CVE-2023-33096

CVE-2023-33096 is a DoS in Qualcomm chipsets caused by transient denial of service while processing a DL NAS Transport message (per 3GPP 24.501 v16). Affected: Qualcomm components/closed-source parts in mobile chipsets; impact is Availability (High), Network attack vector, no user interaction req...

CVE-2023-33096 Reachable Assertion in Multi-Mode Call Processor

Transient DOS while processing DL NAS Transport message, as specified in 3GPP 24.501 v16...

CVE-2023-33095 Reachable Assertion in Multi-Mode Call Processor

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR...

CVE-2023-33095

CVE-2023-33095 describes a transient Denial of Service in Qualcomm chipsets when processing multiple payload container types with an incorrect container length in the Downlink NAS transport OTA in NR. Root cause per connected sources is improper handling of container lengths in the DL NAS OTA pat...

CVE-2023-33095 Reachable Assertion in Multi-Mode Call Processor

Transient DOS while processing multiple payload container type with incorrect container length received in DL NAS transport OTA in NR...

dl-a.ch Cross Site Scripting vulnerability OBB-3831734

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-46121

CVE-2023-46121 – yt-dlp Generic Extractor MitM vulnerability affects the yt-dlp project (a fork of youtube-dl) where the Generic Extractor could be fed an arbitrary proxy via a crafted URL, enabling a man-in-the-middle on the HTTP session and potential cookie exfiltration. Technical details acros...

CVE-2023-46228

zchunk before 1.3.2 has multiple integer overflows via malformed zchunk files to lib/comp/comp.c, lib/comp/zstd/zstd.c, lib/dl/multipart.c, or lib/header.c...

dl-stroy.ru Cross Site Scripting vulnerability OBB-3719014

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Fedora: Security Advisory for youtube-dl (FEDORA-2023-1f11546a48)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 38 Update: youtube-dl-2023.08.04.git86e3cf5-1.20230815git86e3cf5.fc38

Small command-line program to download videos from YouTube and other sites...

[SECURITY] Fedora 37 Update: youtube-dl-2023.07.30.git2efc8de-1.20230815git2efc8de.fc37

Small command-line program to download videos from YouTube and other sites...

Fedora: Security Advisory for youtube-dl (FEDORA-2023-5435c10480)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

The vulnerability of the dynamically linked CrossCadWare_x64.dl library, a toolset for design and simulation in Siemens Solid Edge, allows a hacker to disclose confidential information.

The vulnerability of the dynamically linked CrossCadWarex64.dl library, which is used for design and simulation projects by Siemens Solid Edge, relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to disclose confidential informatio...

The vulnerability of the dynamically linked CrossCadWare_x64.dl library, a toolset for design and simulation in Siemens Solid Edge, allows a hacker to disclose confidential information.

The vulnerability of the dynamically linked CrossCadWarex64.dl library, which is used for design and simulation projects by Siemens Solid Edge, relates to the execution of operations outside the buffer in memory. Exploiting this vulnerability allows an attacker to disclose confidential informatio...

[SECURITY] Fedora 38 Update: haruna-0.10.3-3.fc38

Open source video player built with Qt/QML and libmpv. Features: + play online videos, through youtube-dl; + supports youtube playlists; + toggle playlist with mouse-over, playlist overlays the video; + auto skip chapter containing certain words; + configurable shortcuts and mouse buttons; + quic...

SUSE CVE-2008-3657

The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check "taintness" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen...

SUSE CVE-2015-7551

The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby before 2.0.0-p648, 2.1 before 2.1.8, and 2.2 before 2.2.4, as distributed in Apple OS X before 10.11.4 and other products, mishandles tainting, which allows context-dependent attackers to execute arbitrary code or cause a denial of...

Malicious Package

Overview dl-pp-latm is a malicious package. The package's name is based on existing repositories, namespaces, or components used by popular companies in an effort to trick employees into downloading it, also known as 'dependency confusion'. Therefore, you're only vulnerable if this package was...

CVE-2022-2633

The All-in-One Video Gallery plugin for WordPress is vulnerable to arbitrary file downloads and blind server-side request forgery via the 'dl' parameter found in the /public/video.php file in versions up to, and including 2.6.0. This makes it possible for unauthenticated users to download sensiti...