11 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-12725
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A heap-based buffer overflow was found in dnsmasq. When DNSSEC validation and query logging are both enabled, logging of DS or DNSKEY replies containing...
LibreOffice Improper Verification of Cryptographic Signature Vulnerability (Apr 2025) - Linux
LibreOffice is prone to an improper verification of cryptographic signature vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE ...
CVE-2024-23460
The CVE-2024-23460 issue is that the Zscaler Updater process does not validate the digital signature of the installer before execution, enabling arbitrary code to run locally. Affected software: Zscaler Client Connector on macOS versions earlier than 4.2. Root cause: lack of installer signature v...
GHSA-M5M3-46GJ-WCH8 SIF's Digital Signature Hash Algorithms Not Validated
Impact The github.com/sylabs/sif/v2/pkg/integrity package does not verify that the hash algorithms used are cryptographically secure when verifying digital signatures. Patches A patch is available in version = v2.8.1 of the module. Users are encouraged to upgrade. The patch is commit...
SUSE-SU-2022:1093-1 Security update for libreoffice
This update for libreoffice fixes the following issues: Update to version 7.2.5.1 jscSLE-18213: - CVE-2021-25636: Fixed an incorrect validation of digitally signed documents bsc1196456...
SUSE-SU-2022:0886-1 Security update for libreoffice
This update for libreoffice fixes the following issues: Update to version 7.2.5.1 jscSLE-18214: - CVE-2021-25636: Fixed an incorrect vadidation of digitally signed documents bsc1196456...
GO-2021-0060 Authentication bypass in github.com/russellhaering/gosaml2
Due to the behavior of encoding/xml, a crafted XML document may cause XML Digital Signature validation to be entirely bypassed, causing an unsigned document to appear signed...
GO-2021-0056
Due to the behavior of encoding/xml, a crafted XML document may cause XML Digital Signature validation to be entirely bypassed, causing an unsigned document to appear signed...
HP Printers RCE Vulnerability (CVE-2017-2750)
Multiple HP Printers are vulnerable to remote code execution RCE attacks. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is fr...
Microsoft Windows multiple security vulnerabilities
MSCOMCTL.ocx code execution, .Net code execution, WinVerifyTrust digital signature validation vulnerability...
Panda Security ActiveScan fails to properly validate downloaded software
Overview Panda ActiveScan fails to properly validate downloaded software, which can allow a remote, unauthenticated attacker to execute arbitrary code on a vulnerable system. Description Panda ActiveScan is an online scanner that is reported to detect malware, vulnerabilities, and unknown threats...