9 matches found
CVE-2026-9304
CVE-2026-9304 describes a server-side request forgery in calcom cal.diy ≤ 4.9.4 . The flaw is in the function validateUrlForSSRF in the file apps/web/app/api/logo/route.ts of the Logo API component. Exploitation can be remote; exploitability is described as difficult. A public exploit exists. The...
MiracleLinux 9 : podman-4.9.4-0.1.el9 (AXSA:2024-7787:03)
The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-7787:03 advisory. golang: net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326 golang: crypto/tls: Timing Side Channel...
CVE-2022-4940
creationtimestamp| type| source ---|---|--- 2026-01-04 21:02:59+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3mbmt47va2r2h...
ch.admin.bit.jeap:jeap-messaging-avro-maven-plugin (>=8.31.0 <=8.50.0), ch.admin.bit.jeap:jeap-messaging-registry-maven-plugin (>=8.31.0 <=8.50.0) +166 more potentially affected by CVE-2025-4949 via org.eclipse.jgit:org.eclipse.jgit (=7.2.0.202503040940-r)
org.eclipse.jgit:org.eclipse.jgit MAVEN version =7.2.0.202503040940-r is affected by a known vulnerability. The following packages have a transitive dependency on org.eclipse.jgit:org.eclipse.jgit and may be impacted: - ch.admin.bit.jeap:jeap-messaging-avro-maven-plugin =8.31.0, =8.31.0, =2.59.0,...
CVE-2024-4945
creationtimestamp| type| source ---|---|--- 2025-02-14 09:46:58+00:00| seen| Telegram/DAS6KHUxaWGoRQsNhRC1A1lJOOMWMXiqLvsAhxYns2UTPSfb...
PT-2024-21987
Name of the Vulnerable Software and Affected Versions Macro Expert versions 4.9.4 and earlier Description The issue allows an unprivileged user to escalate to SYSTEM by replacing the MacroService.exe binary due to improper access control. The "%PROGRAMFILESX86%GrassSoftMacro Expert" folder has...
CVE-2023-49409
Tenda AX3 V16.03.12.11 was discovered to contain a Command Execution vulnerability via the function /goform/telnet...
Katy Voor HHVM 缓冲区错误漏洞
Katy Voor HHVM is an open source application by Katy Voor. Provides an open source virtual machine designed to execute programs written in Hack. A security vulnerability exists in HHVM that stems from a write out-of-bounds if a buffer is full. The following products and versions are affected: HHV...
GNU Compiler Collection libstdc++ Component Random Number Predictability Vulnerability
The GNU Compiler Collection a.k.a. GCC is a compiler system developed by the GNU Project to support multiple programming languages. A security vulnerability exists in the class 'std::randomdevice' in the libstdc++ component of GCC versions prior to 4.9.4. Due to the program failing to properly...