15 matches found
Ubuntu: Security Advisory (USN-7685-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
tomcat11-11.0.8-1.1 on GA media (moderate)
tomcat11-11.0.8-1.1 on GA media Announcement ID: openSUSE-SU-2025:15303-1 Rating: moderate Cross-References: CVE-2025-46701 CVE-2025-48988 CVE-2025-49125 CVSS scores: CVE-2025-46701 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N CVE-2025-46701 SUSE : 6.3...
CVE-2022-50001
In the Linux kernel, the following vulnerability has been resolved: netfilter: nfttproxy: restrict to prerouting hook TPROXY is only allowed from prerouting, but nfttproxy doesn't check this. This fixes a crash null dereference when using tproxy from e.g. output...
Mozilla Firefox Security Update (mfsa_2025-42) - Windows
Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...
govulncheck-vulndb-0.0.20250515T200012-1.1 on GA media (moderate)
govulncheck-vulndb-0.0.20250515T200012-1.1 on GA media Announcement ID: openSUSE-SU-2025:15135-1 Rating: moderate Cross-References: CVE-2024-52290 CVE-2024-8063 CVE-2025-3757 CVE-2025-3931 CVE-2025-4432 CVE-2025-46331 CVE-2025-4658 CVE-2025-46721 CVE-2025-46735 CVE-2025-46815 CVE-2025-46816...
Debian: Security Advisory (DLA-4118-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
chromedriver-132.0.6834.83-1.1 on GA media (moderate)
chromedriver-132.0.6834.83-1.1 on GA media Announcement ID: openSUSE-SU-2025:14659-1 Rating: moderate Cross-References: CVE-2025-0434 CVE-2025-0435 CVE-2025-0436 CVE-2025-0437 CVE-2025-0438 CVE-2025-0439 CVE-2025-0440 CVE-2025-0441 CVE-2025-0442 CVE-2025-0443 CVE-2025-0446 CVE-2025-0447...
SDL2_sound-devel-2.0.4-1.1 on GA media (moderate)
SDL2sound-devel-2.0.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:14642-1 Rating: moderate Cross-References: CVE-2023-45676 CVE-2023-45677 CVE-2023-45681 Affected Products: openSUSE Tumbleweed An update that solves 3 vulnerabilities can now be installed. Description: These are all security...
CVE-2024-49928
In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid reading out of bounds when loading TX power FW elements Because the loop-expression will do one more time before getting false from cond-expression, the original code copied one more entry size beyond valid...
CVE-2024-47735
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix spinunlockirqrestore called with IRQs enabled Fix missuse of spinlockirq/spinunlockirq when spinlockirqsave/spinlockirqrestore was hold. This was discovered through the lock debugging, and the corresponding log is a...
Multiple CVEs identified by vulnerability scanning tools addressed via Brocade ASCG v3.1.0
ASCG v3.1.0 utilizes Rocky Linux version 8.10, addressing a number of potential security vulnerabilities. A complete list of CVEs reported by Rocky Linux as being addressed in this update are provided in the ASCG v3.1.0 Release Notes. In addition, a number of CVEs identified via internal security...
Microsoft Windows 10 1903 SEoL
Microsoft Windows 10 1903 is no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...
MGASA-2016-0318 Updated libarchive packages fix security vulnerability
The updated packages fix several security vulnerabilities: A flaw was found in the way libarchive handled hardlink archive entries of non-zero size. Combined with flaws in libarchive's file system sandboxing, this issue could cause an application using libarchive to overwrite arbitrary files with...
bash (important)
The command-line shell 'bash' evaluates environment variables, which allows the injection of characters and might be used to access files on the system in some circumstances CVE-2014-7169. Please note that this issue is different from a previously fixed vulnerability tracked under CVE-2014-6271 a...
candypress ecommerce suite 4.1.1.26 Multiple Vulnerabilities
No description provided by source. WwW.BugReport.ir AmnPardaz Security Research & Penetration Testing Group Title: CandyPress eCommerce suite Vendor: http://www.candypress.com/ Bugs: SQL Injection + XSS + Path Disclosure in CandyPress Vulnerable Version: 4.1.1.26 Exploit: Available Fix Available:...