ReQuest Serious Play F3 Media Server 操作系统命令注入漏洞

ReQuest Serious Play F3 Media Server is a digital media server from ReQuest Serious Play, Inc. An operating system command injection vulnerability exists in ReQuest Serious Play F3 Media Server version 7.0.3, which originates from unauthenticated remote code execution and could lead to an attacke...

RockyLinux 8 : container-tools:rhel8 (RLSA-2025:15904)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:15904 advisory. podman: Podman kube play command may overwrite host files CVE-2025-9566 Tenable has extracted the preceding description block directly from the RockyLin...

Oracle Linux 9 : podman (ELSA-2025-20909)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-20909 advisory. - fixes 'CVE-2025-9566 podman: Podman kube play command may overwrite host files rhel-9.7' Tenable has extracted the preceding description block...

Android Security Bulletin—December 2025Stay organized with collectionsSave and categorize content based on your preferences.

This Android Security Bulletin contains details of security vulnerabilities that affect Android devices. Security patch levels of 2025-12-05 or later address all of these issues. To learn how to check a device's security patch level, see Check and update your Android version. Within 48 hours afte...

container-tools:rhel8 security update

An update is available for module.crun, fuse-overlayfs, module.slirp4netns, python-podman, module.runc, container-selinux, module.podman, module.udica, module.aardvark-dns, module.fuse-overlayfs, cockpit-podman, aardvark-dns, module.conmon, containers-common, libslirp, criu,...

AlmaLinux 10 : podman (ALSA-2025:20983)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:20983 advisory. database/sql: Postgres Scan Race Condition CVE-2025-47907 podman: Podman kube play command may overwrite host files CVE-2025-9566 Tenable has extracted...

AlmaLinux 9 : podman (ALSA-2025:20909)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:20909 advisory. database/sql: Postgres Scan Race Condition CVE-2025-47907 podman: Podman kube play command may overwrite host files CVE-2025-9566 Tenable has extracted t...

EUVD-2025-199006

Malicious code in upload-to-play-store npm...

MAL-2025-190939 Malicious code in upload-to-play-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86f86113dded695e7f899fe12b243d559d7cb4ddf1f6d3d67aa8318c07ed646d The package upload-to-play-store was found to contain malicious code. Source: ghsa-malware...

Malicious code in upload-to-play-store (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 86f86113dded695e7f899fe12b243d559d7cb4ddf1f6d3d67aa8318c07ed646d The package upload-to-play-store was found to contain malicious code. Source: ghsa-malware...

CVE-2025-11676

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 UPnP modules, which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 = Build 220801...

CVE-2025-11676 UPnP DOS in TL-WR940N V6

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 UPnP modules, which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 = Build 220801...

CVE-2025-11676

CVE-2025-11676 affects TP-Link TL-WR940N V6 (UPnP modules). The issue is an improper input validation vulnerability that allows unauthenticated adjacent attackers to cause a denial-of-service, affecting TL-WR940N V6

PT-2025-47559

Improper input validation vulnerability in TP-Link System Inc. TL-WR940N V6 UPnP modules, which allows unauthenticated adjacent attackers to perform DoS attack. This issue affects TL-WR940N V6 = Build 220801...

CVE-2021-4465

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 Pro, 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. The device can be shut down or rebooted by an unauthenticated attacker through a single crafted HTTP GET request, allowing...

CVE-2021-4465

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 Pro, 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. The device can be shut down or rebooted by an unauthenticated attacker through a single crafted HTTP GET request, allowing...

CVE-2021-4465

CVE-2021-4465 affects ReQuest Serious Play F3 Media Server. A remote, unauthenticated attacker can force a DoS by sending a crafted HTTP GET request, potentially shutting down or rebooting the device and interrupting service. Affected versions include 2.0.1.823 through 7.0.3.4968 (Pro); vulnerabl...

CVE-2021-4465 ReQuest Serious Play F3 Media Server <= 7.0.3 Remote DoS

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 Pro, 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. The device can be shut down or rebooted by an unauthenticated attacker through a single crafted HTTP GET request, allowing...

EUVD-2021-34720

ReQuest Serious Play F3 Media Server versions 7.0.3.4968 Pro, 7.0.2.4954, 6.5.2.4954, 6.4.2.4681, 6.3.2.4203, and 2.0.1.823 contain a remote denial-of-service vulnerability. The device can be shut down or rebooted by an unauthenticated attacker through a single crafted HTTP GET request, allowing...

ReQuest Serious Play Pro 安全漏洞

ReQuest Serious Play Pro is a media server from ReQuest Serious Play USA. A security vulnerability exists in ReQuest Serious Play Pro that stems from a specially crafted HTTP GET request that can cause the device to shut down or reboot, potentially resulting in an interruption of service...