48 matches found
CVE-2025-52641
Technical details are not publicly available in the provided documents. Monitor for updates.
PT-2026-21019
Name of the Vulnerable Software and Affected Versions HCL Connections affected versions not specified Description HCL Connections is susceptible to information disclosure. A specific user navigation scenario may allow a user to obtain limited information due to the return of internal metadata in...
CVE-2026-23214
In the Linux kernel, the following vulnerability has been resolved: btrfs: reject new transactions if the fs is fully read-only BUG There is a bug report where a heavily fuzzed fs is mounted with all rescue mount options, which leads to the following warnings during unmount: BTRFS: Transaction...
CVE-2025-71163
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix device leaks on compat bind and unbind Make sure to drop the reference taken when looking up the idxd device as part of the compat bind and unbind sysfs interface...
CVE-2024-41975
An unauthenticated remote attacker can gain limited information of the PLC network but the user management of the PLCs prevents the actual access to the PLCs...
EUVD-2021-27034
Malware in sbrugna...
EUVD-2025-29722
Malicious code in bioql PyPI...
EUVD-2024-54204
Malicious code in bioql PyPI...
BIT-JENKINS-2025-59475
Jenkins 2.527 and earlier, LTS 2.516.2 and earlier does not perform a permission check for the authenticated user profile dropdown menu, allowing attackers without Overall/Read permission to obtain limited information about the Jenkins configuration by listing available options in this menu e.g.,...
CVE-2025-59475
Jenkins 2.527 and earlier, LTS 2.516.2 and earlier does not perform a permission check for the authenticated user profile dropdown menu, allowing attackers without Overall/Read permission to obtain limited information about the Jenkins configuration by listing available options in this menu e.g.,...
CGA-3QRX-3HMR-9QFH
Bulletin has no description...
DEBIAN-CVE-2024-0149
NVIDIA GPU Display Driver for Linux contains a vulnerability which could allow an attacker unauthorized access to files. A successful exploit of this vulnerability might lead to limited information disclosure...
CVE-2024-10527
CVE-2024-10527 affects the Spacer WordPress plugin. The vulnerability results from a missing capability check in the motech_spacer_callback() function across all versions up to and including 3.0.7. This allows authenticated users with Subscriber-level access and above to view limited settings inf...
EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2024-2446)
According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw...
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-2423)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-2373)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CGA-G33M-R5QG-FWRW
Bulletin has no description...
CGA-HHPF-G3CH-F2JV
Bulletin has no description...
RHEL 9 : libtiff (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libtiff: heap-based buffer overflow in TIFFmemcpy in tifunix.c CVE-2022-1056 - libtiff: out-of-bounds rea...
BIT-MATTERMOST-2023-46701
Mattermost fails to perform authorization checks in the /plugins/playbooks/api/v0/runs/add-to-timeline-dialog endpoint of the Playbooks plugin allowing an attacker to get limited information about a post if they know the post ID...