MINI-HPR3-3656-76RH

Bulletin has no description...

PT-2026-21578

Name of the Vulnerable Software and Affected Versions free5gc UDM versions up to and including 1.4.1 Description The UDM component of free5gc, used for Unified Data Management in 5G mobile core networks, discloses detailed internal error messages to remote clients when processing invalid...

CVE-2025-61547

Cross-Site Request Forgery CSRF is present on all functions in edu Business Solutions Print Shop Pro WebDesk version 18.34 fixed in 19.76. The application does not implement proper CSRF tokens or other other protective measures, allowing a remote attacker to trick authenticated users into...

Malicious code in aril-76 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 31ef139d50b97f982a8449e25625e946b5f147806f7cce9b39ebf8fdbcb40218 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

Linux Distros Unpatched Vulnerability : CVE-2020-12396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Mozilla developers and community members reported memory safety bugs present in Firefox 75. Some of these bugs showed evidence of memory corruption and we presu...

CVE-2025-2076

creationtimestamp| type| source ---|---|--- 2025-03-12 03:44:29+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7264...

AZL-55715 CVE-2024-53170 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: block: fix uaf for flush rq while iterating tags blkmqclearflushrqmapping is not called during scsi probe, by checking blkqueueinitdone. However, QUEUEFLAGINITDONE is cleared in delgendisk by commit aec89dc5d421 "block: keep...

Ghost Security Breach

Ghost CMS is an open source headless content management system CMS written in JavaScript from the Ghost Foundation in Singapore. A security vulnerability exists in Ghost versions prior to 5.76.0. An attacker exploited the vulnerability to perform cross-site scripting attacks...

Webpack 安全漏洞

Webpack is a module packager. Its primary purpose is to bundle JavaScript files for use in the browser, but it is also capable of converting, bundling, or packaging almost any resource or asset. A security vulnerability exists in Webpack version 5 up to and including 5.76.0 that stems from not...

SUSE CVE-2020-12390

Incorrect origin serialization of URLs with IPv6 addresses could lead to incorrect security checks. This vulnerability affects Firefox 76...

SUSE CVE-2020-12391

Documents formed using data: URLs in an OBJECT element failed to inherit the CSP of the creating context. This allowed the execution of scripts that should have been blocked, albeit with a unique opaque origin. This vulnerability affects Firefox 76...

PT-2022-35228 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.76 Description: A possible memory leak was identified in the hnae ae register function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior ...

PT-2022-35229 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.76 Description: A race condition exists in the qdisc graft function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior to v5.15.76, update...

PT-2022-35249 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.76 Description: The issue concerns a fix for writes in a read-only memory region in the cpufreq qcom driver. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...

PT-2022-35235 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.76 Description: The issue is related to a potential security vulnerability in the cifs ses add channel function, which may cause an xid leak. The actual impact and attack plausibility have not yet been...

PT-2020-15477 · Jenkins · Jenkins Email Extension Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Email Extension Plugin versions 2.75 and earlier Description: The issue is related to the lack of hostname validation when connecting to the configured SMTP server. This could be exploited using a man-in-the-middle attack to intercept...

Mozilla Firefox Input Validation Error Vulnerability (CNVD-2020-34652)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in versions of Mozilla Firefox prior to 76. An attacker could exploit the vulnerability to bypass content security policies...

Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8

Memory safety flaws were found in Mozilla Firefox and Thunderbird. Memory corruption that an attacker could leverage with enough effort, could allow arbitrary code to run. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8

Memory safety flaws were found in Mozilla Firefox and Thunderbird. Memory corruption that an attacker could leverage with enough effort, could allow arbitrary code to run. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...

Mozilla: Memory safety bugs fixed in Firefox 76 and Firefox ESR 68.8

Memory safety flaws were found in Mozilla Firefox and Thunderbird. Memory corruption that an attacker could leverage with enough effort, could allow arbitrary code to run. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability...