541 matches found
PT-2025-7409 · Hitachi Vantara · Hitachi Vantara Pentaho Business Analytics Server
Name of the Vulnerable Software and Affected Versions: Hitachi Vantara Pentaho Business Analytics Server versions prior to 10.2.0.0 Hitachi Vantara Pentaho Business Analytics Server versions prior to 9.3.0.9 Hitachi Vantara Pentaho Business Analytics Server version 8.3.x Description: The web serv...
CVE-2024-24890
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files...
Important: Red Hat Security Advisory: squid:4 security update
An update for the squid:4 module is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this...
Important: squid:4 security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638 squid: Denial of Service processing ESI response content...
CentOS 7 : squid (RHSA-2024:1787)
The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1787 advisory. - Squid is a caching proxy for the Web. Due to an Improper Validation of Specified Index bug, Squid versions 3.3.0.1 through 5.9 and 6.0 prior to 6.4...
Moderate: Red Hat Security Advisory: squid security update
An update for squid is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
Gopherus
This tool, Gopherus, is designed to generate gopher links for exploiting Server-Side Request Forgery SSRF and gaining Remote Code Execution RCE in various servers. The tool supports multiple protocols and services, including MySQL, PostgreSQL, FastCGI, Memcached, Redis, Zabbix, and SMTP. The tool...
Oracle Linux 7 : squid (ELSA-2024-1787)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-1787 advisory. - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manag...
squid: NULL pointer dereference in the gopher protocol code
Squid is a caching proxy for the Web supporting HTTP, HTTPS, FTP, and more. Due to a NULL pointer dereference bug Squid is vulnerable to a Denial of Service attack against Squid's Gopher gateway. The gopher protocol is always available and enabled in Squid. This issue may lead to a remote denial ...
Important: Red Hat Security Advisory: squid security update
An update for squid is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...
RHEL 7 : squid (RHSA-2024:1787)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:1787 advisory. Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: deni...
CVE-2024-24890
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files...
CVE-2024-24890 Command injection in ioprobe of gala-gopher
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files...
CVE-2024-24890 Command injection in ioprobe of gala-gopher
Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in openEuler gala-gopher on Linux allows Command Injection. This vulnerability is associated with program files...
CVE-2024-24890
CVE-2024-24890 affects gala-gopher (openEuler) up to and including version 1.0.2, with an OS command injection in the ioprobe.c component of the eBPF-based probes framework. The vulnerability allows local command execution with low privileges and no user interaction, and has high impact on confid...
gala-gopher 安全漏洞
gala-gopher is a low overhead probing framework based on eBPF. A security vulnerability exists in gala-gopher version 1.0.2 and prior versions, which stems from an operating system command injection issue...
PT-2024-20646 · Linux +1 · Linux +2
Name of the Vulnerable Software and Affected Versions: openEuler gala-gopher versions through 1.0.2 Description: The issue is related to an Improper Neutralization of Special Elements used in an OS Command, also known as 'OS Command Injection', which allows Command Injection in openEuler...
ALSA-2024:1376 Important: squid security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: denial of service in HTTP header parser CVE-2024-25617 squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 squid: denial of service in HTTP request...
ALSA-2024:1375 Important: squid:4 security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: denial of service in HTTP header parser CVE-2024-25617 squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 squid: denial of service in HTTP request...
Important: squid security update
Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects. Security Fixes: squid: denial of service in HTTP header parser CVE-2024-25617 squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 squid: denial of service in HTTP request...