21 matches found
CVE-2026-44319
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF terminates the entire process when a stored PFD-subscription notifyUri cannot be reached. In PfdChangeNotifier.FlushNotifications, the notifier calls NnefPFDmanagementNotify... and on any delivery error...
CVE-2026-44319
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF terminates the entire process when a stored PFD-subscription notifyUri cannot be reached. In PfdChangeNotifier.FlushNotifications, the notifier calls NnefPFDmanagementNotify... and on any delivery error...
CVE-2026-44319 free5GC: NEF crashes via logger.Fatal on PFD notification delivery failure (attacker-controlled notifyUri)
free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF terminates the entire process when a stored PFD-subscription notifyUri cannot be reached. In PfdChangeNotifier.FlushNotifications, the notifier calls NnefPFDmanagementNotify... and on any delivery error...
EUVD-2024-46447
Malicious code in bioql PyPI...
Silicon Labs Zigbee EmberZNet SDK 安全漏洞
Silicon Labs Zigbee EmberZNet SDK is a software development kit for developing Zigbee networks from Silicon Labs, Inc. A security vulnerability exists in the Silicon Labs Zigbee EmberZNet SDK that stems from high traffic resulting in a message delivery failure that could lead to a denial of servi...
CVE-2024-50271 signal: restore the override_rlimit logic
In the Linux kernel, the following vulnerability has been resolved: signal: restore the overriderlimit logic Prior to commit d64696905554 "Reimplement RLIMITSIGPENDING on top of ucounts" UCOUNTRLIMITSIGPENDING rlimit was not enforced for a class of signals. However now it's enforced...
PT-2024-34099
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns a behavior change in the Linux kernel related to signal handling, specifically with the override rlimit logic. Prior to a certain commit, the UCOUNT RLIMIT SIGPENDIN...
POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress < 2.9.4 - Administrator+ SQL Injection
Description The POST SMTP – The 1 WordPress SMTP Plugin with Advanced Email Logging and Delivery Failure Notifications plugin for WordPress is vulnerable to time-based SQL Injection via the selected parameter in all versions up to, and including, 2.9.3 due to insufficient escaping on the user...
AZL-37083 CVE-2024-23722 affecting package fluent-bit for versions less than 2.2.2-1
In Fluent Bit 2.1.8 through 2.2.1, a NULL pointer dereference can be caused via an invalid HTTP payload with the content type of x-www-form-urlencoded. It crashes and does not restart. This could result in logs not being delivered properly...
CVE-2023-6875
WordPress POST SMTP Mailer plugin (
Cross site scripting
The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘device’ header in all versions up to, and including, 2.8.7 due to insufficient input sanitization and output escaping. This...
CVE-2023-7027 POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress <= 2.8.7 - Unauthenticated Stored Cross-Site Scripting via device
The POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘device’ header in all versions up to, and including, 2.8.7 due to insufficient input sanitization and output escaping. This...
Chinese-Speaking Cybercriminals Launch Large-Scale iMessage Smishing Campaign in U.S.
A new large-scale smishing campaign is targeting the U.S. by sending iMessages from compromised Apple iCloud accounts with an aim to conduct identity theft and financial fraud. "The Chinese-speaking threat actors behind this campaign are operating a package-tracking text scam sent via iMessage to...
dbus: dbus-daemon: assertion failure when a monitor is active and a message from the driver cannot be delivered
An assertion failure vulnerability was found in D-Bus. This issue occurs when a privileged monitoring connection dbus-monitor, busctl monitor, gdbus monitor, or similar is active, and a message from the bus driver cannot be delivered to a client connection due to rules or outgoing message quota. ...
Threat Outbreak Alert RuleID31295: Email Messages Distributing Malicious Software on November 14, 2017
Medium Alert ID: 55917 First Published: 2017 November 14 16:06 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31295 may contain the following files: Name |...
Threat Outbreak Alert: Fake Shipment Delivery Failure Notification Email Messages on May 14, 2014
Medium Alert ID: 34229 First Published: 2014 May 14 15:46 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a shipment delivery notification for the recipient. The text in the email message attempts to convince the recipie...
Threat Outbreak Alert: Fake Delivery Failure Notification Email Messages on February 25, 2014
Medium Alert ID: 33055 First Published: 2014 February 26 18:15 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a delivery failure notification from DHL for the recipient. The text in the email message attempts to convinc...
Threat Outbreak Alert: Fake Delivery Failure Notification Email Messages on February 10, 2014
Medium Alert ID: 32807 First Published: 2014 February 11 16:03 GMT Version: 1 Summary Cisco Security has detected significant activity related to German-language spam email messages that claim to contain a delivery failure notification for the recipient. The text in the email message attempts to...
Threat Outbreak Alert: Fake Package Delivery Failure Email Messages on November 18, 2013
Medium Alert ID: 31785 First Published: 2013 November 15 21:26 GMT Last Updated: 2013 November 18 22:42 GMT Version: 2 Summary Cisco Security has detected significant activity related to Italian-language spam email messages that claim to contain a failed package delivery notification for the...
security flaw
Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering queued messages and migh...