272 matches found
CVE-2026-22186 Bio-Formats <= 8.3.0 XXE in Leica XLEF Metadata Parser
Bio-Formats versions up to and including 8.3.0 contain an XML External Entity XXE vulnerability in the Leica Microsystems metadata parsing component e.g., XLEF. The parser uses an insecurely configured DocumentBuilderFactory when processing Leica XML-based metadata files, allowing external entity...
EUVD-2011-3112
Malware in sbrugna...
EUVD-2005-1153
Malware in sbrugna...
EUVD-2008-5341
Malware in sbrugna...
EUVD-2009-2715
Malware in sbrugna...
EUVD-2024-23636
Malicious code in bioql PyPI...
PT-2025-35196
Name of the Vulnerable Software and Affected Versions: Oberon PSA Crypto library versions 1.0.0 through 1.5.0 Description: A padding oracle attack allows an attacker to recover plaintexts via timing measurements of AES-CBC PKCS7 decrypt operations. Recommendations: Update to version 1.5.1 or late...
CVE-2024-26367
Cross Site Scripting vulnerability in Evertz microsystems MViP-II Firmware 8.6.5, XPS-EDGE- Build 1467, evEDGE-EO- Build 0029, MMA10G- Build 0498, 570IPG-X19-10G Build 0691 allows a remote attacker to execute arbitrary code via a crafted payload to the login parameters...
RHSA-2015:1928 Red Hat Security Advisory: java-1.6.0-sun security update
Bulletin has no description...
CVE-2024-26367
Cross Site Scripting vulnerability in Evertz microsystems MViP-II Firmware 8.6.5, XPS-EDGE- Build 1467, evEDGE-EO- Build 0029, MMA10G- Build 0498, 570IPG-X19-10G Build 0691 allows a remote attacker to execute arbitrary code via a crafted payload to the login parameters...
CVE-2024-26367
Cross Site Scripting vulnerability in Evertz microsystems MViP-II Firmware 8.6.5, XPS-EDGE- Build 1467, evEDGE-EO- Build 0029, MMA10G- Build 0498, 570IPG-X19-10G Build 0691 allows a remote attacker to execute arbitrary code via a crafted payload to the login parameters...
CVE-2024-26367
CVE-2024-26367 involves a Cross Site Scripting vulnerability in Evertz Microsystems products, notably MViP-II Firmware 8.6.5 and related builds (XPS-EDGE-, evEDGE-EO- , MMA10G-, 570IPG-X19-10G) allowing a remote attacker to execute arbitrary code via a crafted payload to the login parameters. The...
SUSE CVE-2008-3103
Unspecified vulnerability in the Java Management Extensions JMX management agent in Sun Java Runtime Environment JRE in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlier, when local monitoring is enabled, allows remote attackers to "perform unauthorized operations" via...
ClearScada Vulnerabilities (Update A)
Overview Researchers at Digital Bond have identified multiple vulnerabilities in the Control Microsystems ClearSCADA application. The following vulnerabilities have been identified: Heap Overflow Vulnerability Cross-site Scripting Vulnerabilities Insecure Web Authentication. Affected Products The...
Juniper SRX Series Appliance Junos OS Sun/MS-RPC ALG Service Component Denial of Service Vulnerability
Juniper SRX series device is a series of firewall products from Juniper Networks.Junos OS is the operating system that runs on it.Sun/MS-RPC ALG services component is one of the Sun/MS-RPC ALG services components.Juniper SRX series device is a series of firewall products from Juniper Networks.Jun...
Debian Security Advisory DSA 3738-1 (tomcat7 - security update)
Multiple security vulnerabilities were discovered in the Tomcat servlet and JSP engine, as well as in its Debian-specific maintainer scripts. Those flaws allowed for privilege escalation, information disclosure, and remote code execution. As part of this update, several regressions stemming from...
Debian Security Advisory DSA 3669-1 (tomcat7 - security update)
Dawid Golunski of LegalHackers discovered that the Tomcat init script performed unsafe file handling, which could result in local privilege escalation. OpenVAS Vulnerability Test $Id: deb3669.nasl 6608 2017-07-07 12:05:05Z cfischer $ Auto-generated from advisory DSA 3669-1 using nvtgen 1.0 Script...
Sun Solaris 2.5.1/2.6/7.0/8/9 Wall Spoofed Message Origin Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/6509/info Solaris is the freely available UNIX Operating System variant distributed by Sun Microsystems. The wall client packaged with Solaris makes assumptions about a user's environment when the client is executed. The...
Sun AnswerBook2 1.x Unauthorized Administrative Script Access Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/5383/info Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris. AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access...
Solaris 7.0/8 IPCS Timezone Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2581/info Solaris is the variant of the UNIX Operating System distributed by Sun Microsystems. Solaris is designed as a scalable operating system for the Intel x86 and Sun Sparc platforms, and operates on machines varying...