318 matches found
CVE-2025-4341
D-Link DIR-880L up to firmware 104WWb01 contains a command-injection vulnerability in the Request Header Handler’s /htdocs/ssdpcgi, specifically the sub_16570 function. Input arguments HTTP_ST/REMOTE_ADDR/REMOTE_PORT/SERVER_ID can be manipulated to achieve remote code execution; the exploit has b...
CVE-2025-3735
Vulnerability in Drupal Panelizer obsolete.This issue affects Panelizer obsolete:...
CVE-2025-3735 Panelizer (obsolete) - Critical - Unsupported - SA-CONTRIB-2025-036
Vulnerability in Drupal Panelizer obsolete.This issue affects Panelizer obsolete:...
CVE-2025-27508
Emissary (CVE-2025-27508) uses a ChecksumCalculator that defaults to weak cryptographic algorithms (SHA-1, CRC32, SSDEEP). The issue may undermine cryptographic guarantees in contexts requiring strong integrity, with potential collision risks or tampering awareness. The problem is documented acro...
Oracle Linux 9 : emacs (ELSA-2025-1915)
The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-1915 advisory. 1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025 Tenable has extracted the...
SUSE-SU-2025:0756-1 Security update for python
This update for python fixes the following issues: - Reference to no longer used 'bracketedhost' variable in the fix for CVE-2025-0938 bsc1236705, bsc1223694...
emacs security update
1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a dereference to an obsolete list iterator after a loop body in f2fs...
curl bug fix update
An update is available for curl. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The curl packages provide the libcurl library and the curl utility for downloadi...
CVE-2024-0131
NVIDIA GPU kernel driver for Windows and Linux contains a vulnerability where a potential user-mode attacker could read a buffer with an incorrect length. A successful exploit of this vulnerability might lead to denial of service...
PT-2025-1182 · Sap · Sap Netweaver Application Server Abap
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver Application Server ABAP affected versions not specified Description: The issue is related to an obsolete functionality in SAP NetWeaver Application Server ABAP that did not perform necessary authorization checks. This allows an...
CVE-2024-11862
CVE-2024-11862 affects Devolutions.XTS.NET (versions 2024.11.19 and earlier). The issue is a non-constant-time cryptographic operation in the Galois Field multiplications used by XTS mode, which can enable timing attacks that render half of the encryption key obsolete and downgrade security towar...
CVE-2024-11862
Non constant time cryptographic operation in Devolutions.XTS.NET 2024.11.19 and earlier allows an attacker to render half of the encryption key obsolete via a timing attacks...
kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...
kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...
kernel: hwmon: (w83793) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83793 module where NULL pointer dereference caused by an obsolete structure field lm75. During specific device read operations, if certain values are read from the device, the driver could attempt to access a NULL pointer,...
kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...
kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...
kernel: hwmon: (w83792d) Fix NULL pointer dereference by removing unnecessary structure field
A vulnerability was found in the Linux kernel's hwmon driver for the w83792d module where a NULL pointer dereference was caused by the lm75 obsolete structure field. During specific device read operations, if certain conditions are met, the driver may attempt to access a NULL pointer because this...
CVE-2024-8452
Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially...