12 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-43907
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0...
IBM Java 7.1 < 7.1.5.30 / 8.0 < 8.0.8.65 Multiple Vulnerabilities
The version of IBM Java installed on the remote host is 7.1 prior to 7.1.5.30 / 8.0 prior to 8.0.8.65. It is, therefore, affected by multiple vulnerabilities as referenced in the Oracle April 21 2026 CPU advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM...
Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses xmldom-0.8.10.tgz which is vulnerable to this CVE-2021-32796
Summary Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses xmldom-0.8.10.tgz which is vulnerable to this CVE-2021-32796 Vulnerability Details CVEID:CVE-2021-32796 DESCRIPTION: xmldom is an open source pure JavaScript W3C standard-based XML DOM Level 2 Core DOMParse...
EUVD-2017-17230
Malware in sbrugna...
CVE-2025-53471
Emerson ValveLink products contain an input validation flaw where received data is not properly validated, potentially causing unsafe or incorrect data processing. The CVE notes a local, high-complexity impact with no privileges required (CVSS 3.1/5.1 and CVSS 4.0/5.9). The Red Hat/NVD/CVE lineag...
PT-2025-29185 · Emerson · Valvelink
Name of the Vulnerable Software and Affected Versions: Emerson ValveLink affected versions not specified Description: Emerson ValveLink products do not validate or incorrectly validate input data, potentially leading to unsafe or incorrect data processing. Recommendations: At the moment, there is...
CVE-2024-54486
CVE-2024-54486 involves memory disclosure triggered by processing a maliciously crafted font in Apple platforms. Connected sources confirm the issue affects Apple operating systems and fonts handling, with remediation in updates: iPadOS 17.7.3, iOS 18.2, iPadOS 18.2, macOS Sequoia 15.2, Ventura 1...
Debian dsa-5806 : libarchive-dev - security update
The remote Debian 12 host has packages installed that are affected by a vulnerability as referenced in the dsa-5806 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-5806-1 [email protected] https://www.debian.org/security/...
PT-2023-28743 · Xnsoft · Xnsoft Nconvert
Name of the Vulnerable Software and Affected Versions: XNSoft Nconvert version 7.136 Description: The issue is related to a Buffer Overflow, which can be triggered by a crafted image file, leading to a User Mode Write AV. This could result in a Denial of Service DoS or potentially allow code...
CVE-2021-38985
IBM Tivoli Key Lifecycle Manager 3.0, 3.0.1, 4.0, and 4.1 receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly...
PT-2020-14049 · Philips · Philips Clinical Collaboration Platform
Name of the Vulnerable Software and Affected Versions: Philips Clinical Collaboration Platform versions 12.2.1 and prior Description: The issue arises because the product does not properly validate input or data it receives, which can lead to incorrect processing. Recommendations: For versions...
Tomcat/JBossWeb: XML parser hijack by malicious web application
It was found that, in certain circumstances, it was possible for a malicious web application to replace the XML parsers used by JBoss Web / Apache Tomcat to process XSLTs for the default servlet, JSP documents, tag library descriptors TLDs, and tag plug-in configuration files. The injected XML...