91 matches found
Updated nodejs packages fix security vulnerabilities
Node.js HTTP/2 server crashes with unhandled error when receiving malformed HEADERS frame. CVE-2025-59465 Uncatchable "Maximum call stack size exceeded" error on Node.js via asynchooks leads to process crashes bypassing error handlers. CVE-2025-59466 Bypass File System Permissions using crafted...
EUVD-2024-39426
Malicious code in bioql PyPI...
EUVD-2023-27024
Malicious code in bioql PyPI...
CVE-2023-6399
A format string vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1, USG FLEX series firmware versions from 4.50 through 5.37 Patch 1, USG FLEX 50W series firmware versions from 4.16 through 5.37 Patch 1, USG20W-VPN series firmware versions from 4.16 through 5.37...
CVE-2023-22921
A cross-site scripting XSS vulnerability in the Zyxel NBG-418N v2 firmware versions prior to V1.00AARP.14C0 could allow a remote authenticated attacker with administrator privileges to store malicious scripts using a web management interface parameter, resulting in denial-of-service DoS condition...
Mageia: Security Advisory (MGASA-2014-0466)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-6776
A vulnerability in the web-based management interface of Bosch PRAESIDEO until and including version 4.41 and Bosch PRAESENSA until and including version 1.10 allows an unauthenticated remote attacker to trigger actions on an affected system on behalf of another user Cross-Site Request Forgery...
Cross site request forgery (csrf)
A vulnerability in the web-based management interface of Bosch PRAESIDEO until and including version 4.41 and Bosch PRAESENSA until and including version 1.10 allows an unauthenticated remote attacker to trigger actions on an affected system on behalf of another user Cross-Site Request Forgery...
High-Severity Bug Leaves Cisco TelePresence Gear Open to Attack
Cisco Systems has patched two high-severity vulnerabilities that can be exploited by remote unauthenticated adversaries to launch denial of service attacks. Impacted are Cisco’s TelePresence Video Communication Server and the company’s ASA 5500-X Series Firewalls. The vulnerability with the wides...
F5 BIG-IP - BIG-IP last hop kernel module vulnerability CVE-2015-5516
The remote host is missing a security patch. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if description...
OpenSSL multiple security vulnerabilities
Multiple DoS conditions...
nbd securityvulnerabilities
Different DoS conditions...
ClamAV multiple security vulnerabilities
DoS conditions, buffer overflow, memory corruption...
Cisco Unity Connection multiple security vulnerabilities
Multiple DoS conditions...
Multiple znc security vulnerabilities
Multiple DoS conditions...
Mandriva Linux Security Advisory : libvncserver (MDVSA-2014:229)
Updated libvncserver packages fix security vulnerabilities : A malicious VNC server can trigger incorrect memory management handling by advertising a large screen size parameter to the VNC client. This would result in multiple memory corruptions and could allow remote code execution on the VNC...
wireshark multiple security vulnerabilities
Buffer overflow and DoS-conditions on different protocols parsing...
MGASA-2014-0466 Updated kdenetwork4 packages fix security vulnerabilities in krfb
A malicious VNC client can trigger multiple DoS conditions on the VNC server by advertising a large screen size, ClientCutText message length and/or a zero scaling factor parameter CVE-2014-6053, CVE-2014-6054. A malicious VNC client can trigger multiple stack-based buffer overflows by passing a...
Updated kdenetwork4 packages fix security vulnerabilities in krfb
A malicious VNC client can trigger multiple DoS conditions on the VNC server by advertising a large screen size, ClientCutText message length and/or a zero scaling factor parameter CVE-2014-6053, CVE-2014-6054. A malicious VNC client can trigger multiple stack-based buffer overflows by passing a...
Aircrack-ng multiple security vulnerabilities
DoS conditions, buffer overflow, integer overflow...