442 matches found
CVE-2020-7464
In FreeBSD 12.2-STABLE before r365730, 11.4-STABLE before r365738, 12.1-RELEASE before p10, 11.4-RELEASE before p4, and 11.3-RELEASE before p14, a programming error in the ure4 device driver caused some Realtek USB Ethernet interfaces to incorrectly report packets with more than 2048 bytes in a...
CVE-2024-39599
Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. This leads to a low impact on the application's confidentiality, integrity, and availability...
EUVD-2006-0909
Malware in sbrugna...
EUVD-2017-11944
Malware in sbrugna...
EUVD-2017-15124
Malicious code in bioql PyPI...
EUVD-2024-38119
Malicious code in bioql PyPI...
EUVD-2021-33026
Malicious code in bioql PyPI...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a programming error in HCIUTRLNEXUSTYPE, which could lead to undefined behavior...
CVE-2024-13679
CVE-2024-13679 affects the WordPress plugin Widget BUY.BOX (shortcode buybox-widget). The vulnerability is a Stored XSS due to insufficient input sanitization and output escaping in all versions up to 3.1.5. Exploitation requires authentication at contributor level or higher, and the stored scrip...
EulerOS 2.0 SP12 : openssl (EulerOS-SA-2024-2537)
According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory...
Exploit for Unrestricted Upload of File with Dangerous Type in Chamilo Chamilo_Lms
CVE-2023-4220-Exploit LMS Chamilo 1.11.24 CVE-2023-4220 Explo...
SAP NetWeaver AS ABAP Protection Mechanism Failure (3456952)
Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. This leads to a low impact on the application's confidentiality, integrity, and availability. Note that...
CVE-2024-39599
Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. This leads to a low impact on the application's confidentiality, integrity, and availability...
CVE-2024-39599
Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. This leads to a low impact on the application's confidentiality, integrity, and availability...
CVE-2024-39599 [CVE-2024-39599] Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform
Due to a Protection Mechanism Failure in SAP NetWeaver Application Server for ABAP and ABAP Platform, a developer can bypass the configured malware scanner API because of a programming error. This leads to a low impact on the application's confidentiality, integrity, and availability...
CVE-2024-39599
CVE-2024-39599 affects SAP NetWeaver Application Server for ABAP and ABAP Platform. The issue is a protection mechanism failure that allows a developer to bypass the configured malware scanner API due to a programming error. The practical impact is described as low for confidentiality, integrity,...
OpenSSL 3.2.0 < 3.2.3 Vulnerability
The version of OpenSSL installed on the remote host is prior to 3.2.3. It is, therefore, affected by a vulnerability as referenced in the 3.2.3 advisory. - Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memor...
CVE-2023-36922
Due to programming error in function module and report, IS-OIL component in SAP ECC and SAP S/4HANA allows an authenticated attacker to inject an arbitrary operating system command into an unprotected parameter in a common default extension. On successful exploitation, the attacker can read or...
Design/Logic Flaw
Due to programming error in function module and report, IS-OIL component in SAP ECC and SAP S/4HANA allows an authenticated attacker to inject an arbitrary operating system command into an unprotected parameter in a common default extension. On successful exploitation, the attacker can read or...
CVE-2023-36922
The CVE-2023-36922 entry concerns SAP ECC/SAP S/4HANA IS-OIL with a programming error in the function module and report that permits an authenticated attacker to inject an arbitrary operating system command into an unprotected parameter of a common extension. Exploitation can allow reading/modify...