25 matches found
EUVD-2020-21687
Malware in sbrugna...
EUVD-2021-1225
Malware in sbrugna...
EUVD-2022-4470
Malicious code in bioql PyPI...
EUVD-2022-7701
Malicious code in bioql PyPI...
CVE-2022-47937
Improper input validation in the Apache Sling Commons JSON bundle allows an attacker to trigger unexpected errors by supplying specially-crafted input. The org.apache.sling.commons.json bundle has been deprecated as of March 2017 and should not be used anymore. Consumers are encouraged to conside...
PT-2025-17431 · Unknown · Eol Ova Based Connect
Name of the Vulnerable Software and Affected Versions: EOL OVA based connect component affected versions not specified Description: An Improper Authorization issue was identified in the EOL OVA based connect component, which could allow unauthorized access to the local database containing weakly...
CVE-2020-29312
An issue found in Zend Framework v.3.1.3 and before allow a remote attacker to execute arbitrary code via the unserialize function. Note: This has been disputed by third parties as incomplete and incorrect. The framework does not have a version that surpasses 2.x.x and was deprecated in early 202...
Invalid use of `mem::uninitialized` causes `use-of-uninitialized-value`
The compression and decompression function used mem:uninitialized to create an array of uninitialized values, to later write values into it. This later leads to reads from uninitialized memory. The flaw was corrected in commit b633bf265e41c60dfce3be7eac4e4dd5e18d06cf by using a heap-allocated Vec...
PT-2022-28208 · Ansi Term · Ansi Term
Name of the Vulnerable Software and Affected Versions: ansi term affected versions not specified Description: The advisory for this issue has been withdrawn as it does not pertain to a specific vulnerability in the code of ansi term. The maintainer has advised that this crate is deprecated and wi...
PT-2022-37424 · Rusttype +1 · Rusttype +1
Name of the Vulnerable Software and Affected Versions: badge versions affected versions not specified Description: The maintainer has advised that this crate is deprecated and will not receive any maintenance due to its dependency on the deprecated rusttype crate. Recommendations: At the moment,...
CVE-2021-41616 Apache ddlutils 1.0 readobject vulnerability
Apache DB DdlUtils 1.0 included a BinaryObjectsHelper that was intended for use when migrating database data with a SQL data type of BINARY, VARBINARY, LONGVARBINARY, or BLOB between databases using the ddlutils features. The BinaryObjectsHelper class was insecure and used...
ClamAV < 0.90.2 Multiple Vulnerabilities (deprecated)
Binary data 3966.prm...
Ventia DeskNow Multiple Remote Vulnerabilities (deprecated)
Binary data 2586.prm...
Namazu < 2.0.14 Multiple Vulnerabilities (deprecated)
Binary data 2474.prm...
FreeBSD : mail-notification -- denial-of-service vulnerability (100)
The following package needs to be updated: mail-notification %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg3030ae221c7f11d981a40050fc56d258.nasl. Disabled on 2011/10/02. C Tenable Network Security, Inc. This script contains information extracted from VuXML :...
IBM DB2 < 8.2 Multiple Vulnerabilities (2) (deprecated)
Binary data 2349.prm...
X.org, XFree86: Integer and stack overflows in libXpm
Background XFree86 and X.org are both implementations of the X Window System. Description Chris Evans has discovered multiple integer and stack overflow vulnerabilities in the X Pixmap library, libXpm, which is a part of the X Window System. These overflows can be exploited by the execution of a...
SSH RSAREF Library Multiple Overflows (deprecated)
Binary data 1972.prm...
Samba-TNG < 0.3.1 Multiple Vulnerabilities (deprecated)
Binary data 1341.prm...
Coppermine Gallery < 1.1 Beta 2 PHP Code Execution (deprecated)
Binary data 1567.prm...