CVE-2026-48691

FastNetMon Community Edition through 1.2.9 has an integer overflow in the BGP AS_PATH encoder (src/bgp_protocol.hpp, IPv4UnicastAnnounce::get_attributes). attribute_length and path_segment_length are stored in uint8_t, so AS_PATHs >63 ASNs truncate to 0–255 for sizing but the full data is writ...

CVE-2026-43888

Outline is a service that allows for collaborative documentation. Prior to 1.7.0, ZipHelper.extract computes the extraction path for each entry by passing a full filesystem path through trimFileAndExt, a filename helper that calls path.basename on its input when truncating. When a zip entry's...

MiracleLinux 9 : python3.11-3.11.5-1.el9_3 (AXSA:2023-6966:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-6966:07 advisory. python: tarfile module directory traversal CVE-2007-4559 python: file path truncation at \0 characters CVE-2023-41105 Tenable has extracted the...

EUVD-2004-1062

Malware in sbrugna...

EUVD-2002-0495

Malware in sbrugna...

EUVD-2023-45624

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2023-41105

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Python 3.11 through 3.11.4. If a path containing '\0' bytes is passed to os.path.normpath, the path will be truncated unexpectedly at...

CLSA-2025-1750783474 ghostscript: Fix of CVE-2024-46953

CVE-2024-46953: fix integer overflow in parsing filename format string to prevent path truncation and possible code execution...

TencentOS Server 3: python3.11 (TSSA-2023:0293)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0293 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

CLSA-2025-1740470877 python3.11: Fix of CVE-2023-41105

CVE-2023-41105: fix unexpected path truncation in os.path.normpath when handling '\0' bytes - fix potential nullptr dereference + use of uninitialized memory...

CVE-2024-46953

A flaw was found in Artifex Ghostscript base/gsdevice.c. This vulnerability allows path truncation, path traversal, and possible code execution via an integer overflow when parsing the filename format string for the output filename...

CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...

DEBIAN-CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...

CVE-2024-46953

CVE-2024-46953 concerns Ghostscript before 10.04.0, where an integer overflow while parsing the output filename format string in base/gsdevice.c can cause path truncation, enabling path traversal and potential code execution. Affected: Ghostscript PS/PDF interpreter, notably ghostpdl-10.04.0 and ...

CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...

CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...

CVE-2024-46953

An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string for the output filename results in path truncation, and possible path traversal and code execution...

PT-2024-8201 · Artifex +8 · Artifex Ghostscript +8

Name of the Vulnerable Software and Affected Versions: Artifex Ghostscript versions prior to 10.04.0 Description: The issue is related to an integer overflow in the base/gsdevice.c component of Artifex Ghostscript, which can result in path truncation and possible path traversal and code execution...

DEBIAN-CVE-2023-52618

In the Linux kernel, the following vulnerability has been resolved: block/rnbd-srv: Check for unlikely string overflow Since "devsearchpath" can technically be as large as PATHMAX, there was a risk of truncation when copying it and a second string into "fullpath" since it was also PATHMAX sized...

CentOS 9 : python3.11-3.11.5-1.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the python3.11-3.11.5-1.el9 build changelog. - An issue was discovered in Python before 3.8.18, 3.9.x before 3.9.18, 3.10.x before 3.10.13, and 3.11.x before 3.11.5. It primarily...