224 matches found
openSUSE Security Advisory (SUSE-SU-2024:1499-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (SUSE-SU-2025:0429-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Advisory (openSUSE-SU-2025:0058-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2025-1369
creationtimestamp| type| source ---|---|--- 2025-02-17 01:58:12+00:00| seen| https://infosec.exchange/users/cve/statuses/114016746964992086 2025-02-17 02:15:58+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lidohhazjf23 2025-02-17 03:59:59+00:00| seen|...
ABB Cylon FLXeon 9.3.4 (app.js) Insecure CORS Configuration
Summary BACnet® Smart Building Controllers. ABB's BACnet portfolio features a series of BACnet® IP and BACnet MS/TP field controllers for ASPECT® and INTEGRA™ building management solutions. ABB BACnet controllers are designed for intelligent control of HVAC equipment such as central plant, boiler...
CVE-2025-22265
creationtimestamp| type| source ---|---|--- 2025-01-31 09:16:06+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgznz2ei5p27...
CVE-2025-21643
creationtimestamp| type| source ---|---|--- 2025-01-19 10:58:27+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2323 2025-01-19 11:12:07+00:00| seen| https://infosec.exchange/users/cve/statuses/113854718095653986 2025-01-19 11:15:52+00:00| seen|...
CVE-2025-22808
creationtimestamp| type| source ---|---|--- 2025-01-09 16:18:01+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfd3dakbbr2k 2025-01-09 17:46:13+00:00| seen| https://t.me/cvedetector/14869...
Wireshark 3.6.x < 3.6.14, 4.x < 4.0.6 Multiple Vulnerabilities (Jan 2025) - Mac OS X
Wireshark is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wireshark:wireshark"; ifdescripti...
CVE-2024-11254
creationtimestamp| type| source ---|---|--- 2024-12-18 03:33:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113671721663188781 2024-12-18 06:09:49+00:00| seen| https://t.me/cvedetector/13152...
CVE-2024-53990
creationtimestamp| type| source ---|---|--- 2024-12-02 15:43:51+00:00| published-proof-of-concept| https://github.com/AsyncHttpClient/async-http-client/security/advisories/GHSA-mfj5-cf8g-g2fv 2024-12-02 20:26:02+00:00| seen| https://t.me/cvedetector/11811 2025-02-01 06:22:08+00:00| seen|...
CVE-2024-52565
creationtimestamp| type| source ---|---|--- 2024-11-18 19:03:39+00:00| seen| https://t.me/cvedetector/11359 2024-11-19 06:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1523/ 2024-12-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-09...
CVE-2024-44122
creationtimestamp| type| source ---|---|--- 2024-10-28 21:24:10+00:00| seen| None 2025-10-01 18:11:57+00:00| seen| MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6 2025-10-08 21:59:29+00:00| seen| MISP/af790da0-9e28-4cb7-bd4e-46ad005115c6...
RUSTSEC-2024-0387 `opentelemetry_api` has been merged into the `opentelemetry` crate
Last release was on 2023-07-30. opentelemetryapi has been moved into the opentelemetry crate. Please use the opentelemetry crate going forward...
`opentelemetry_api` has been merged into the `opentelemetry` crate
Last release was on 2023-07-30. opentelemetryapi has been moved into the opentelemetry crate. Please use the opentelemetry crate going forward...
CentOS 9 : squid-5.5-2.el9
The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the squid-5.5-2.el9 build changelog. - DoS when processing gopher server responses CVE-2021-46784 Note that Nessus has not tested for this issue but has instead relied only on the...
CVE-2024-24747 MinIO unsafe default: Access keys inherit `admin` of root user, allowing privilege escalation
MinIO is a High Performance Object Storage. When someone creates an access key, it inherits the permissions of the parent key. Not only for s3: actions, but also admin: actions. Which means unless somewhere above in the access-key hierarchy, the admin rights are denied, access keys will be able t...
Cross site request forgery (csrf)
The WooCommerce Pre-Orders WordPress plugin before 2.0.3 has a flawed CSRF check when processing its tab actions, which could allow attackers to make logged in admins email pre-orders customer, change the released date, mark all pre-orders of a specific product as complete or cancel via CSRF atta...
WordPress plugin WooCommerce Pre-Orders 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...
June 13, 2023-KB5027536 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows 10, version 1809 and Windows Server 2019
None None...