PT-2026-26182

Name of the Vulnerable Software and Affected Versions Mesop versions 1.2.2 and below Description Mesop, a Python-based UI framework, contains a Path Traversal vulnerability. This allows a user providing an untrusted state token through the UI stream payload to target files on the disk when using...

EUVD-2023-43553

Malicious code in bioql PyPI...

Sql injection

SQL Injection vulnerability in Dzzoffice version 2.01, allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module...

CVE-2023-39853

CVE-2023-39853 affects Dzzoffice 2.01. A SQL injection vulnerability exists in the Network Disk backend module, exploitable via the doobj and doevent parameters to leak or access sensitive information. The NVD/CNA metrics indicate network access with low attack complexity and minimal privileges r...

PT-2024-12821 · Dzzoffice · Dzzoffice

Name of the Vulnerable Software and Affected Versions: Dzzoffice version 2.01 Description: The issue allows remote attackers to obtain sensitive information via the doobj and doevent parameters in the Network Disk backend module. This is a SQL Injection vulnerability. Recommendations: For Dzzoffi...

openSUSE: Security Advisory for qemu (openSUSE-SU-2019:2510-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian DLA-1927-1 : qemu security update

Several vulnerabilities were found in QEMU, a fast processor emulator notably used in KVM and Xen HVM virtualization. CVE-2016-5126 Heap-based buffer overflow in the iscsiaioioctl function in block/iscsi.c in QEMU allows local guest OS users to cause a denial of service QEMU process crash or...

openSUSE: Security Advisory for qemu (openSUSE-SU-2019:2059-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

openSUSE Security Update : qemu (openSUSE-2019-2059)

This update for qemu fixes the following issues : Security issues fixed : - CVE-2019-14378: Security fix for heap overflow in ipreass on big packet input bsc1143794. - CVE-2019-12155: Security fix for NULL pointer dereference while releasing spice resources bsc1135902. - CVE-2019-13164: Security...

Security update for qemu (important)

openSUSE Security Update: Security update for qemu Announcement ID: openSUSE-SU-2019:2059-1 Rating: important References: 1079730 1098403 1111025 1119115 1134883 1135902 1136540 1136778 1140402 1143794 Cross-References: CVE-2019-12155 CVE-2019-13164 CVE-2019-14378 Affected Products: openSUSE Leap...

Fedora 22 : libvirt-1.2.13.2-1.fc22 (2015-2c9678da8c)

Rebased to version 1.2.13.2 disk backend is not removed properly when disk frontent hotplug fails bz 1265968 Fix TPM cancel path on newer kernels bz 1244895 Remove timeout for libvirt-guests.service bz 1195544 CVE-2015-5313 libvirt: filesystem storage volume names path traversal flaw bz 1291433...

Fedora 23 : libvirt-1.2.18.2-1.fc23 (2015-30b347dff1)

Rebased to version 1.2.18.2 disk backend is not removed properly when disk frontent hotplug fails bz 1265968 Fix TPM cancel path on newer kernels bz 1244895 Remove timeout for libvirt-guests.service bz 1195544 CVE-2015-5313 libvirt: filesystem storage volume names path traversal flaw bz 1291433...

DEBIAN-CVE-2013-4375

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service domain grant reference consumption via unspecified vectors...

CVE-2013-4375

The qdisk PV disk backend in qemu-xen in Xen 4.2.x and 4.3.x before 4.3.1, and qemu 1.1 and other versions, allows local HVM guests to cause a denial of service domain grant reference consumption via unspecified vectors...

CVE-2013-4375

CVE-2013-4375 affects the qdisk PV disk backend in qemu-xen used by Xen 4.2.x and 4.3.x before 4.3.1, and in qemu 1.1 and other versions. The vulnerability allows a local HVM guest to cause a denial of service via domain grant reference consumption through unspecified vectors. The issue is tied t...