Linux Distros Unpatched Vulnerability : CVE-2021-47617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: PCI: pciehp: Fix infinite loop in IRQ handler upon power fault The Power Fault Detected bit ...

Linux Distros Unpatched Vulnerability : CVE-2023-52589

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: rkisp1: Fix IRQ disable race issue In rkisp1ispstop and rkisp1csidisable the driver masks the interrupts and then apparently assumes that the interrupt...

mozilla -- memory corruption

[email protected] reports: CVE-2025-1938: Memory safety bugs present in Firefox 135, Thunderbird 135, Firefox ESR 128.7, and Thunderbird 128.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrar...

CVE-2025-1846

A vulnerability was found in zj1983 zz up to 2024-8. It has been declared as problematic. This vulnerability affects the function deleteLocalFile of the file src/main/java/com/futvan/z/system/zfile/ZfileAction.java of the component File Handler. The manipulation of the argument zids leads to deni...

PT-2025-1260 · Tenda · Tenda Ac10 +2

Name of the Vulnerable Software and Affected Versions: Tenda AC8 versions 16.03.10.20 Tenda AC10 versions 16.03.10.20 Tenda AC18 versions 16.03.10.20 Description: A critical issue has been found in the HTTP Request Handler component of the affected devices, specifically in the /goform/telnet file...

CVE-2024-13188 MicroWorld eScan Antivirus Installation var default permission

A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been rated as critical. Affected by this issue is some unknown functionality of the file /opt/MicroWorld/var/ of the component Installation Handler. The manipulation leads to incorrect default permissions. The attack...

PT-2025-16200 · Assimp +2 · Assimp +2

Name of the Vulnerable Software and Affected Versions: Open Asset Import Library Assimp versions up to 5.4.3 Description: A critical issue has been found in the Open Asset Import Library Assimp, affecting the function aiString::Set in the library include/assimp/types.h of the component File...

PT-2024-25664 · O Ran · O-Ran Ric I-Release E2Mgr

Name of the Vulnerable Software and Affected Versions: O-RAN RIC I-Release e2mgr affected versions not specified Description: The issue is related to a lack of array size checks in the RicServiceUpdateHandler of the O-RAN RIC I-Release e2mgr. Recommendations: At the moment, there is no informatio...

CVE-2024-2364

A vulnerability classified as problematic has been found in Musicshelf 1.0/1.1 on Android. Affected is an unknown function of the file androidmanifest.xml of the component Backup Handler. The manipulation leads to exposure of backup file to an unauthorized control sphere. It is possible to launch...

CVE-2023-3579

A vulnerability, which was classified as problematic, has been found in HadSky 7.11.8. Affected by this issue is some unknown functionality of the component User Handler. The manipulation leads to cross-site request forgery. The attack may be launched remotely. The exploit has been disclosed to t...

SUSE CVE-2008-3652

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" phase 1 handle when it has been initiated remotely, which allows remote attackers to cause a denial of service resource consumption...

CVE-2022-42287

NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure and data tampering...

PT-2022-26701 · Fastcms · Fastcms

Name of the Vulnerable Software and Affected Versions: FastCMS affected versions not specified Description: A critical issue affects the Template Handler component, specifically the /template/edit file, leading to injection when manipulated. This issue can be initiated remotely. Recommendations: ...

OPENSUSE-SU-2022:10191-1 Security update for exim

This update for exim fixes the following issues: - CVE-2022-3559: Fixed use after free in processing of the component Regex Handler boo1204427, Bug 2915...

Asken Diet 输入验证错误漏洞

Asken Diet is a health and diet calorie counting app from Asken Japan. Gets the user's weight goals and health data and creates programs to help guide the user to become healthier. A security vulnerability exists in Asken Diet versions v.3.0.0 through v.4.2.x that stems from incorrect authorizati...

Debian DSA-606-1 : nfs-utils - wrong signal handler

SGI has discovered that rpc.statd from the nfs-utils package, the Network Status Monitor, did not ignore the 'SIGPIPE'. Hence, a client prematurely terminating the TCP connection could also terminate the server process. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...

[SECURITY] [DSA 518-1] New kdelibs packages fix URI handler vulnerabilities

-------------------------------------------------------------------------- Debian Security Advisory DSA 518-1 [email protected] http://www.debian.org/security/ Martin Schulze June 14th, 2004 http://www.debian.org/security/faq -...

Musicqueue 1.2 - SIGSEGV Signal Handler Insecure File Creation

Musicqueue 1.2 - SIGSEGV Signal Handler Insecure File Creation // source: https://www.securityfocus.com/bid/8899/info A vulnerability has been reported for Musicqueue. The problem specifically occurs within a signal handling procedure used invoked when a segmentation violation occurs. The procedu...