EUVD-2026-32676

Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO creates one shared UFOWebSocketHandler instance and reuses it for multiple authenticated WebSocket connections. The handler stores per-connection protocol objects in...

PT-2026-44120

Name of the Vulnerable Software and Affected Versions Microsoft UFO version 3.0.1-4-ge2626659 Description Microsoft UFO creates a single shared UFOWebSocketHandler instance that is reused across multiple authenticated WebSocket connections. The handler stores protocol objects for each connection ...

EUVD-2026-31162

Use after free in QUIC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via malicious network traffic. Chromium security severity: High...

CVE-2023-50430

The Goodix Fingerprint Device, as shipped in Dell Inspiron 15 computers, does not follow the Secure Device Connection Protocol SDCP when enrolling via Linux, and accepts an unauthenticated configuration packet to select the Windows template database, which allows bypass of Windows Hello...

CVE-2023-50430

The Goodix Fingerprint Device, as shipped in Dell Inspiron 15 computers, does not follow the Secure Device Connection Protocol SDCP when enrolling via Linux, and accepts an unauthenticated configuration packet to select the Windows template database, which allows bypass of Windows Hello...

Authentication flaw

The Goodix Fingerprint Device, as shipped in Dell Inspiron 15 computers, does not follow the Secure Device Connection Protocol SDCP when enrolling via Linux, and accepts an unauthenticated configuration packet to select the Windows template database, which allows bypass of Windows Hello...

CVE-2023-50430

The Goodix Fingerprint Device, as shipped in Dell Inspiron 15 computers, does not follow the Secure Device Connection Protocol SDCP when enrolling via Linux, and accepts an unauthenticated configuration packet to select the Windows template database, which allows bypass of Windows Hello...

SUSE CVE-2007-3780

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service daemon crash via a malformed password packet in the connection protocol...

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

In Helm before versions 2.16.11 and 3.3.2, a Helm plugin can contain duplicates of the same entry, with the last one always used. If a plugin is compromised, this lowers the level of access that an attacker needs to modify a plugin's install hooks, causing a local execution attack. To perform thi...

Semrush: SSRF and LFI in site-audit tool

SSRF and LFI vulnerability in Site Audit due to lack of connection protocol verification...

mysql malformed password crasher

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service daemon crash via a malformed password packet in the connection protocol...

mysql malformed password crasher

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service daemon crash via a malformed password packet in the connection protocol...

GLSA-200708-10 : MySQL: Denial of Service and information leakage

The remote host is affected by the vulnerability described in GLSA-200708-10 MySQL: Denial of Service and information leakage Dormando reported a vulnerability within the handling of password packets in the connection protocol CVE-2007-3780. Andrei Elkin also found that the 'CREATE TABLE LIKE'...

MySQL: Denial of Service and information leakage

Background MySQL is a popular multi-threaded, multi-user SQL server. Description Dormando reported a vulnerability within the handling of password packets in the connection protocol CVE-2007-3780. Andrei Elkin also found that the "CREATE TABLE LIKE" command didn't require SELECT privileges on the...

CVE-2007-3780

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service daemon crash via a malformed password packet in the connection protocol...

Code injection

MySQL Community Server before 5.0.45 allows remote attackers to cause a denial of service daemon crash via a malformed password packet in the connection protocol...

mysql -- remote dos via malformed password packet

MySQL reports: A malformed password packet in the connection protocol could cause the server to crash...

Shield SQLFindCandy database scanning-vulnerability warning-the black bar safety net

One, SQLFindCandy scan SQLFindCandy write it the people called the village of rain he said it was Cool, Oh the others are also good） Software Description The following functions: 1. To find a network all the SQl Server2000 Server! 2. For network own to modify the SQL Server Portnon-1 4 3 3The...