CVE-2025-3114

creationtimestamp| type| source ---|---|--- 2025-04-09 17:47:52+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11127 2025-04-09 18:02:58+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114309318425843110 2025-04-09 20:57:10+00:00| seen|...

uberAgent is unable to read encrypted credentials stored in Windows Credential Store

Customer is attempting to store encrypted credentials in the Windows Credentials Store as described in the uberAgent documentation https://docs.citrix.com/en-us/uberagent/7-3-1/uxm-features-configuration/username-and-configuration-setting-encryption-2.html, but uberAgent is unable to read the...

CVE-2025-31332

creationtimestamp| type| source ---|---|--- 2025-04-08 07:46:15+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10858 2025-04-08 09:18:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmc5ect2ru2i 2025-04-08 11:28:59+00:00| seen| https://t.me/cvedetector/22414...

PT-2025-15375 · Sap · Sap Solution Manager

Name of the Vulnerable Software and Affected Versions: SAP Solution Manager version 7.1 Description: The issue is caused by a missing authorization check, allowing an authenticated attacker to upload a file as a template for solution documentation. This can lead to limited impact on the integrity...

Exploit for CVE-2024-44308

cve-2024-44308 Michael Goppert, Michael Jennings, and John...

CVE-2025-21437

creationtimestamp| type| source ---|---|--- 2025-04-07 13:36:08+00:00| seen| Telegram/kIPmulmvyHHjtgmA-h6LkG8Qr-d4gjpjh169EvqvyP4-4Q 2025-04-07 14:45:08+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10709 2025-04-07 15:07:09+00:00| seen|...

CVE-2025-1264

creationtimestamp| type| source ---|---|--- 2025-04-06 04:38:34+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10626 2025-04-06 09:12:33+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lm544knt4t26 2025-04-06 10:07:54+00:00| seen| https://t.me/cvedetector/22216...

CVE-2024-36465

creationtimestamp| type| source ---|---|--- 2025-04-02 06:34:46+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10036 2025-04-02 06:58:46+00:00| seen| https://bsky.app/profile/potato.software/post/3llssrnenjx2t 2025-04-02 09:01:39+00:00| seen|...

Security update for warewulf4

This update for warewulf4 fixes the following issues: warewulf4 was updated from version 4.5.8 to 4.6.0: Security issues fixed for version 4.6.0: CVE-2025-22869: Fixed Denial of Service vulnerability in the Key Exchange of golang.org/x/crypto/ssh bsc1239322 CVE-2025-22870: Fixed proxy bypass usin...

Citrix Applayering - Adding new language packs to the OS layer

When attempting to add Language packs to an existing OS layer using lpksetup.exe, administrators may notice that the newly added language packs are not available in the published image. NOTE: The following note in the product documentation is out dated and is no longer applicable for App layering...

[SECURITY] Fedora 42 Update: dokuwiki-20240206b-1.fc42

DokuWiki is a standards compliant, simple to use Wiki, mainly aimed at creati ng documentation of any kind. It has a simple but powerful syntax which makes su re the data-files remain readable outside the Wiki and eases the creation of structured texts. All data is stored in plain text files no...

CGA-9798-6G5R-F6V9

Bulletin has no description...

CVE-2024-4345

creationtimestamp| type| source ---|---|--- 2025-03-27 20:15:48+00:00| seen| https://bsky.app/profile/hackingne.ws/post/3llf4jdmeu42l 2025-03-31 14:10:26+00:00| seen| https://t.me/thehackernews/6584 2025-03-31 21:38:56+00:00| seen|...

SUSE CVE-2025-2720

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: According to the code maintainer the call of the POC is invalid because the buffer pointed to by "data" must have "len"...

SUSE CVE-2025-2721

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: The code maintainer explains that "the call is invalid as the buffer pointed to by "data" must have "len" valid bytes."...

SUSE CVE-2025-2723

REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: The code maintainer explains that "the call is invalid as the buffer pointed to by "data" must have "len" valid bytes."...

CVE-2025-1972

creationtimestamp| type| source ---|---|--- 2025-03-22 13:39:04+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkxtza4cmc2e 2025-03-22 14:33:21+00:00| seen| https://t.me/cvedetector/20869 2025-03-24 22:23:44+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8563...

FreeBSD : chromium -- multiple security fixes (9456d4e9-055f-11f0-85f3-a8a1599412c6)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9456d4e9-055f-11f0-85f3-a8a1599412c6 advisory. Chrome Releases reports: This update includes 2 security fixes: Tenable has extracted the preceding...

The vulnerability of the abort() function in the Documentation/virt/kvm/api.rst of the Linux kernel allows a malicious actor to trigger a service failure.

The vulnerability of the abort function in the Documentation/virt/kvm/api.rst of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to trigger a service failure...

CVE-2025-27888

creationtimestamp| type| source ---|---|--- 2025-03-19 17:38:56+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lkqpzhrmus2b 2025-03-20 12:56:13+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114194866048910223 2025-03-20 15:43:38+00:00| seen|...