CVE-2025-4532 Shanghai Bairui Information Technology SunloginClient sunlogin_guard.exe uncontrolled search path

A vulnerability classified as critical has been found in Shanghai Bairui Information Technology SunloginClient 15.8.3.19819. This affects an unknown part in the library process.dll of the file sunloginguard.exe. The manipulation leads to uncontrolled search path. Local access is required to...

CVE-2025-4215

A vulnerability was found in gorhill uBlock Origin up to 1.63.3b16. It has been classified as problematic. Affected is the function currentStateChanged of the file src/js/1p-filters.js of the component UI. The manipulation leads to inefficient regular expression complexity. It is possible to laun...

Siemens SIMATIC S7-1500 TM MFP Double Free (CVE-2024-41046)

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix double free in detach The number of the currently released descriptor is never incremented which results in the same skb being released multiple times. This plugin only works with Tenable.ot. Please...

Siemens SCALANCE X-200RNA Switch Devices Resource Management Errors (CVE-2016-2179)

The DTLS implementation in OpenSSL before 1.1.0 does not properly restrict the lifetime of queue entries associated with unused out-of- order messages, which allows remote attackers to cause a denial of service memory consumption by maintaining many crafted DTLS sessions simultaneously, related t...

Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2016-10012)

The shared memory manager associated with pre-authentication compression in sshd in OpenSSH before 7.4 does not ensure that a bounds check is enforced by all compilers, which might allows local users to gain privileges by leveraging access to a sandboxed privilege-separation process, related to t...

PT-2025-10456

Name of the Vulnerable Software and Affected Versions: Mage AI version 0.9.75 Description: A vulnerability was found in Mage AI, which has been classified as problematic. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The...

Linux Distros Unpatched Vulnerability : CVE-2025-0442

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Payments in Google Chrome prior to 132.0.6834.83 allowed a remote attacker who convinced a user to engage in specific UI gesture...

Linux Distros Unpatched Vulnerability : CVE-2024-8908

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Autofill in Google Chrome prior to 129.0.6668.58 allowed a remote attacker to perform UI spoofing via a crafted HTML page...

firefox: Use-after-free in WebTransportChild

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: It was possible to cause a use-after-free in the content process side of a WebTransport connection, leading to a potentially exploitable crash...

Linux Distros Unpatched Vulnerability : CVE-2022-45934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 6.0.10. l2capconfigreq in net/bluetooth/l2capcore.c has an integer wraparound via L2CAPCONFREQ packets...

Linux Distros Unpatched Vulnerability : CVE-2022-49375

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rtc: mt6397: check return value after calling platformgetresource It will cause null-ptr-deref if platformgetresource returns NULL, we need check the return...

Linux Distros Unpatched Vulnerability : CVE-2024-2002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A double-free vulnerability was found in libdwarf. In a multiply-corrupted DWARF object, libdwarf may try to deallocfree an allocation twice, potentially causin...

Linux Distros Unpatched Vulnerability : CVE-2022-39177

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - BlueZ before 5.59 allows physically proximate attackers to cause a denial of service because malformed and invalid capabilities can be processed in...

Linux Distros Unpatched Vulnerability : CVE-2022-3114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 5.16-rc6. imxregisteruartclocks in drivers/clk/imx/clk.c lacks check of the return value of kcalloc and will...

Linux Distros Unpatched Vulnerability : CVE-2024-43858

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: Fix array-index-out-of-bounds in diFree CVE-2024-43858 Note that Nessus relies on the presence of the package as reported by the vendor. %NASLMINLEVEL 8090...

Linux Distros Unpatched Vulnerability : CVE-2024-46773

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Check denominator pbndiv before used WHAT & HOW A denominator cannot be 0, and is checked before used. This fixes 1 DIVIDEBYZERO issue reported...

Linux Distros Unpatched Vulnerability : CVE-2024-21808

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper buffer restrictions in some IntelR VPL software before version 24.1.4 may allow an authenticated user to potentially enable escalation of privilege via...

Linux Distros Unpatched Vulnerability : CVE-2023-46317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Knot Resolver before 5.7.0 performs many TCP reconnections upon receiving certain nonsensical responses from servers. CVE-2023-46317 Note that Nessus relies on...

Linux Distros Unpatched Vulnerability : CVE-2023-46045

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Graphviz 2.36.0 through 9.x before 10.0.1 has an out-of-bounds read via a crafted config6a file. NOTE: exploitability may be uncommon because this file is...

Linux Distros Unpatched Vulnerability : CVE-2022-22825

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lookup in xmlparse.c in Expat aka libexpat before 2.4.3 has an integer overflow. CVE-2022-22825 Note that Nessus relies on the presence of the package as report...