691 matches found
Moderate: golang security update
The golang packages provide the Go programming language compiler. Security Fixes: net/http: Request smuggling due to acceptance of invalid chunked data in net/http CVE-2025-22871 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related...
Moderate: Red Hat Security Advisory: ghostscript security update
An update for ghostscript is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fro...
ghostscript security update
9.27-17 - RHEL-88965 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow...
PT-2025-23681 · Undefined · Undefined
@rapid7 re: https://t.co/y9yV1nYcUZ You use CVE-2023-47986 incorrect but link to 2022-47986 correct...
Moderate: git security update
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...
RHEL 9 : varnish (RHSA-2025:8349)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2025:8349 advisory. Varnish Cache is a high-performance HTTP accelerator. It stores web pages in memory so web servers don't have to create the same web page over and ov...
CVE-2025-5385
creationtimestamp| type| source ---|---|--- 2025-05-31 16:51:19+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqi7dw7awsg2 2025-05-31 18:41:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqifkisqih2p...
CVE-2025-4631
creationtimestamp| type| source ---|---|--- 2025-05-31 07:11:57+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqh6zhclzfd2 2025-05-31 09:17:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqhfzzphrp2p 2025-05-31...
CVE-2025-48488
creationtimestamp| type| source ---|---|--- 2025-05-30 08:08:16+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqerkxpu6ut2 2025-05-30 08:21:59+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqeshu5ufw2o...
CVE-2025-44904
hdf5 v1.14.6 was discovered to contain a heap buffer overflow via the H5VMmemcpyvv function...
CVE-2025-31198
CVE-2025-31198 refers to a macOS path-handling issue fixed by improved symlink validation. Affected components are tied to macOS releases: Ventura 13.7.5, Sequoia 15.4, and Sonoma 14.7.5. The issue’s CVSS metrics indicate local attack vector, low attack complexity, no privileges required, user in...
Important: Red Hat Security Advisory: zlib security update
An update for zlib is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
CVE-2025-4493
Improper privilege assignment in PAM JIT privilege sets in Devolutions Server allows a PAM user to perform PAM JIT requests on unauthorized groups by exploiting a user interface issue. This issue affects the following versions : Devolutions Server 2025.1.3.0 through 2025.1.7.0 Devolutions Server...
CVE-2025-30087
Best Practical RT Request Tracker 4.4 through 4.4.7 and 5.0 through 5.0.7 allows XSS via injection of crafted parameters in a search URL...
WordPress MasterStudy LMS Pro plugin <= 4.7.0 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability
Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by Foxyyy in WordPress Plugin MasterStudy LMS Pro versions = 4.7.0...
CVE-2024-56193
creationtimestamp| type| source ---|---|--- 2025-05-27 15:49:14+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17657 2025-05-27 17:02:24+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq65wel6lt22...
CVE-2025-40663
creationtimestamp| type| source ---|---|--- 2025-05-26 13:47:20+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17558 2025-05-26 14:03:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq3dp567id27 2025-05-26 15:28:55+00:00| seen|...
CVE-2025-46805
Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root...
Important: Red Hat Security Advisory: python-tornado security update
An update for python-tornado is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerabilit...
Fedora: Security Advisory (FEDORA-2024-05dedb1a53)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...