24 matches found
EUVD-2018-0850
Malware in sbrugna...
EUVD-2019-5243
Malware in sbrugna...
EUVD-2021-1961
Malware in sbrugna...
EUVD-2024-54370
Malicious code in bioql PyPI...
CVE-2025-54527
CVE-2025-54527 affects JetBrains YouTrack. The issue is an improper iframe configuration in the widget sandbox that allows popups to bypass security restrictions. Affects YouTrack versions prior to 2025.2.86935 and includes 2025.2.86935, 2025.2.87167, 2025.3.87341, and 2025.3.87344. The Red Hat/R...
CVE-2025-38369 dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using Running IDXD workloads in a container with the /dev directory mounted can trigger a call trace or even a kernel panic when the parent proce...
CVE-2025-4382
A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is set to automatically decrypt disks using keys stored in the TPM, it reads the decryption key into system memory. If an attacker with physical access can corrupt the underlyi...
Security Tools Alone Don't Protect You — Control Effectiveness Does
61% of security leaders reported suffering a breach due to failed or misconfigured controls over the past 12 months. This is despite having an average of 43 cybersecurity tools in place. This massive rate of security failure is clearly not a security investment problem. It is a configuration...
PT-2024-10291
Name of the Vulnerable Software and Affected Versions macOS versions prior to 15.2 Description The issue is related to a configuration problem that has been addressed with additional restrictions. It allows an app to modify protected parts of the file system. The vulnerability can be exploited by...
Citrix PVS vDisk is caching on server even though it is configured to cache to the machine
Scenario: PVS target devices streaming a new version of a vDisk are caching to the server instead of to the cache drive on the target device. Target devices streaming the original version of the vDisk work correctly. Attempts to create or edit a file on the write cache are denied. Inspecting the...
LDAP service is down after upgrading to 13.0 build 82, 12.1 build 62
LDAP LB Vservice configured with User monitor script nsldap.pl showing down after upgrading to13.0 build 82 /12.1 build 62. User authentication fails...
Fortinet FortiWeb Web Application Firewall Policy Bypass
No description provided by source. BINAR10 Report on Fortinet Fortiweb Findings 02/05/2012 - Fortinet FortiWeb Web Application Firewall Policy Bypass - ============================================================ 1 Affected Product Fabricant: Fortinet Product name: FortiWeb Version: Latest update...
Critical Flaw Reported in CloudStack
The Apache Software Foundation is warning users about a configuration problem in the open-source CloudStack platform that could allow an attacker to take a number of unwanted actions, including deleting all of the virtual machines on a system. CloudStack is a project that’s under incubation at th...
Scientific Linux Security Update : sl-release on SL5.1 i386/x86_64
The configuration file /etc/sysconfig/rhn/sources had still been set to 5rolling instead of 51. 5rolling is the development area for Scientific Linux 5. If a user was using a program that used /etc/sysconfig/rhn/sources as a configuration file, they would be getting development updates in additio...
Fortinet FortiWeb Web Application Firewall - Policy Bypass
Fortinet FortiWeb Web Application Firewall - Policy Bypass BINAR10 Report on Fortinet Fortiweb Findings 02/05/2012 - Fortinet FortiWeb Web Application Firewall Policy Bypass - ============================================================ 1 Affected Product Fabricant: Fortinet Product name: FortiWe...
Fortinet FortiWeb Web Application Firewall - Policy Bypass
BINAR10 Report on Fortinet Fortiweb Findings 02/05/2012 - Fortinet FortiWeb Web Application Firewall Policy Bypass - ============================================================ 1 Affected Product Fabricant: Fortinet Product name: FortiWeb Version: Latest update to Tue, 2 May 2012 Type: Web...
MDVA-2008:027 : mandriva-kde-config
The KDE panel has a clock applet which includes de hability to change its appearance and behavior. Because of a configuration problem, this applet was not properly saving these changes were not properly saved, being lost at every user login. This update fixes the problem. %NASLMINLEVEL 70300...
Mandriva Update for mandriva-kde-config MDVA-2008:027 (mandriva-kde-config)
Check for the Version of mandriva-kde-config OpenVAS Vulnerability Test Mandriva Update for mandriva-kde-config MDVA-2008:027 mandriva-kde-config Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can...
CVE-2005-4778
The CVE-2005-4778 entry concerns SUSE Linux 10.0 (before 20051007). A configuration problem in the powersave daemon is described as allowing local users to suspend the computer and potentially perform other unauthorized actions. The available documents do not specify the underlying root cause, th...
CVE-1999-1520
A configuration problem in the Ad Server Sample directory AdSamples in Microsoft Site Server 3.0 allows an attacker to obtain the SITE.CSC file, which exposes sensitive SQL database information...