GO-2025-3595 Incorrect Neutralization of Input During Web Page Generation in x/net in golang.org/x/net

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

CVE-2025-22074

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix rcount dec/increment mismatch rcount is only increased when there is an oplock break wait, so rcount inc/decrement are not paired. This can cause rcount to become negative, which can lead to a problem where the ksmbd...

CVE-2023-32197

The CVE-2023-32197 issue is an improper privilege management vulnerability in SUSE Rancher involving RoleTemplate objects when external=true is set, enabling privilege escalation in certain scenarios. Affected versions include Rancher 2.7.0–2.7.13 and 2.8.0–2.8.4 (fixed in 2.7.14 and 2.8.5). The ...

CVE-2025-0101 WAGO: Year 2038 problem

A low privileged user can set the date of the devices to the 19th of January 2038 an therefore exceed the 32-Bit time limit. This causes some functions to work unexpected or stop working at all. Both during runtime and after a restart...

CVE-2025-0101

CVE-2025-0101 involves a 32-bit time overflow on WAGO devices where a low-privilege user can set the system date to January 19, 2038. Affected components are not exhaustively listed in the provided documents, but multiple sources (Red Hat, NVD, CVE listing, and vendor-related enrichments) describ...

CVE-2025-0101 WAGO: Year 2038 problem

A low privileged user can set the date of the devices to the 19th of January 2038 an therefore exceed the 32-Bit time limit. This causes some functions to work unexpected or stop working at all. Both during runtime and after a restart...

PT-2025-16674 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to device-exclusive handling and huge pages hugetlb. The issue causes problems with migration, swapout, and split handlin...

SUSE SLES15 Security Update : webkit2gtk3 (SUSE-SU-2025:1265-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:1265-1 advisory. - Update to version 2.48.1 - CVE-2024-54551: improper memory handling may lead to a denial-of-service when processing certain web...

Unable to update machine catalog after upgrading Office 2013 to 2016 version

Error message : FailedToCreateImagePreparationVM TaskErrorInformation: Terminated Internal Error: Failed to upload disk. Unable to write data to the transport connection. An existing connection was forcibly closed by the remote host. Event ID 2007...

CVE-2024-52981

An issue was discovered in Elasticsearch, where a large recursion using the Well-KnownText formatted string with nested GeometryCollection objects could cause a stackoverflow...

PT-2025-15885

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 10.0 Description: The issue arises from the DisableForwarding directive in sshd not following its documentation. Specifically, it does not properly disable X11 and agent forwarding as stated. Recommendations: For...

CVE-2025-32414

In libxml2 before 2.13.8 and 2.14.x before 2.14.2, out-of-bounds memory access can occur in the Python API Python bindings because of an incorrect return value. This occurs in xmlPythonFileRead and xmlPythonFileReadRaw because of a difference between bytes and characters...

Users experiencing greyed out "Log Off" buttons on CWA LTSR 2203.1

Upgraded Workspace app for Windows from 2203.1 to 2402 CU2...

Citrix Virtual Apps and Desktop 2402 - Citrix applications could not be maximized after minimizing

Users with multiple monitors might find that after minimizing a Citrix published application on an external screen, then disconnecting and reconnecting that screen, the application fails to maximize correctly. It might appear small, in the wrong place, or seem frozen...

CVE-2025-32152 WordPress Slider a SlidersPack Plugin <= 2.3 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Essential Plugin Slider a SlidersPack sliderspack-all-in-one-image-sliders allows PHP Local File Inclusion.This issue affects Slider a SlidersPack: from n/a through = 2.3...

GHSA-428Q-Q3VV-3FQ3 GraphQL grant on a property might be cached with different objects

Original message: I found an issue with security grants on on properties in the GraphQL ItemNormalizer: If you use something like ApiPropertysecurity: 'isgranted"PROPERTYREAD", object, property' on a member of an entity, the grant gets cached and is only evaluated once, even if the object in...

Audio not working on VDA when reconnecting from Ipad

After CWA 2412 IOS audio stops working randomly on Ipad after reconnectng to the session. With Adaptive audiodisabled we got audio about with 50% of reconnects. With Adaptive audioenabled audio playback worked every single time we reconnected to the desktop...

CVE-2024-47212

An issue was discovered in Iglu Server 0.13.0 and below. It involves sending very large payloads to a particular API endpoint of Iglu Server and can render it completely unresponsive. If the operation of Iglu Server is not restored, event processing in the pipeline would eventually halt...

CVE-2024-4877

OpenVPN version 2.4.0 through 2.6.10 on Windows allows an external, lesser privileged process to create a named pipe which the OpenVPN GUI component would connect to allowing it to escalate its privileges...

CVE-2025-30596 WordPress include-file plugin <= 1 - Arbitrary File Download Vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in tstafford include-file include-file allows Path Traversal.This issue affects include-file: from n/a through = 1...