348 matches found
[SECURITY] Fedora 40 Update: qt5-qtgraphicaleffects-5.15.14-1.fc40
The Qt Graphical Effects module provides a set of QML types for adding visually impressive and configurable effects to user interfaces. Effects are visual items that can be added to Qt Quick user interface as UI components...
Oracle Linux 8 : krb5 (ELSA-2024-3268)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-3268 advisory. 1.18.2-27.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-27 - Fix memory leak in GSSAPI interface Resolves: RHEL-27250 - Fix...
[SECURITY] Fedora 38 Update: grub2-2.06-118.fc38
The GRand Unified Bootloader GRUB is a highly configurable and customizable bootloader with modular architecture. It supports a rich variety of kernel formats, file systems, computer architectures and hardware devices...
PT-2024-20105
Name of the Vulnerable Software and Affected Versions vantage6 affected versions not specified Description The vantage6 server has no restrictions on CORS settings, which should be configurable to set allowed origins. The impact is limited because v6 does not use session cookies. Recommendations ...
go-zero Security Vulnerabilities
go-zero is a web and RPC framework open sourced by the go-zero team. A security vulnerability exists in go-zero versions prior to 1.4.4 that stems from allowing a user to specify filters with configurable parameters, leading to malicious domain bypass...
GHSA-JCHW-25XP-JWWC vulnerabilities
Vulnerabilities for packages: kibana, opensearch-dashboards-fips, lerna, opensearch-dashboards, configurable-http-proxy, kubeflow-pipelines, kubeflow-centraldashboard...
GHSA-JCHW-25XP-JWWC vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines, lerna, kubeflow-centraldashboard, configurable-http-proxy...
CVE-2023-26159 vulnerabilities
Vulnerabilities for packages: kibana, opensearch-dashboards-fips, lerna, opensearch-dashboards, configurable-http-proxy, kubeflow-pipelines, kubeflow-centraldashboard...
CVE-2023-26159 vulnerabilities
Vulnerabilities for packages: kubeflow-pipelines, lerna, kubeflow-centraldashboard, configurable-http-proxy...
Remote code execution
XWiki Platform is a generic wiki platform. Starting in 2.3 and prior to versions 14.10.15, 15.5.2, and 15.7-rc-1, there is a reflected XSS or also direct remote code execution vulnerability in the code for displaying configurable admin sections. The code that can be passed through a URL parameter...
CVE-2023-45220
The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...
Design/Logic Flaw
The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...
CVE-2023-45220
The Android Client application, when enrolled with the define method 1the user manually inserts the server ip address, use HTTP protocol to retrieve sensitive information ip address and credentials to connect to a remote MQTT broker entity instead of HTTPS and this feature is not configurable by...
CVE-2023-45812
The Apollo Router is a configurable, high-performance graph router written in Rust to run a federated supergraph that uses Apollo Federation. Affected versions are subject to a Denial-of-Service DoS type vulnerability which causes the Router to panic and terminate when a multi-part response is...
[SECURITY] Fedora 38 Update: drupal7-7.98-1.fc38
Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure...
[SECURITY] Fedora 37 Update: drupal7-7.98-1.fc37
Equipped with a powerful blend of features, Drupal is a Content Management System written in PHP that can support a variety of websites ranging from personal weblogs to large community-driven websites. Drupal is highly configurable, skinnable, and secure...
[SECURITY] Fedora 37 Update: libeconf-0.5.2-1.fc37
libeconf is a highly flexible and configurable library to parse and manage key=3Dvalue configuration files. It reads configuration file snippets from different directories and builds the final configuration file from it...
CVE-2023-28995
Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...
CVE-2023-28995
Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Keith Solomon Configurable Tag Cloud CTC plugin = 5.2 versions...