How to Change Where Logs are Stored on the Veeam Appliances

Changing Log Location Will Break Automated Log Collection The automated log collection tools built into both the Veeam Backup & Replication Web UI of the Veeam Software Appliance and the "Create support bundle" function within the Host Management Console collect logs only from the default log...

CVE-2025-11017

A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a...

NULL Pointer Dereference

Overview ogre-python is an Object-Oriented Graphics Rendering Engine - python package Affected versions of this package are vulnerable to NULL Pointer Dereference via the stream function. An attacker can cause a denial of service by manipulating the mDefaultLog argument to trigger a null pointer...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the stream function. An attacker can cause a denial of service by manipulating the mDefaultLog argument to trigger a null pointer dereference. Remediation There is no fixed version for ogre. References -...

CVE-2025-11017

A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a...

CVE-2025-11017

A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a...

CVE-2025-11017

A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a...

CVE-2025-11017 OGRECave Ogre OgreLogManager.cpp stream null pointer dereference

A vulnerability was detected in OGRECave Ogre up to 14.4.1. The impacted element is the function Ogre::LogManager::stream of the file /ogre/OgreMain/src/OgreLogManager.cpp. Performing manipulation of the argument mDefaultLog results in null pointer dereference. The attack must be initiated from a...

CVE-2025-11017

CVE-2025-11017 affects OGRECave Ogre up to version 14.4.1. The vulnerability lies in Ogre::LogManager::stream within /ogre/OgreMain/src/OgreLogManager.cpp, where manipulating the mDefaultLog argument can cause a null pointer dereference. The flaw requires local access to exploit. Public exploitat...

PT-2025-39641

Name of the Vulnerable Software and Affected Versions OGRECave Ogre versions prior to 14.4.1 Description A flaw exists in OGRECave Ogre that allows for a null pointer dereference. This occurs due to manipulation of the mDefaultLog argument within the Ogre::LogManager::stream function, located in...

ogre 安全漏洞

ogre is a scene-oriented 3D engine open-sourced by OGRECave. A security vulnerability exists in ogre 14.4.1 and earlier versions, which stems from an incorrect manipulation of the parameter mDefaultLog in the file /ogre/OgreMain/src/OgreLogManager.cpp, which may result in a null pointer dereferen...

Sensitive Information Disclosure

github.com/edgelesssys/contrast is vulnerable to information disclosure. The vulnerability is due to improper logging configuration due to secrets being written to stderr and Kubernetes logs when the log level is set to info or debug, which is the default...

UBUNTU-CVE-2023-3363

An information disclosure issue in Gitlab CE/EE affecting all versions from 13.6 prior to 15.11.10, all versions from 16.0 prior to 16.0.6, all versions from 16.1 prior to 16.1.1, resulted in the Sidekiq log including webhook tokens when the log format was set to default...

Pharos Controls Device Information Disclosure Vulnerability

Pharos Controls devices is a lighting control device from Pharos Architectural Controls, UK. A security vulnerability exists in Pharos Controls devices. A remote attacker can exploit this vulnerability by sending a direct request to the default/index.lsp or default/log.lsp URIs to obtain sensitiv...

Many vulnerabilities in LSF 4.0

Hello. Load Shareing Facility from Platform http://www.platform.com is a suite of application resource management products that schedule, monitor and analyze the workload for a network of computers. In April 2001 I discovered some security bugs in it. I posted my exploits with technical details t...