ADB/Pirelli ADSL2/2+ Wireless Router P.DGA4001N - Information Disclosure

ADB formerly Pirelli Broadband Solutions P.DGA4001N router with firmware PDGTEFSP4.06L.6 does not properly restrict access to the web interface, which allows remote attackers to obtain sensitive information or cause a denial of service device restart as demonstrated by a direct request to 1...

EUVD-2014-2909

Malware in sbrugna...

EUVD-2014-1573

Malware in sbrugna...

EUVD-2016-4778

Malware in sbrugna...

EUVD-2024-25873

Malicious code in bioql PyPI...

FreeBSD : SQLite -- integer overflow in key info allocation (f51077bd-6dd7-11f0-9d62-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f51077bd-6dd7-11f0-9d62-b42e991fc52e advisory. [email protected] reports: An integer overflow in the sqlite3KeyInfoFromExprList function in...

The vulnerability of the OpenConfig.Set command in the Arist EOS operating system allows a attacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the OpenConfig.Set command in the Arist EOS operating system is related to access control errors. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...

CVE-2025-49181

CVE-2025-49181 involves missing authorization of an API endpoint, allowing unauthorized GET requests to disclose information and POST requests to modify the log root path and the service TCP ports, potentially enabling information disclosure and Denial of Service. The issue is associated with SIC...

CyberData 011209 SIP Emergency Intercom

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, cause a denial-of-service condition, or achieve code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

CVE-2013-4839

Unspecified vulnerability in Virtual User Generator in HP LoadRunner before 11.52 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka ZDI-CAN-1851...

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 : Rack vulnerabilities (USN-7507-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7507-1 advisory. It was discovered that Rack incorrectly handled deleted rack sessions. An...

Linux Distros Unpatched Vulnerability : CVE-2015-2783

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext/phar/phar.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to obtain sensitive information from process memory or...

USN-7266-1: digiKam vulnerabilities

Zinuo Han and Ao Wang discovered that the Android DNG SDK, vendored in digiKam, did not correctly parse certain files. An attacker could possibly use this issue to execute arbitrary code. This issue only affected Ubuntu 16.04 LTS, Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. CVE-2017-0691 It was...

CVE-2020-6058

An exploitable out-of-bounds read vulnerability exists in the way MiniSNMPD version 1.4 parses incoming SNMP packets. A specially crafted SNMP request can trigger an out-of-bounds memory read, which can result in the disclosure of sensitive information and denial of service. To trigger this...

CVE-2023-47992

An integer overflow vulnerability in FreeImageIO.cpp::MemoryReadProc in FreeImage 3.18.0 allows attackers to obtain sensitive information, cause a denial-of-service attacks and/or run arbitrary code...

CVE-2023-47994

An integer overflow vulnerability in LoadPixelDataRLE4 function in PluginBMP.cpp in Freeimage 3.18.0 allows attackers to obtain sensitive information, cause a denial of service and/or run arbitrary code...

openssl: X.400 address type confusion in X.509 GeneralName

A type confusion vulnerability was found in OpenSSL when OpenSSL X.400 addresses processing inside an X.509 GeneralName. When CRL checking is enabled for example, the application sets the X509VFLAGCRLCHECK flag, this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call,...

Privilege Escalation

intel-microcode is vulnerable to privilege escalation. Allows an local authenticated malicious user to gain elevated privileges on the system, caused by improper conditions check. An attacker could exploit this vulnerability to escalate privileges, obtain confidential information or cause a denia...

Google Chrome Security Update (stable-channel-update-for-desktop-2020-07) - Windows

Google Chrome is prone to multiple vulnerabilities. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

OPENSUSE-SU-2019:2483-1 Security update for libssh2_org

This update for libssh2org fixes the following issue: - CVE-2019-17498: Fixed an integer overflow in a bounds check that might have led to the disclosure of sensitive information or a denial of service bsc1154862. This update was imported from the SUSE:SLE-15:Update update project...