6 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-13676
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fast-uri versions 2.3.1 through 3.1.2 and 4.0.0 fail to canonicalize Unicode IDN hostnames for HTTP- family URLs. The IDN conversion path calls a helper that do...
EUVD-2026-39614
A flaw in Node.js TLS hostname handling can cause Embedded-nul hostnames can lead to silent authority rebinding due to c-string truncation in resolver bindings. This vulnerability affects all supported release lines: Node.js 22, Node.js 24, and Node.js 26...
EulerOS 2.0 SP13 : util-linux (EulerOS-SA-2026-2360)
According to the versions of the util-linux packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : util-linux is a random collection of Linux utilities. Prior to version 2.41.4, a TOCTOU Time-of-Check- Time-of-Use vulnerability has been...
ROS-20250822-22
A vulnerability in the PHP programming language interpreter is related to insufficient null byte checking in the implementation of the fsockopen function when handling hostnames. Exploitation of the vulnerability could allow an attacker acting remotely to perform SSRF attacks A vulnerability in t...
The vulnerability of the Microprogrammed Software for IP Telephones Mitel 6869i, related to the lack of measures taken for data cleaning at the management level, allows a perpetrator to execute arbitrary commands.
The vulnerability of the Microprogrammed Software for Mitel 6869i IP phones lies in the lack of measures taken at the management level during the processing of the hostname parameter on the provis.html page. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands by...
PT-2021-7984 · Google · Android
Name of the Vulnerable Software and Affected Versions: Android versions 8.1 through 11 Description: The issue is related to improperly used crypto in the verifyHostName function of OkHostnameVerifier.java, which could lead to accepting a certificate for the wrong domain. This might result in remo...