CVE-2025-15528

A vulnerability has been found in Open5GS up to 2.7.6. Affected by this vulnerability is an unknown functionality of the component GTPv2 Bearer Response Handler. Such manipulation leads to denial of service. The attack may be launched remotely. The exploit has been disclosed to the public and may...

Security Bulletin: Multiple security vulnerabilities in Java may affect IBM Robotic Process Automation

Summary Multiple security vulnerabilities in Java affect IBM Robotic Process Automation. Java is used by IBM Robotic Process Automation as part of metrics and licening, and UMS. This bulletin identifies the fixes required to address these vulnerabilities. Vulnerability Details CVEID:CVE-2025-5305...

CVE-2026-1023 Gotac｜Statistics Database System - Missing Authentication

Statistics Database System developed by Gotac has a Missing Authentication vulnerability, allowing unauthenticated remote attackers to directly exploit a specific functionality to query database contents...

MiracleLinux 3 : gnutls-1.4.1-10.1.0.1.AXS3 (AXSA:2013-170:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2013-170:02 advisory. GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library implements the...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003910)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003910 advisory. A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fibnhmatch of the file net/ipv4/fibsemantics.c of the component...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004779)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004779 advisory. A vulnerability classified as problematic has been found in Linux Kernel. This affects the function fibnhmatch of the file net/ipv4/fibsemantics.c of the component...

Qnap QTS and QuTS Hero Buffer Copy without Checking Size of Input (CVE-2024-56805)

A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow remote attackers who have gained user access to modify memory or crash processes. We have already fixed the vulnerability in the following versions: QTS...

MiracleLinux 7 : ocaml-4.01.0-22.7.el7 (AXSA:2016-530:01)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2016-530:01 advisory. Security issues fixed with this release: CVE-2015-8869 OCamel before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct...

MiracleLinux 3 : nss-3.16.1-4.AXS3 (AXSA:2014-578:04)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-578:04 advisory. Description : Network Security Services NSS is a set of libraries designed to support cross-platform development of security-enabled client and server...

MiracleLinux 4 : pacemaker-1.1.10-14.AXS4.2 (AXSA:2014-039:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2014-039:01 advisory. Pacemaker is an advanced, scalable High-Availability cluster resource manager for Linux-HA Heartbeat and/or Corosync. It supports n-node clusters with...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52858)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

MiracleLinux 3 : gnutls-1.4.1-14.0.1.AXS3 (AXSA:2014-243:01)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2014-243:01 advisory. GnuTLS is a project that aims to develop a library which provides a secure layer, over a reliable transport layer. Currently the GnuTLS library...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-47214)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

CVE-2021-47782

Odine Solutions GateKeeper 1.0 contains a SQL injection vulnerability in the trafficCycle API endpoint that allows remote attackers to inject malicious database queries. Attackers can exploit the vulnerability by sending crafted payloads to the /rass/api/v1/trafficCycle/ endpoint to manipulate...

CVE-2025-9014 Null Pointer Dereference Vulnerability on TL-WR841N

A Null Pointer Dereference vulnerability exists in the referer header check of the web portal of TP-Link TL-WR841N v14, caused by improper input validation. A remote, unauthenticated attacker can exploit this flaw and cause Denial of Service on the web portal service.This issue affects TL-WR841N...

CVE-2026-20075

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against users of the interface of an affected system. This...

EUVD-2026-2748

A vulnerability in the web-based management interface of Cisco Identity Services Engine ISE could allow an authenticated, remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user-supplied inpu...

CVE-2021-47752

AWebServer GhostBuilding 18 contains a denial of service vulnerability that allows remote attackers to overwhelm the server by sending multiple concurrent HTTP requests. Attackers can generate high-volume requests to multiple endpoints including /mysqladmin to potentially crash or render the...

CVE-2021-47752

CVE-2021-47752 affects AWebServer GhostBuilding 18. The vulnerability is a denial-of-service condition that allows remote attackers to overwhelm the server by issuing multiple concurrent HTTP requests, potentially targeting endpoints such as /mysqladmin and crashing or rendering the service unres...

AZL-74631 CVE-2026-0897 affecting package keras for versions less than 3.3.3-6

Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service DoS through memory exhaustion and a crash of the Python interpreter via a crafted .keras archive...