CVE-2025-38319

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...

CVE-2022-49859 net: lapbether: fix issue of invalid opcode in lapbeth_open()

In the Linux kernel, the following vulnerability has been resolved: net: lapbether: fix issue of invalid opcode in lapbethopen If lapbregister failed when lapb device goes to up for the first time, the NAPI is not disabled. As a result, the invalid opcode issue is reported when the lapb device go...

Security Bulletin: Vulnerability in certifi affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2022-23491]

Summary The certifi package is used by IBM Cloud Pak for Data System 2.0 . IBM Cloud Pak for Data System 2.0 has addressed the applicable CVE CVE-2022-23491 Vulnerability Details CVEID:CVE-2022-23491 DESCRIPTION: An unspecified error in with TrustCor's ownership also operated a business that...

CVE-2024-3938

The "reset password" login page accepted an HTML injection via URL parameters. This has already been rectified via patch, and as such it cannot be demonstrated via Demo site link. Those interested to see the vulnerability may spin up a...

AIX (IJ44552)

The version of AIX installed on the remote host is prior to APAR IJ44552. It is, therefore, affected by a vulnerability as referenced in the IJ44552 advisory. - IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a local user with elevated privileges to exploit a vulnerability in the lpd daemon to cau...

SUSE-SU-2022:1230-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15)

This update for the Linux Kernel 4.12.14-15078 fixes one issue. The following security issue was fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap objects and ma...

SUSE-SU-2022:1189-1 Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122106 fixes several issues. The following security issues were fixed: - CVE-2022-27666: Fixed a buffer overflow vulnerability in IPsec ESP transformation code. This flaw allowed a local attacker with a normal user privilege to overwrite kernel heap object...

vigc.be Improper Access Control vulnerability OBB-2162672

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Juniper JSA10960

The version of Junos OS installed on the remote host is prior to 15.1X49-D171, 15.1X53-D496, 16.1R7-S4, 16.2R2-S9, 17.1R3, 17.2R1-S8, 17.3R3-S4, 17.4R1-S6, 18.1R2-S4, 18.2R1-S5, 18.3R1-S3, or 18.4R1-S2. It is, therefore, affected by a vulnerability as referenced in the JSA10960 advisory. Note tha...

SUSE-SU-2019:2983-1 Security update for ghostscript

This update for ghostscript fixes the following issue: - CVE-2019-14869: Fixed a possible dSAFER escape which could have allowed an attacker to gain high privileges by a specially crafted Postscript code bsc1156275...

CVE-2015-9175

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon Wear MDM9206, MDM9650, MSM8909W, SD 210/SD 212/SD 205, SD 400, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 808, SD 810, ...

mankatomncoc.wliinc15.com Open Redirect vulnerability

Vulnerable URL: https://mankatomncoc.wliinc15.com/external/wcpages/referral.aspx?ReferralType=W=4816=108=11=0=http://xssposed.org Details: Description| Value ---|--- Patched:| Yes, at 25.07.2017 Latest check for patch:| 25.07.2017 12:37 GMT Vulnerability type:| Open Redirect Vulnerability status:...

AIX 5.3 TL 5 : perl (IZ10244)

A buffer overflow vulnerability exists in the 'perl.rte' fileset. A remote attacker may execute arbitrary code if a Perl script executing on the system is listening on a network port. If exploited the attacker can execute arbitrary code with the same privileges as the script. For more details...

AIX 5.3 TL 8 : iostat (IZ21506)

The iostat command contains an environment variable handling error. A local attacker may exploit this error to execute arbitrary code with root privileges because the command is setuid root. The following files are vulnerable : /usr/bin/iostat. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

AIX 530012 : U841209

The remote host is missing AIX PTF U841209 which is related to the security of the package devices.iscsisw.rte You should install this PTF for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc';...

HP-UX Security patch : PHNE_10010

The remote host is missing HP-UX Security Patch number PHNE10010 . Security Vulnerability in the ftpd/kftpd executable %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0; include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid17109;...

FreeBSD Ports : nap < 1.4.5

The remote host has an old version of nap installed. This version of nap contains a security loophole which allows remote clients to access arbitrary files on the nap system. %NASLMINLEVEL 999999 @DEPRECATED@ This script has been deprecated by freebsdpkg83119e275d7c11d880e30020ed76ef5a.nasl...

Microsoft Security Bulletin MS02-068: Cumulative Patch for Internet Explorer &#40;324929&#41;

-----BEGIN PGP SIGNED MESSAGE----- - ---------------------------------------------------------------------- Title: Cumulative Patch for Internet Explorer 324929 Released: 04 December 2002 Revised: 06 December 2002 version 2.0 Software: Microsoftr Internet Explorer Impact: Allow an attacker to...

CVE-2001-0904

Internet Explorer 5.5 and 6 with the Q312461 MS01-055 patch modifies the HTTPUSERAGENT UserAgent information that indicates that the patch has been installed, which could allow remote malicious web sites to more easily identify and exploit vulnerable clients...