CVE-2023-3866

CVE-2023-3866 : In the Linux kernel ksmbd, the compound-request handling failed to validate session and tree identifiers if the first operation is not an SMB2 ECHO. This could allow a NULL dereference when a subsequent operation accesses work->sess or work->tcon, leading to a local impact. ...

CVE-2021-1410

CVE-2021-1410 affects Cisco Webex Meetings. The vulnerability stems from insufficient authorization enforcement for requests to update distribution lists, allowing an authenticated, remote attacker to modify a distribution list belonging to another user within the same organization. The issue is ...

CVE-2021-28854

VICIdial Web Client is reported vulnerable to information disclosure (CVE-2021-28854). The Nuclei template describes that sensitive files are accessible from the client side, including mysqli logs, auth logs, debug information, login attempts (successful and unsuccessful) with IPs, User-Agents, a...

CVE-2021-0796

Technical details for CVE-2021-0796 are not publicly available in the provided documents. Monitor for updates. The entry appears reserved; no information on affected products, root cause, impact, or remediation is present in the supplied material.

CVE-2022-45075

CVE-2022-45075 corresponds to a Broken Access Control vulnerability in the WordPress Activity Reactions For Buddypress plugin, affected versions

CVE-2011-0068

CVE-2011-0068: The connected documentation details memory safety issues in Firefox’s WebGL/WebGLES components that could be exploited to run arbitrary code. Mozilla’s MFSA 2011-17 describes two crashes in WebGL/WebGLES that could be triggered to execute code, fixed in Firefox 4.0.1. OpenSUSE advi...

CVE-2018-147189

Technical details for CVE-2018-147189 are not publicly available in the provided documents; no affected products, vulnerability type, or fixes are described. Monitor for updates.