12 matches found
AlmaLinux 10 : git (ALSA-2025:11533)
The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:11533 advisory. git: Git does not sanitize URLs when asking for credentials interactively CVE-2024-50349 git: Newline confusion in credential helpers can lead to...
EUVD-2017-9965
Malware in sbrugna...
ALSA-2025:11534 Important: git security update
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...
ALSA-2025:11533 Important: git security update
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...
Important: git security update
Git is a distributed revision control system with a decentralized architecture. As opposed to centralized version control systems with a client-server model, Git ensures that each working copy of a Git repository is an exact copy with complete revision history. This not only allows the user to wo...
Security Bulletin: IBM Maximo Application Suite -Iot Component uses multiple third party jars which is vulnerable to multiple CVEs.
Summary IBM Maximo Application Suite -Iot Component uses commons-codec-1.9.jar,classgraph-4.8.78.jar,guava-19.0.jar,commons-io-2.8.0.jar,json-20160212.jar,httpclient-4.5.2.jar,cryptography-43.0.0-cp39-abi3-manylinux228x8664.whl which is vulnerable to CVE-2023-2976, CVE-2018-10237, CVE-2020-8908,...
CVE-2024-34528
WordOps through 3.20.0 has a wo/cli/plugins/stackpref.py TOCTOU race condition because the confpath os.open does not use a mode parameter during file creation...
The vulnerability of the inode_init_owner() function in the fs/inode.c file of the XFS file system’s kernel of the Linux operating system allows a malicious actor to escalate their privileges and gain access to protected information. It can also cause service interruptions.
The vulnerability of the inodeinitowner function in the fs/inode.c file of the XFS file system in the Linux operating system is related to the incorrect setting of access group attributes during file creation. Exploiting this vulnerability can allow an attacker to enhance their privileges and gai...
SUSE CVE-2005-0071
vdr before 1.2.6 does not securely create files, which allows attackers to overwrite arbitrary files...
glusterfs: Arbitrary file creation on storage server allows for execution of arbitrary code
A flaw was found in RPC request using gfs2createreq in glusterfs server. An authenticated attacker could use this flaw to create arbitrary files and execute arbitrary code on glusterfs server nodes...
Docker Temporary File Creation Vulnerability
Docker is an open source application container engine from Docker Inc. in the United States, which supports the creation of a container lightweight virtual machine and deployment and running applications on Linux systems, as well as automated installation, deployment and upgrading of applications...
Alert: Carello File Creation flaw
Cerberus Information Security Advisory CISADV000524b http://www.cerberus-infosec.co.uk/advisories.shtml Released : 24th May 2000 Name : Carello Web file overwriting vulnerability Affected Systems : Windows NT running IIS Issue : Remote attackers can write to a server and view source of .asp files...