Amazon AWS VPN Client 安全漏洞

Amazon AWS VPN Client is a fully managed remote access VPN solution from Amazon.com, Inc. A security vulnerability exists in Amazon AWS VPN Client versions prior to 5.2.2 that originates from referencing an unprotected OpenSSL configuration file during installation, which could lead to arbitrary...

CVE-2025-31344

CVE-2025-31344 describes a heap-based buffer overflow in the giflib library used by openEuler on Linux, tied to the gif2rgb.c implementation. The affected series is giflib up to and including 5.2.2. The vulnerability originates in a heap buffer overflow in the gif2rgb.c code path, enabling local ...

CVE-2025-0924

The WP Activity Log plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘message’ parameter in all versions up to, and including, 5.2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web...

UBUNTU-CVE-2019-2556

Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization subcomponent: Core. Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...