Technostrobe HI-LED-WR120-G2 访问控制错误漏洞

Technostrobe HI-LED-WR120-G2 is a high-brightness industrial strobe lighting device from the Canadian company Technostrobe. The version 5.5.0.1R6.03.30 of Technostrobe HI-LED-WR120-G2 contains an access control vulnerability. This vulnerability stems from incorrect handling of parameters in the /...

CVE-2019-25399

IPFire 2.21 Core Update 127 contains multiple stored cross-site scripting vulnerabilities in the extrahd.cgi script that allow attackers to inject malicious scripts through the FS, PATH, and UUID parameters. Attackers can submit POST requests with script payloads in these parameters to execute...

CVE-2019-25399

IPFire 2.21 Core Update 127 contains multiple stored XSS vulnerabilities in the extrahd.cgi script. Attackers can submit POST requests with script payloads in the FS, PATH, and UUID parameters, enabling execution of arbitrary JavaScript in the context of authenticated administrator sessions. The ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992358)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992358 advisory. In the Linux kernel, the following vulnerability has been resolved: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam Syzkaller reports a null-ptr-deref bug as...

SUSE CVE-2022-50334

In the Linux kernel, the following vulnerability has been resolved: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam Syzkaller reports a null-ptr-deref bug as follows: ====================================================== KASAN: null-ptr-deref in range 0x0000000000000000-0x0000000000000007...

UBUNTU-CVE-2022-50334

In the Linux kernel, the following vulnerability has been resolved: hugetlbfs: fix null-ptr-deref in hugetlbfsparseparam Syzkaller reports a null-ptr-deref bug as follows: ====================================================== KASAN: null-ptr-deref in range 0x0000000000000000-0x0000000000000007...