13 matches found
OESA-2026-1703 golang security update
The Go Programming Language. Security Fixes: The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large...
OESA-2026-1700 golang security update
The Go Programming Language. Security Fixes: The net/url package does not set a limit on the number of query parameters in a query. While the maximum size of query parameters in URLs is generally limited by the maximum request header size, the net/http.Request.ParseForm method can parse large...
CVE-2023-53848
In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fix a deadlock in r5lexitlog Commit b13015af94cf "md/raid5-cache: Clear conf-log after finishing work" introduce a new problem: // caller hold reconfigmutex r5lexitlog flushwork&log-disablewritebackwork...
PT-2025-49739
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock situation exists within the r5l exit log function in the md/raid5-cache component of the Linux kernel. This issue stems from a commit b13015af94cf intended to clear the conf-l...
EUVD-2023-29244
Malicious code in bioql PyPI...
MAL-2025-6011 Malicious code in config-log (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ca038d2292d65fcd63e01c65289a778b680b4d88ac8f282cc3bcd15d496497f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in config-log (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0ca038d2292d65fcd63e01c65289a778b680b4d88ac8f282cc3bcd15d496497f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in next-config-log (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbb8511354a8e80be373c9edaed805b675905ec0f8ec7758ee8e3dfdb253a4ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4381 Malicious code in next-config-log (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fbb8511354a8e80be373c9edaed805b675905ec0f8ec7758ee8e3dfdb253a4ee Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-5916
An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read-only administrator who has access to the config log, can read secrets, passwords, and tokens to...
PT-2024-37238 · Palo Alto Networks · Pan-Os
Name of the Vulnerable Software and Affected Versions: Palo Alto Networks PAN-OS versions prior to 10.2.8 Palo Alto Networks PAN-OS versions prior to 11.0.4 Description: An information exposure issue in the software enables a local system administrator to unintentionally disclose secrets,...
Denial Of Service (DoS) Through Null Pointer Dereference
fabio is vulnerable to denial of service DoS attacks. The affected Dump function in table.go allows malicious users to cause a NULL pointer dereference in detailed config log, potentially leading to a denial of service condition...
Cisco TelePresence Video Communication Server Expressway Logging Error Message Acquisition Vulnerability
Cisco TelePresence Video Communication Server is a video conferencing solution that integrates h.323 and SIP. A security vulnerability exists in Cisco TelePresence Video Communication Server Expressway, where the system records a password hash in the configuration log file when a user changes the...