CVE-2023-6209

Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problems in web sites. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...

CVE-2023-6209

Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problems in web sites. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...

CVE-2023-6209

Relative URLs starting with three slashes were incorrectly parsed, and a path-traversal "/../" part in the path could be used to override the specified host. This could contribute to security problems in web sites. This vulnerability affects Firefox 120, Firefox ESR 115.5.0, and Thunderbird 115.5...

CVE-2018-10818

Connected document details confirm CVE-2018-10818 affects LG NAS devices, via a pre-auth remote command injection in the password parameter exposed through the /system/sharedir.php endpoint. The attack vector is unauthenticated and could enable arbitrary code execution on affected devices. Concre...

YubiKey authentication is working on published desktop but not published app

YubiKey does not work from a published app browser e.g., Microsoft Edge, but it works on the same browser inside a published desktop. The published app and desktop are both hosted on the same server...

SUSE-SU-2023:4463-1 Security update for libnbd

This update for libnbd fixes the following issues: - CVE-2023-5871: Fixed an assertion problem in ext-mode BLOCKSTATUS bsc1216769...

CVE-2023-40118

CVE-2023-40118 is addressed in ChromeOS updates as part of the Android Runtime Container security fixes. The connected ChromeOS release notes indicate CVE-2023-40118 was fixed as a Medium severity issue on impacted platforms within the Android Runtime Container, in the context of the ChromeOS Sta...

Apache Airflow Authorization Problem Vulnerability (CNVD-2023-93318)

Apache HTTP Server Buffer Overflow Vulnerability CNVD-2023-93320...

WEM Admin Console hangs while refreshing Agent Cache for some Agents via Console

When refreshing agent cache from Citrix WEM Console, the console freezes and have to kill and re-connect to get it working again. The issue happens only if specific agent machines are selected for the refresh cache action...

CVE-2023-35678

CVE-2023-35678 is listed in Android 14 vulnerability details under Framework with Type: Elevation of Privilege (EoP) and Severity: High. The Android 14 release notes do not provide public exploit details for this CVE. Mitigation guidance from the bulletin indicates that Android 14 devices with a ...

CVE-2023-5649

CVE-2023-5649 is an improper input validation vulnerability in Brocade ASCG related to registered case credentials. The Brocade advisory notes that before ASCG v3.0, a local authenticated user could provide invalid inputs (e.g., special characters) when performing a supportsave operation on a Bro...

PT-2025-18867

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the bonding driver. When a non-ethernet device is enslaved to a bond device that is itself a slave, the bond device's IF...

PT-2025-18853 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A hung task problem was reported in the Linux kernel, specifically in the ext4 file system. The issue occurs when an inode contains an xattr entry with an ea inum of 15 while...

SUSE CVE-2015-1870

The event scripts in Automatic Bug Reporting Tool ABRT uses world-readable permission on a copy of sosreport file in problem directories, which allows local users to obtain sensitive information from /var/log/messages via unspecified vectors...

Virtual Machines Do Not Start After the Upgrade of XenServer

After an upgrade of XenServer, Virtual Machines VMs will not start with the following error: Error: Starting VM 'Name-of-VM - This operation cannot be performed because the specified VDI could not be found on the storage substrate...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: buildkitd, up, k3d, kubeflow, dgraph, kubescape, cortex, scorecard, src, terraform-provider-sendgrid, kubevela, slsa-verifier, spark-operator, aactl, falco, prometheus-blackbox-exporter...

GHSA-M425-MQ94-257G vulnerabilities

Vulnerabilities for packages: cluster-autoscaler-fips, kiam, kube-oidc-proxy, prometheus-stackdriver-exporter, bank-vaults-fips, kubevela, smarter-device-manager-fips, terraform-provider-sendgrid, dgraph, terraform-provider-sendgrid-fips, kubescape, prometheus-blackbox-exporter, k3d,...

Unable to copy and paste after WEM agent is reinstalled. Wfshell.exe application crash occurs

Issue noticed after re-installing WEM agent, users are facing issues with users being unable to copy and paste from Client to endpoint and vice versa. In theevent viewer on the VDA, event ID 1000 error for Wfshell.exe is displayed...

The citrix workspace app version 23.9.0.17 for chrome no longer works in kiosk mode.

On a Chromebook with OS 116 and 117, for citrix workspace app for chrome no longer works in kiosk mode. After logging in a white screen is seen. Outside of Kiosk mode it works . Chrome OS 115 does not have the issue...

Citrix Gateway unable to connect to Citrix Endpoint Management Cloud server

Citrix Gateway unable to connect to Citrix Endpoint Management cloud server due to SSL certificate issue Symptoms include the below, STA shows down. Secure Hub fails in Enrollments Secure Hub fails to access store...