EulerOS 2.0 SP13 : perl (EulerOS-SA-2025-1695)

According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions...

Security Bulletin: AIX is vulnerable to denial of service and possible code execution due to Perl (CVE-2024-8176, CVE-2024-56406)

Summary Vulnerability in AIX's Perl could allow an attacker to cause a denial of service and possibly execute code CVE-2024-8176, CVE-2024-56406. AIX uses Perl in various operating system components. Vulnerability Details CVEID:CVE-2024-8176 DESCRIPTION: A stack overflow vulnerability exists in t...

Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 : Godot Engine vulnerabilities (USN-7579-1)

The remote Ubuntu 20.04 LTS / 22.04 LTS / 24.04 LTS / 24.10 / 25.04 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7579-1 advisory. It was discovered that the Godot Engine did not properly handle certain malformed WebM media files. If the Godot...

CVE-2025-20260

CVE-2025-20260 affects ClamAV PDF scanning; root cause is incorrect memory buffer handling when processing PDF files, leading to potential buffer overflow, DoS, or arbitrary code execution on the affected device. Public references describe a vulnerability in the PDF file parser with impact includ...

TencentOS Server 3: libX11 (TSSA-2024:0180)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0180 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

Ubuntu 16.04 LTS / 18.04 LTS : libsoup vulnerabilities (USN-7565-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7565-1 advisory. It was discovered that libsoup did not correctly handle memory while performing UTF-8 conversions. An attacker could possibly use this issue ...

EulerOS 2.0 SP11 : perl (EulerOS-SA-2025-1673)

According to the versions of the perl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions...

CVE-2025-2474

Out-of-bounds write in the PCX image codec in QNX SDP versions 8.0, 7.1 and 7.0 could allow an unauthenticated attacker to cause a denial-of-service condition or execute code in the context of the process using the image codec...

CyberData 011209 SIP Emergency Intercom

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to disclose sensitive information, cause a denial-of-service condition, or achieve code execution. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation...

CVE-2023-26450

The "OX Count" web service did not specify a media-type when processing responses by external resources. Malicious script code can be executed within the victims context. This can lead to session hijacking or triggering unwanted actions via the web interface and API. To exploit this an attacker...

CVE-2023-41727

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

CVE-2023-46257

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

CVE-2021-26237

FastStone Image Viewer = 7.5 is affected by a user mode write access violation at 0x00402d7d, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service DoS or possibly to achieve code execution...

CVE-2021-40568

A buffer overflow vulnerability exists in Gpac through 1.0.1 via a malformed MP4 file in the svcparseslice function in avparsers.c, which allows attackers to cause a denial of service, even code execution and escalation of privileges...

CVE-2020-6985

In Moxa PT-7528 series firmware, Version 4.0 or lower, and PT-7828 series firmware, Version 3.9 or lower, these devices use a hard-coded service code for access to the console...

CVE-2020-13452

In Gotenberg through 6.2.1, insecure permissions for tini writable by user gotenberg potentially allow an attacker to overwrite the file, which can lead to denial of service or code execution...

CVE-2019-13582

An issue was discovered in Marvell 88W8688 Wi-Fi firmware before version p52, as used on Tesla Model S/X vehicles manufactured before March 2018, via the Parrot Faurecia Automotive FC6050W module. A stack overflow could lead to denial of service or arbitrary code execution...

Ubuntu 22.04 LTS / 24.04 LTS : 7-Zip vulnerabilities (USN-7438-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7438-1 advisory. Igor Pavlov discovered that 7-Zip had several memory-related issues. An attacker could possibly use these issues to cause 7-Zip to crash,...

CVE-2024-56406

A heap buffer overflow vulnerability was discovered in Perl. Release branches 5.34, 5.36, 5.38 and 5.40 are affected, including development versions from 5.33.1 through 5.41.10. When there are non-ASCII bytes in the left-hand-side of the tr operator, Sdotransinvmap can overflow the destination...

CVE-2025-32743

CVE-2025-32743 affects ConnMan up to version 1.44. The vulnerability is in dnsproxy.c: ns_resolv lookup string can be NULL or empty when the DNS response sets the TC (Truncated) bit. This can cause denial of service (application crash) and potentially arbitrary code execution due to incorrect len...