16 matches found
EUVD-2026-36785
A Server-Side Request Forgery SSRF in the automatic short URL title resolution component of shlink v5.0.1 allows attackers to scan internal resources via supplying a crafted longUrl...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989771)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989771 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in...
EUVD-2022-54708
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in lpfccompleteunsoliocb to match the rctl of a received frame, the frame is dropped and resources are leaked. Fix by returning resources when discardin...
SUSE CVE-2022-49521
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in lpfccompleteunsoliocb to match the rctl of a received frame, the frame is dropped and resources are leaked. Fix by returning resources when discardin...
CVE-2022-49521
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in lpfccompleteunsoliocb to match the rctl of a received frame, the frame is dropped and resources are leaked. Fix by returning resources when discardin...
CVE-2022-49521 scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp()
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in lpfccompleteunsoliocb to match the rctl of a received frame, the frame is dropped and resources are leaked. Fix by returning resources when discardin...
CVE-2022-49521
In CVE-2022-49521, the Linux kernel vulnerability affects the lpfc SCSI path: if lpfc_complete_unsol_iocb() cannot match the rctl of a received frame, the frame is dropped and resources are leaked. The fix returns resources when discarding an unhandled frame type and updates lpfc_fc_frame_check()...
CVE-2022-49521
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfcsli4sendseqtoulp If no handler is found in lpfccompleteunsoliocb to match the rctl of a received frame, the frame is dropped and resources are leaked. Fix by returning resources when discardin...
UERANSIM Security Vulnerabilities
UERANSIM is an open source advanced 5G UE and RAN gNodeB simulator from the individual developer Ali Güngör in Turkey. A security vulnerability exists in UERANSIM versions prior to 3.2.6, which stems from allowing out-of-bounds reads when sending RLS packets to gNodeB with incorrectly formatted P...
CVE-2023-49140
Denial-of-service DoS vulnerability exists in commplex-link service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service DoS condition may occur...
CVE-2023-49140
CVE-2023-49140 affects JTEKT ELECTRONICS HMI GC-A2 series as described in multiple sources. The vulnerability is a denial-of-service (DoS) in the commplex-link service. A remote unauthenticated attacker can trigger the DoS by sending specially crafted packets to specific ports, potentially impact...
CVE-2023-49140
Denial-of-service DoS vulnerability exists in commplex-link service of HMI GC-A2 series. If a remote unauthenticated attacker sends a specially crafted packets to specific ports, a denial-of-service DoS condition may occur...
JTEKT ELECTRONICS HMI GC-A2 series Security Breach
JTEKT ELECTRONICS HMI GC-A2 series is a series of human machine interfaces from JTEKT. A security vulnerability exists in the HMI GC-A2 series due to a Denial of Service DOS vulnerability in the commplex-link service. Affected Products and Versions: GC-A22W-CW All Versions, GC-A24W-CW All Version...
Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series
Overview HMI GC-A2 series provided by JTEKT ELECTRONICS CORPORATION contains multiple denial-of-service DoS vulnerabilities listed below. Denial-of-service DoS vulnerability in FTP service CWE-400 - CVE-2023-41963 Denial-of-service DoS vulnerability in commplex-link service CWE-400 - CVE-2023-491...
JVN#34145838: Multiple denial-of-service (DoS) vulnerabilities in JTEKT ELECTRONICS HMI GC-A2 series
HMI GC-A2 series provided by JTEKT ELECTRONICS CORPORATION contains multiple denial-of-service DoS vulnerabilities listed below. Denial-of-service DoS vulnerability in FTP service CWE-400 - CVE-2023-41963 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H|...
SQL Injection
Overview Affected versions of this package are vulnerable to SQL Injection via the title field. An attacker can execute arbitrary SQL commands by injecting crafted payloads. Remediation Upgrade com.liferay:com.liferay.friendly.url.service to version 4.0.3 or higher. References - LifeRay Advisory ...