Odin Secure FTP Expert 安全漏洞

Odin Secure FTP Expert is an FTP client software developed by Odin Secure Corporation. Version 7.6.3 of Odin Secure FTP Expert contains a security vulnerability, which stems from improper handling of site information fields, potentially leading to application crashes...

EUVD-2017-5407

Malware in sbrugna...

EUVD-2019-1532

Malware in sbrugna...

EUVD-2025-15930

Malicious code in bioql PyPI...

CVE-2017-13892

An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may lead to unexpected...

PT-2025-22564 · Red Hat +1 · Keycloak +1

Name of the Vulnerable Software and Affected Versions: zot versions prior to 2.1.3 Description: The issue concerns the exposure of the Keycloak client secret in the container stdout logs at startup when using Keycloak as an OIDC provider. This occurs due to a flaw in handling sensitive informatio...

USN-7108-1 python-asyncssh vulnerabilities

Fabian Bäumer, Marcus Brinkmann, and Jörg Schwenk discovered that AsyncSSH did not properly handle the extension info message. An attacker able to intercept communications could possibly use this issue to downgrade the algorithm used for client authentication. CVE-2023-46445 Fabian Bäumer, Marcus...

Peloton accused of providing customer chat data to train AI

It seems that Peloton may have been providing more training than just for its customers, as its set to face court in California accused of using user chat data to train AI. Peloton Interactive, Inc. is a US-based exercise equipment and media company, known for its stationary bicycles, treadmills,...

CVE-2022-4734

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository usememos/memos prior to 0.9.1...

PT-2024-11519 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue arises when dumping core and saving process information, as proc getargv might return an sbuf with an sbuf len of 0 or -1, which is not proper...

CVE-2022-1893

Improper Removal of Sensitive Information Before Storage or Transfer in GitHub repository polonel/trudesk prior to 1.2.3...

CVE-2017-13892

An issue existed in the handling of Contact sharing. This issue was addressed with improved handling of user information. This issue is fixed in macOS High Sierra 10.13.2, Security Update 2017-002 Sierra, and Security Update 2017-005 El Capitan. Sharing contact information may lead to unexpected...

[SECURITY] Fedora 33 Update: salt-3003.3-1.fc33

Salt is a distributed remote execution system used to execute commands and query data. It was developed in order to bring the best solutions found in the world of remote execution together and make them better, faster and more malleable. Salt accomplishes this via its ability to handle larger loa...

[SECURITY] Fedora 34 Update: salt-3003.3-1.fc34

Salt is a distributed remote execution system used to execute commands and query data. It was developed in order to bring the best solutions found in the world of remote execution together and make them better, faster and more malleable. Salt accomplishes this via its ability to handle larger loa...

PT-2021-7873 · Sap · Sap Netweaver Abap Server +1

Name of the Vulnerable Software and Affected Versions: SAP NetWeaver ABAP Server and ABAP Platform versions 700, 701, 702, 731, 740, 750, 751, 752, 753, 754, 755, 804 Description: The issue is related to improper authentication due to the inconsistent and undistinguished format of internal and...

Information disclosure

Due to how Wire handles type information in its serialization format, malicious payloads can be passed to a deserializer. e.g. using a surrogate on the sender end, an attacker can pass information about a different type for the receiving end. And by doing so allowing the serializer to create any...

CVE-2020-9212

CVE-2020-9212 describes an information-disclosure vulnerability in Huawei’s Huawei USG9500 firewall. Multiple connected sources confirm that the issue arises from improper handling of information when a user logs in, allowing an attacker to perform operations that can leak sensitive information. ...

[SECURITY] Fedora 34 Update: salt-3002.5-1.fc34

Salt is a distributed remote execution system used to execute commands and query data. It was developed in order to bring the best solutions found in the world of remote execution together and make them better, faster and more malleable. Salt accomplishes this via its ability to handle larger loa...

[SECURITY] Fedora 33 Update: salt-3002.1-1.fc33

Salt is a distributed remote execution system used to execute commands and query data. It was developed in order to bring the best solutions found in the world of remote execution together and make them better, faster and more malleable. Salt accomplishes this via its ability to handle larger loa...

Google Chrome WebKit suffers from an unspecified vulnerability (CNVD-2019-42735)

Google Chrome is a web browser from Google, Inc. and WebKit is the web browser engine used in it. A security vulnerability exists in WebKit in Google Chrome, which stems from the program not properly handling timer information. No details of the vulnerability are available at this time...