnerability that stems from server-side request forgery, cross-site scripting, and open redirects that could lead to XSS or...

LLaVA 代码问题漏洞

LLaVA is an application by the individual developer Haotian Liu. A code issue vulnerability exists in LLaVA version 1.2.0, which stems from insufficient validation of path parameters and could lead to a server-side request forgery attack...

vLLM 代码问题漏洞

vLLM is a high throughput and memory efficient inference and service engine for LLM from the vLLM open source. A code issue vulnerability exists in vLLM that stems from insecure deserialization in the Mooncake configuration that could lead to remote code execution...

Keylime 代码问题漏洞

Keylime is an open source extensible trust system utilizing TPM technology from Keylime Open Source. A code issue vulnerability exists in Keylime version 7.12.0 that stems from strict type checking and could lead to proxy registration failure...

Exploit for CVE-2025-28915

CVE-2025-28915 Vulnerability Description: WordPress is a bl...

IBM MQ Code Issues Vulnerabilities

IBM MQ is a messaging middleware product from International Business Machines IBM. The product focuses on providing a reliable and proven messaging backbone for Service Oriented Architecture SOA. A code issue vulnerability exists in IBM MQ that stems from improper exception condition checking and...

Joomla! 代码问题漏洞

Joomla! is a free, open source content management system from Joomla! open source. A code issue vulnerability exists in Joomla! that stems from insufficient privilege validation and could lead to a user changing a file extension...

Linux Distros Unpatched Vulnerability : CVE-2024-56659

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: lapb: increase LAPBHEADERLEN It is unclear if net/lapb code is supposed to be ready for 8021q. We can at least avoid crashes like the following : skbuff:...

Linux Distros Unpatched Vulnerability : CVE-2024-57965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has a potentially unwanted setAttribute'href',hr...

RHEL 8 : kernel (RHSA-2025:2265)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:2265 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cifs: Return correct error code from...

Rembg 代码问题漏洞

Rembg is a tool for removing image backgrounds by the individual developer Daniel Gatis. A code issue vulnerability exists in Rembg version 2.0.57 and earlier, which stems from the /api/remove endpoint that allows images to be fetched, processed, and returned, potentially leading to information...

zz 代码问题漏洞

zz is an e-commerce platform for zj1983 individual developers. A code issue vulnerability exists in zz 2024-8 and prior versions, which stems from improper handling of the url parameter in the HTTP request handling component, leading to server-side request forgery...

MongoDB 代码问题漏洞

MongoDB is a document-oriented database management system from the American company MongoDB. A code issue vulnerability exists in MongoDB versions prior to 2.3.0. An attacker can exploit the vulnerability to elevate privileges...

CVE-2022-49612

In the Linux kernel, the following vulnerability has been resolved: power: supply: core: Fix boundary conditions in interpolation The functions powersupplytemp2resistsimple and powersupplyocv2capsimple handle boundary conditions incorrectly. The change was introduced in...