Keycloak 代码问题漏洞

Keycloak is an open-source identity and access management solution developed by Keycloak itself. Keycloak has code-related vulnerabilities; these vulnerabilities stem from incorrect handling of the clientsessionhost parameter, which may lead to server-side request forgeing attacks, thereby exposi...

Vulnerabilities in Code Issues in Various ABB Products (CNVD-2025-13598)

ABB ASPECT-Enterprise is a scalable building energy management and control solution.ABB NEXUS Series is a monitoring and control management system.ABB MATRIX Series is an embedded IoT ASPECT control engine designed to provide flexible field control for medium to large field control applications. ...

TPM 2.0 Reference Code Vulnerability – Discrete TPMs - Lenovo Support US

No description provided...

Linux Distros Unpatched Vulnerability : CVE-2021-47370

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure tx skbs always have the MPTCP ext Due to signed/unsigned comparison, the...

Azure Linux 3.0 Security Update: oath-toolkit (CVE-2024-47191)

The version of oath-toolkit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47191 advisory. - pamoath.so in oath-toolkit 2.6.7 through 2.6.11 before 2.6.12 allows root privilege escalation because...

GoCD 代码问题漏洞

GoCD is an open source continuous delivery server from GoCD. A code issue vulnerability exists in GoCD versions prior to 24.5.0 that stems from allowing abuse of the ability to edit raw XML configurations, which triggers an XML External Entity XXE injection vulnerability...

Adobe Commerce 代码问题漏洞

Adobe Commerce is a leading global digital commerce solution for merchants and brands from Adobe. A code issue vulnerability exists in Adobe Commerce. An attacker exploiting this vulnerability could execute arbitrary code...

BuildKit Code Issues Vulnerabilities

BuildKit is a concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. A code issue vulnerability exists in BuildKit. An attacker could exploit this vulnerability to cause the BuildKit daemon to crash due to panic...

Nextcloud Code Issues Vulnerabilities

Nextcloud is an open source, self-hosted file synchronization and sharing communication application platform from Nextcloud, Germany. A code issue vulnerability exists in Nextcloud mail, which stems from a lack of checking of the source, target, and cookie...

GHSA-7X94-6G2M-3HP2 Defining resource name as integer may give unintended access in vantage6

Impact Malicious users may try to get access to resources they are not allowed to see, by creating resources with integers as names. One example where this is a risk, is when users define which users are allowed to run algorithms on their node. This may be defined by username or user id. Now, for...

SiberianCMS Code Issues Vulnerabilities

Siberian is an open source CMS from Siberian. A code issue vulnerability exists in SiberianCMS. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...

OpenLDAP 代码问题漏洞

OpenLDAP is an open source implementation of the Lightweight Directory Access Protocol LDAP from the US-based OpenLDAP Foundation. A security vulnerability exists in OpenLDAP that stems from the presence of a null pointer dereference...

baserCMS 代码问题漏洞

baserCMS is an Enterprise Content Management System CMS from the baserCMS team. A code issue vulnerability exists in versions of baserCMS prior to 4.7.5 that stems from the presence of a file upload vulnerability...

CVE-2022-42859

Multiple issues were addressed by removing the vulnerable code. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, watchOS 9.2. An app may be able to bypass Privacy preferences...

mruby 代码问题漏洞

mruby is a lightweight implementation of the Ruby language. A code issue vulnerability exists in versions prior to mruby 3.2 that can cause the mruby interpreter to crash, which can affect system availability...

mruby code issue vulnerability (CNVD-2022-13378)

mruby is a lightweight implementation of the Ruby language. Homebrew mruby is vulnerable to code issues, and no detailed vulnerability details are available at this time...

mruby 代码问题漏洞

mruby is a lightweight implementation of the Ruby language. Homebrew mruby is vulnerable to code issues, and no detailed vulnerability details are available at this time...

GitLab 代码问题漏洞

GitLab is an open source, end-to-end software development platform from GitLab, Inc. with built-in version control, issue tracking, code review, CI/CD continuous integration and continuous delivery, and other features. GitLab has a code issue vulnerability that originates from an improperly...

多款Qualcomm产品代码问题漏洞

A Qualcomm chip is a chip from Qualcomm Incorporated USA. A way to miniaturize circuits mainly semiconductor devices, but also passive components, etc., and from time to time are manufactured on the surface of semiconductor wafers. The Qualcomm chip has a code issue vulnerability that stems from...

Google Android 代码问题漏洞

Google Android is a Linux-based open-source operating system from the US company Google...