CVE-2025-55232 Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability

...

CVE-2025-55232

CVE-2025-55232 concerns a Deserialization of untrusted data in Microsoft High Performance Compute Pack (HPC) that allows remote code execution over a network. The CVSSv3.1 base score is 9.8 (Network, High impact on confidentiality, integrity, and availability). Affected product scope centers on M...

Security Bulletin:IBM WebSphere Application Server Liberty shipped with IBM OpenPages is vulnerable to a denial of service due to Netty (CVE-2025-25193)

Summary IBM WebSphere Application Server Liberty is shipped as a supporting program of IBM OpenPages. Information about a denial of service due to Netty vulnerability affecting IBM WebSphere Application Server Liberty has been published in a security bulletin. These products have addressed the...

KB5065226 - Description of the security update for SQL Server 2016 SP3 GDR: September 9, 2025

KB5065226 - Description of the security update for SQL Server 2016 SP3 GDR: September 9, 2025 Summary Improvements and fixes included in this update How to obtain and install the update More information File information Information about protection and security Summary This security update contai...

Description of the security update for SharePoint Server 2016 Language Pack: September 09, 2025 (KB5002777)

Description of the security update for SharePoint Server 2016 Language Pack: September 09, 2025 KB5002777 Summary Important: ​​​​​​​Prior to installing this Cumulative Update, if you're running the 2013 Style Workflows, you must install the August 2025 patch for SharePoint Workflow manager to you...

Description of the security update for SharePoint Server 2016: September 09, 2025 (KB5002778)

Description of the security update for SharePoint Server 2016: September 09, 2025 KB5002778 Summary Important: ​​​​​​​Prior to installing this Cumulative Update, if you're running the 2013 Style Workflows, you must install the August 2025 patch for SharePoint Workflow manager to your Farm. If...

Description of the security update for SharePoint Server 2019 Language Pack: September 09, 2025 (KB5002774)

Description of the security update for SharePoint Server 2019 Language Pack: September 09, 2025 KB5002774 Summary Important: ​​​​​​​Prior to installing this Cumulative Update, if you're running the 2013 Style Workflows, you must install the August 2025 patch for SharePoint Workflow manager to you...

PT-2025-36890

Name of the Vulnerable Software and Affected Versions: Microsoft High Performance Compute Pack HPC affected versions not specified Description: Deserialization of untrusted data in Microsoft High Performance Compute Pack HPC allows an unauthorized attacker to execute code over a network...

Microsoft SQL Server 竞争条件问题漏洞

Microsoft SQL Server is a large commercial database system from Microsoft Corporation that is used under Microsoft Windows. A competitive condition issue vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could gain access to sensitive information. The followi...

Wago CODESYS V2 Runtime System Heap-based Buffer Overflow (CVE-2021-30186)

CODESYS V2 runtime system SP before 2.4.7.55 has a Heap-based Buffer Overflow. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503313;...

Security Bulletin: Multiple Vulnerabilities discovered in Cloudera Data Platform Private Cloud Base with IBM 7.1.7 SP2

Summary Multiple Vulnerabilities discovered in Cloudera Data Platform Private Cloud Base with IBM 7.1.7 SP2 Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions ---|--- Cloudera Data Platform Priva...

Linux Distros Unpatched Vulnerability : CVE-2024-25982

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The link to update all installed language packs did not include the necessary token to prevent a CSRF risk. CVE-2024-25982 Note that Nessus relies on the presen...

Allocation of Resources Without Limits or Throttling

Overview pocketmine/pocketmine-mp is a highly customisable, open source server software for Minecraft: Bedrock Edition written in PHP Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the STATUSSENDPACKS handling of...

GHSA-FQQV-56H5-F57G PocketMine-MP `ResourcePackDataInfoPacket` amplification vulnerability due to lack of resource pack sequence status checking

Summary A denial-of-service / out-of-memory vulnerability exists in the STATUSSENDPACKS handling of ResourcePackClientResponsePacket. PocketMine-MP processes the packIds array without verifying that all entries are unique. A malicious non-standard Bedrock client can send multiple duplicate valid...

PocketMine-MP `ResourcePackDataInfoPacket` amplification vulnerability due to lack of resource pack sequence status checking

Summary A denial-of-service / out-of-memory vulnerability exists in the STATUSSENDPACKS handling of ResourcePackClientResponsePacket. PocketMine-MP processes the packIds array without verifying that all entries are unique. A malicious non-standard Bedrock client can send multiple duplicate valid...

Linux Distros Unpatched Vulnerability : CVE-2021-44528

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A open redirect vulnerability exists in Action Pack = 6.0.0 that could allow an attacker to craft a X-Forwarded-Host headers in combination with certain allowed...

SUSE SLES15 Security Update : kernel (SUSE-SU-2025:03011-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03011-1 advisory. The SUSE Linux Enterprise 15 SP7 Azure kernel was updated to receive various security bugfixes. The following security bugs were...

CVE-2025-49407

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in favethemes Houzez allows Reflected XSS. This issue affects Houzez: from n/a through 4.1.1...

Security update for firebird

This update for firebird fixes the following issues: CVE-2025-54989: Fixed NULL pointer dereference in XDR message parsing leading to denial-of-service ZDI-CAN-26486, bsc1248143 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

Linux Distros Unpatched Vulnerability : CVE-2022-22577

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An XSS Vulnerability in Action Pack = 5.2.0 and = 5.2.0 and 5.2.0 that could allow an attacker to bypass CSP for non HTML like responses. CVE-2022-22577 Note th...