EUVD-2006-4818

Malware in sbrugna...

EUVD-2022-28873

Malicious code in bioql PyPI...

CISCO-SA-20190513-SECUREBOOT

creationtimestamp| type| source ---|---|--- 2025-07-30 03:49:44+00:00| seen| https://gist.github.com/iseki0/cde82900ce5cf723909622f903fd261b...

CVE-2025-4432

A flaw was found in Rust's Ring package. A panic may be triggered when overflow checking is enabled. In the QUIC protocol, this flaw allows an attacker to induce this panic by sending a specially crafted packet. It will likely occur unintentionally in 1 out of every 232 packets sent or received...

CVE-2018-7842

creationtimestamp| type| source ---|---|--- 2025-04-24 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-114-01...

CVE-2024-57965

In axios before 1.7.8, lib/helpers/isURLSameOrigin.js does not use a URL object when determining an origin, and has a potentially unwanted setAttribute'href',href call. NOTE: some parties feel that the code change only addresses a warning message from a SAST tool and does not fix a vulnerability...

RHEL 8 : kernel (RHSA-2024:6206)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:6206 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel:TCP-spoofed ghost ACKs and leak...

RHEL 9 : kernel (RHSA-2024:5364)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:5364 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: gfs2: Fix kernel NULL pointer...

RHEL 8 : kernel (RHSA-2024:4731)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:4731 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: GSM multiplexing race conditio...

CVE-2024-39508 io_uring/io-wq: Use set_bit() and test_bit() at worker->flags

In the Linux kernel, the following vulnerability has been resolved: iouring/io-wq: Use setbit and testbit at worker-flags Utilize setbit and testbit on worker-flags within iouring/io-wq to address potential data races. The structure ioworker-flags may be accessed through various data paths, leadi...

CVE-2024-5755 Email Validation Bypass in lunary-ai/lunary

In lunary-ai/lunary versions =v1.2.11, an attacker can bypass email validation by using a dot character '.' in the email address. This allows the creation of multiple accounts with essentially the same email address e.g., '[email protected]' and '[email protected]', leading to incorrect...

GHSA-W5MJ-J45Q-M638 ZendFramework1 Potential Security Issues in Bundled Dojo Library

In mid-March, 2010, the Dojo Foundation issued a Security Advisory indicating potential security issues with specific files in Dojo Toolkit. Details of the advisory may be found on the Dojo website: http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/ In particular, several file...

GHSA-8WX3-8M4X-G5H4 FOSUserBundle User Identity Validation Vulnerability

Versions of FOSUserBundle prior to 1.2.1 have been found to be vulnerable to a security issue related to user identity validation. Specifically, user refreshing was performed using the primary key instead of the username, leading to a potential security risk if a user is allowed to change their...

CVE-2024-33007

CVE-2024-33007 affects SAPUI5 PDFViewer, a control that renders PDF content embedded by default. The underlying issue is execution of embedded JavaScript in PDFs by PDFViewer, which can trigger security threats. Affected component/file: PDFViewer within SAPUI5; root cause is server/client-side sc...

Fedora 39 : libopenmpt (2024-90b3798199)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-90b3798199 advisory. Bring all current releases from either version 0.7.3 or 0.6.12 to version 0.7.6 for more bug-fixes and also as to resolve potential security issues:...

Potential Security Threat

firefox-esr is vulnerable to a Potential Security Threat. The vulnerability is due to due to insufficient validation of user input during a sequence of API calls and redirects, enabling an attacker to control and display a malicious alert dialog on another website, with the victim website's URL...

CVE-2023-34034

Using "" as a pattern in Spring Security configuration for WebFlux creates a mismatch in pattern matching between Spring Security and Spring WebFlux, and the potential for a security bypass...

Certain HP Enterprise LaserJet MFP Products – Potential Buffer Overflow, Remote Code Execution

A potential security vulnerability has been identified for certain HP multifunction printers MFPs. The vulnerability may lead to Buffer Overflow and/or Remote Code Execution when running HP Workpath solutions on potentially affected products. Update the printer firmware...

Debian: Security Advisory (DLA-250-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

GSD-2023-1002418 net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path

net/usb: kalmia: Don't pass actlen in usbbulkmsg error path This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.306 by commit...