Linux Distros Unpatched Vulnerability : CVE-2023-37457

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Asterisk is an open source private branch exchange and telephony toolkit. In Asterisk versions 18.20.0 and prior, 20.5.0 and prior, and 21.0.0; as well as...

Linux Distros Unpatched Vulnerability : CVE-2025-46336

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Rack::Session is a session management implementation for Rack. In versions starting from 2.0.0 to before 2.1.1, when using the Rack::Session::Pool middleware, a...

Linux Distros Unpatched Vulnerability : CVE-2022-21722

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN,...

PT-2025-33555

Name of the Vulnerable Software and Affected Versions: linux affected versions not specified Description: The Linux kernel contains a flaw within its Wi-Fi functionality that could allow for attacks in mesh networks. This issue relates to A-MSDU Aggregated MAC Service Data Unit frames and can be...

CVE-2025-8836 JasPer JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion

A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...

Linux Distros Unpatched Vulnerability : CVE-2025-30348

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - encodeText in QDom in Qt before 6.8.0 has a complex algorithm involving XML string copy and inline replacement of parts of a string with relocation of later dat...

Linux Distros Unpatched Vulnerability : CVE-2021-47524

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated...

Linux Distros Unpatched Vulnerability : CVE-2025-52890

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incus is a system container and virtual machine manager. When using an ACL on a device connected to a bridge, Incus versions 6.12 and 6.13generates nftables rul...

PT-2024-20484 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: The input does not specify the name of the vulnerable software or the affected versions. Description: A patch has been released for a previously existing issue. Recommendations: At the moment, there is no information about a newer version tha...

SUSE CVE-2024-32002

Git is a revision control system. Prior to versions 2.45.1, 2.44.1, 2.43.4, 2.42.2, 2.41.1, 2.40.2, and 2.39.4, repositories with submodules can be crafted in a way that exploits a bug in Git whereby it can be fooled into writing files not into the submodule's worktree but into a .git/ directory...

DEBIAN-CVE-2024-23342

The ecdsa PyPI package is a pure Python implementation of ECC Elliptic Curve Cryptography with support for ECDSA Elliptic Curve Digital Signature Algorithm, EdDSA Edwards-curve Digital Signature Algorithm and ECDH Elliptic Curve Diffie-Hellman. Versions 0.18.0 and prior are vulnerable to the...

PT-2023-19247 · Solarwinds · Solarwinds Serv-U

Name of the Vulnerable Software and Affected Versions: SolarWinds Serv-U affected versions not specified Description: The issue concerns SolarWinds Serv-U submitting an HTTP request when changing or updating attributes for File Share or File request, where part of the URL of the request discloses...

PT-2023-14715 · Componentspace · Componentspace.Saml2

Name of the Vulnerable Software and Affected Versions: ComponentSpace.Saml2 version 4.4.0 Description: The issue concerns missing SSL certificate validation at the application layer. According to the vendor, this is not considered a vulnerability because certificates are exchanged between trusted...

UBUNTU-CVE-2022-39229

Grafana is an open source data visualization platform for metrics, logs, and traces. Versions prior to 9.1.8 and 8.5.14 allow one user to block another user's login attempt by registering someone else'e email address as a username. A Grafana user’s username and email address are unique fields, th...

Plugin signature bypass

Grafana is an open source observability and data visualization platform. Versions prior to 9.1.8 and 8.5.14 are vulnerable to a bypass in the plugin signature verification. An attacker can convince a server admin to download and successfully run a malicious plugin even though unsigned plugins are...

CVE-2022-29199

TensorFlow is an open source platform for machine learning. Prior to versions 2.9.0, 2.8.1, 2.7.2, and 2.6.4, the implementation of tf.rawops.LoadAndRemapMatrix does not fully validate the input arguments. This results in a CHECK-failure which can be used to trigger a denial of service attack. Th...

PT-1999-1006 · Dtaction · Dtaction

Name of the Vulnerable Software and Affected Versions: dtaction affected versions not specified Description: A buffer overflow issue in the dtaction command allows for root access. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...