PowerDNS DNSdist 输入验证错误漏洞

PowerDNS DNSdist is a proxy software provided by PowerDNS, which offers capabilities for DNS traffic load balancing and security protection. PowerDNS DNSdist has a vulnerability related to input validation errors. This vulnerability arises when clients may send a large number of precisely timed...

EUVD-2025-36648

Jenkins Eggplant Runner Plugin protection mechanism disabled...

CVE-2025-64135

Jenkins Eggplant Runner Plugin 0.0.1.301.v963cffe8ddb8 and earlier sets the Java system property jdk.http.auth.tunneling.disabledSchemes to an empty value, disabling a protection mechanism of the Java runtime...

EUVD-2017-18262

Malware in sbrugna...

EUVD-2021-24329

Malware in sbrugna...

EUVD-2016-8880

Malware in sbrugna...

EUVD-2019-15723

Malware in sbrugna...

EUVD-2022-35160

Malicious code in bioql PyPI...

CVE-2025-7396

In wolfSSL release 5.8.2 blinding support is turned on by default for Curve25519 in applicable builds. The blinding configure option is only for the base C implementation of Curve25519. It is not needed, or available with; ARM assembly builds, Intel assembly builds, and the small Curve25519...

Exploit for Code Injection in Langflow

CVE-2025-3248 Langflow RCE Scanner 🔍 Description A powerf...

RHSA-2025:8844 Red Hat Security Advisory: mod_security security update

Bulletin has no description...

[SECURITY] Fedora 42 Update: mod_security-2.9.9-1.fc42

ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks...

openSUSE Security Advisory (SUSE-SU-2025:1180-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Hackers Hide VenomRAT Malware Inside Virtual Hard Disk Image File

Hackers are using .VHD files to spread VenomRAT malware, bypassing security software, reveals Forcepoint X-Labs. Learn how this stealthy attack works and how to protect yourself...

About the security content of visionOS 2.3.2

About the security content of visionOS 2.3.2 This document describes the security content of visionOS 2.3.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are...

CVE-2024-23636

SOFARPC is a Java RPC framework. SOFARPC defaults to using the SOFA Hessian protocol to deserialize received data, while the SOFA Hessian protocol uses a blacklist mechanism to restrict deserialization of potentially dangerous classes for security protection. But, prior to version 5.12.0, there i...

What We Know About CVE-2024-49112 and CVE-2024-49113

This blog entry provides an overview of CVE-2024-49112 and CVE-2024-49113 and includes information that IT and SOC professionals need to know to stay protected against possible exploitation...

Python Malware in Zebo-0.1.0 and Cometlogger-0.1 Found Stealing User Data

Fortinet discovers two malicious Python packages, Zebo-0.1.0 and Cometlogger-0.1, designed to steal data, capture keystrokes, and gain system control. Learn about their malicious behavior and how to protect yourself...

XSS Vulnerability in Mingguo Security Gateway of Hangzhou ACE Information Technology Co.

MingGuard Security Gateway is a next-generation security protection system with full-process defense, which is an intelligent gateway integrating traditional firewall, intrusion prevention system, anti-virus gateway, Internet behavior control, VPN gateway, threat intelligence and other security...

CVE-2024-46983

CVE-2024-46983 affects sofa-hessian (SOFA Hessian) where a gadget chain bypasses the blacklist that restricts deserialization. The vulnerability enables a dangerous chain using only JDK classes, with no third-party component reliance stated. The issue is addressed by updating the blacklist; upgra...