8022 matches found
EUVD-2026-34832
Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI service TCP port 9090 and the HTTP JSON-RPC endpoint /jsonrpc.js. The query accepts a folder parameter and lists its contents with no restriction to the...
SUSE-SU-2026:2283-1 Security update for jq
This update for jq fixes the following issue - CVE-2026-33948: CLI input parsing may allow validation bypass via embedded NUL bytes bsc1262043...
[SECURITY] Fedora 44 Update: rust-sequoia-sq-1.3.1-12.fc44
Command-line frontends for Sequoia...
[SECURITY] Fedora 43 Update: rust-sequoia-sq-1.3.1-12.fc43
Command-line frontends for Sequoia...
[SECURITY] Fedora 43 Update: cockpit-362-1.fc43
The Cockpit Web Console enables users to administer GNU/Linux servers using a web browser. It offers network configuration, log inspection, diagnostic reports, SELinux troubleshooting, interactive command-line sessions, and more...
PT-2026-46952
Lyrion Music Server 9.2.0 contains an arbitrary directory listing vulnerability in its readdirectory query, exposed through both the CLI service TCP port 9090 and the HTTP JSON-RPC endpoint /jsonrpc.js. The query accepts a folder parameter and lists its contents with no restriction to the...
CVE-2025-71316
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
EUVD-2025-210067
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
CVE-2025-71316
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
CVE-2025-71316
SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being...
PT-2026-46313
Name of the Vulnerable Software and Affected Versions SQLite sqldiff.exe versions prior to 2025-12-26 Description The sqldiff.exe utility does not securely handle the conversion of Unicode characters to ANSI codepages by the Microsoft Windows C runtime. An attacker can exploit this by using the...
SQLite sqldiff 安全漏洞
SQLite sqldiff is an open-source SQLite database difference comparison tool developed by SQLite. SQLite sqldiff has a security vulnerability, which stems from the improper handling of Unicode characters during the conversion to ANSI code pages at the Windows C runtime. Attackers can load arbitrar...
GHSA-WRH2-89VG-4J9G vulnerabilities
Vulnerabilities for packages: crossplane-provider-aws-elasticache, flux, kots, kubernetes-dashboard, nerdctl, glab, argo-cd, ingress-nginx-controller, minio, kyverno, istio, gitea, opentelemetry-collector, snyk-cli, hubble, step, vitess, prometheus, telegraf, prometheus-operator,...
EUVD-2026-33843
Memory Corruption when processing display command line information due to improper initialization of a variable...
Cisco Application Policy Infrastructure Controller DoS (cisco-sa-apic-dos-rNus8EFw)
According to its self-reported version, Cisco Application Policy Infrastructure Controller is affected by a vulnerability. - A vulnerability in the Object Model CLI component of Cisco Application Policy Infrastructure Controller APIC could allow an authenticated, local attacker to cause an affect...
CVE-2026-24085
Memory Corruption when processing display command line information due to improper initialization of a variable...
CVE-2026-24085
Memory Corruption when processing display command line information due to improper initialization of a variable...
CVE-2026-24085 Stack-based Buffer Overflow in Display
Memory Corruption when processing display command line information due to improper initialization of a variable...
CVE-2026-24085 Stack-based Buffer Overflow in Display
Memory Corruption when processing display command line information due to improper initialization of a variable...
CVE-2026-24085
Technical details about CVE-2026-24085 are not publicly available in the provided documents; the memory corruption description is noted but no affected products, affected versions, root cause specifics, or fixes are disclosed. Monitor for updates.