10 matches found
EUVD-2025-205373
Pexip Infinity before 39.0 has Missing Authentication for a Critical Function in a product-internal API, allowing an attacker who already has access to execute code on one node within a Pexip Infinity installation to impact the operation of other nodes within the installation...
CVE-2025-66377
Pexip Infinity before 39.0 has Missing Authentication for a Critical Function in a product-internal API, allowing an attacker who already has access to execute code on one node within a Pexip Infinity installation to impact the operation of other nodes within the installation...
EUVD-2018-0613
Malware in sbrugna...
OpenNMS Horizon 安全漏洞
OpenNMS Horizon is an open source solution from OpenNMS, Inc. that helps you visualize and monitor everything on your local and remote networks. A security vulnerability exists in OpenNMS Horizon version 33.0.8 and versions prior to 33.1.6 that stems from a stored cross-site scripting vulnerabili...
Data exposure via ZeroMQ on multi-node vLLM deployment
Impact In a multi-node vLLM deployment, vLLM uses ZeroMQ for some multi-node communication purposes. The primary vLLM host opens an XPUB ZeroMQ socket and binds it to ALL interfaces. While the socket is always opened for a multi-node deployment, it is only used when doing tensor parallelism acros...
PT-2024-23557 · Ros2 · Ros2
Name of the Vulnerable Software and Affected Versions: ROS2 Iron Irwini versions 2 Description: The issue allows remote attackers to gain control of multiple ROS2 nodes, potentially compromising system integrity, executing arbitrary commands, and disclosing sensitive information. Recommendations:...
GHSA-3FQM-FRHG-7C85 Graylog user session is still usable after logout
Summary In a multi-node Graylog cluster, after a user has explicitly logged out, a user session may still be used for API requests until it has reached its original expiry time. Details Each node maintains an in-memory cache of user sessions. Upon a cache-miss, the session is loaded from the...
CVE-2022-42322
Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...
Intel In-Band Manageability 授权问题漏洞
Intel In-Band Manageability is a software from Intel Corporation USA. Helps manage individual devices and uses extensions to allow control of multiple nodes through Intel Architecture hosts. Intel In-Band Manageability prior to version 2.13.0 has an authorization issue vulnerability that stems fr...
CVE-2008-1594
The kernel in IBM AIX 5.2 and 5.3 does not properly handle resizing JFS2 filesystems on concurrent volume groups spread across multiple nodes, which allows local users of one node to cause a denial of service remote node crash by using chfs or lreducelv to reduce a filesystem's size...