43 matches found
PT-2025-37876
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak was identified in the UBI Unsorted Block Images module within the Linux kernel, specifically within the ubi resize volume function. The issue stems from a mismatch betwee...
SUSE CVE-2022-49388
In the Linux kernel, the following vulnerability has been resolved: ubi: ubicreatevolume: Fix use-after-free when volume creation failed There is an use-after-free problem for 'ebatbl' in ubicreatevolume's error handling path: ubiebareplacetablevol, ebatbl vol-ebatbl = tbl outmapping:...
UBUNTU-CVE-2022-49388
In the Linux kernel, the following vulnerability has been resolved: ubi: ubicreatevolume: Fix use-after-free when volume creation failed There is an use-after-free problem for 'ebatbl' in ubicreatevolume's error handling path: ubiebareplacetablevol, ebatbl vol-ebatbl = tbl outmapping:...
CVE-2022-49388 ubi: ubi_create_volume: Fix use-after-free when volume creation failed
In the Linux kernel, the following vulnerability has been resolved: ubi: ubicreatevolume: Fix use-after-free when volume creation failed There is an use-after-free problem for 'ebatbl' in ubicreatevolume's error handling path: ubiebareplacetablevol, ebatbl vol-ebatbl = tbl outmapping:...
CVE-2022-49388 ubi: ubi_create_volume: Fix use-after-free when volume creation failed
In the Linux kernel, the following vulnerability has been resolved: ubi: ubicreatevolume: Fix use-after-free when volume creation failed There is an use-after-free problem for 'ebatbl' in ubicreatevolume's error handling path: ubiebareplacetablevol, ebatbl vol-ebatbl = tbl outmapping:...
CVE-2022-49388
CVE-2022-49388 affects the Linux kernel ubi_create_volume() in the UBI subsystem. The issue is an use-after-free involving the 'eba_tbl' in the error handling path: ubi_eba_replace_table(vol, eba_tbl) assigns vol->eba_tbl = tbl, then on error the code path leads to ubi_eba_destroy_table(eba_tb...
com.github.almex:weblets-demo (=1.1.3), org.apache.geronimo.assemblies:geronimo-jetty8-javaee6 (=3.0-M1) +18 more potentially affected by CVE-2010-2057 via org.apache.myfaces.core:myfaces-impl (=2.0.0)
org.apache.myfaces.core:myfaces-impl MAVEN version =2.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.apache.myfaces.core:myfaces-impl and may be impacted: - com.github.almex:weblets-demo =1.1.3 -...
IBM WebSphere Application Server 7.x / 8.0.0.0 <= 8.0.0.15 / 8.5.0.0 <= 8.5.5.14 / 9.0.0.0 <= 9.0.0.9 Directory Traversal Vulnerability
A directory traversal vulnerability exists in WebSphere Application Server that is using Enterprise bundle Archives EBA. An authenticated, remote attacker can exploit this, by persuading a victim to extract a specially-crafted ZIP archive containing 'dot dot slash' ../ sequences, an attacker coul...
Security Bulletin: Potential directory traversal vulnerability in WebSphere Application Server shipped with Jazz for Service Management (CVE-2018-1797)
Summary There is a potential directory traversal vulnerability in WebSphere Application Server CVE-2018-1797. This is occurs when an Enterprise Bundle Archive EBA is installed into the Application Server that has a path external to the EBA. Vulnerability Details DESCRIPTION: IBM WebSphere...
CVE-2018-1797
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using Enterprise bundle Archives EBA could allow a local attacker to traverse directories on the system. By persuading a victim to extract a specially-crafted ZIP archive containing "dot dot slash" sequences ../, an attacker could exploit th...
CVE-2018-1797
CVE-2018-1797 is a directory traversal vulnerability (Zip-Slip) in IBM WebSphere Application Server when using Enterprise Bundle Archives (EBA). An authenticated attacker could cause a victim to extract a crafted ZIP containing ".. /" sequences, enabling writing to arbitrary files on the host. Af...
CVE-2018-1797
IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 using Enterprise bundle Archives EBA could allow a local attacker to traverse directories on the system. By persuading a victim to extract a specially-crafted ZIP archive containing "dot dot slash" sequences ../, an attacker could exploit th...
eba.europa.eu XSS vulnerability
Open Bug Bounty ID: OBB-607240 Description| Value ---|--- Affected Website:| eba.europa.eu Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2017-9277
The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA Enhanced Background Authentication kept open connections without EBA...
Authentication flaw
The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA Enhanced Background Authentication kept open connections without EBA...
CVE-2017-9285 Login restrictions not applied when using ebaclient against NetIQ eDirectory EBA interface
NetIQ eDirectory before 9.0 SP4 did not enforce login restrictions when "ebaclient" was used, allowing unpermitted access to eDirectory services...
CVE-2017-9277 existing connection is being used even though eDirectory LDAP server is upgraded to EBA
The LDAP backend in Novell eDirectory before 9.0 SP4 when switched to EBA Enhanced Background Authentication kept open connections without EBA...
CVE-2007-2190
PHP remote file inclusion vulnerability in admin/public/webpages.php in Eba News 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the filename parameter...
CVE-2007-2190
PHP remote file inclusion vulnerability in admin/public/webpages.php in Eba News 1.1 allows remote attackers to execute arbitrary PHP code via a URL in the filename parameter...
CVE-2007-2190
The CVE-2007-2190 issue affects Eba News 1.1 (admin/public/webpages.php): a PHP remote file inclusion vulnerability that lets an attacker cause arbitrary PHP code execution by supplying a URL in the filename parameter. The root cause is a server-side handling flaw that writes or includes unauthen...