106 matches found
BELL-CVE-2025-37851
Bulletin has no description...
RHSA-2025:4508 Red Hat Security Advisory: libsoup security update
Bulletin has no description...
GHSA-Q8JQ-4RM5-4HM5 @alizeait/unflatto Prototype Pollution
Impact alizeait unflatto = 1.0.2 was discovered to contain a prototype pollution via the method exports.unflatto at /dist/index.js. This vulnerability allows attackers to execute arbitrary code or cause a Denial of Service DoS via injecting arbitrary properties. Patches The problem has been patch...
RHSA-2025:3336 Red Hat Security Advisory: podman security update
Bulletin has no description...
GO-2025-3542 LocalAI Cross-Site Scripting (XSS) vulnerability in its search functionality in github.com/mudler/LocalAI
LocalAI Cross-Site Scripting XSS vulnerability in its search functionality in github.com/mudler/LocalAI. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...
01os (>=0.0.1 <=0.0.13), aeiva (>=0.8.1 <=0.8.2.6) +167 more potentially affected by CVE-2024-8984 via litellm (>=0.1.400 <=1.56.10)
litellm PYPI version =0.1.400, =0.0.1, =0.8.1, =0.14.1a0, =0.0.5, =1.1.2, =0.0.4, =0.1.1, =0.5.0, =1.0.3, =0.2.0, =0.29.0, =0.59.1, =0.1.5, =1.1.1 - aigrok =0.2.1 - aijson-ml =0.1.1 and more Source cves: CVE-2024-8984 Source advisory: OSV:GHSA-FH2C-86XM-PM2X...
BELL-CVE-2025-27834
Bulletin has no description...
RHSA-2025:1914 Red Hat Security Advisory: OpenShift Container Platform 4.17.19 packages and security update
Bulletin has no description...
GHSA-PG9C-X6HJ-PGX5 vulnerabilities
Vulnerabilities for packages: mysql...
BELL-CVE-2024-45775
Bulletin has no description...
Intel Ethernet Adapter Complete Driver Pack Software Advisory - Lenovo Support US
No description provided...
CVE-2020-11847
SSH authenticated user when access the PAM server can execute an OS command to gain the full system access using bash. This issue affects Privileged Access Manager before 3.7.0.1...
RHSA-2025:0923 Red Hat Security Advisory: buildah security update
Bulletin has no description...
RHSA-2025:0848 Red Hat Security Advisory: libsoup security update
Bulletin has no description...
RHSA-2025:0823 Red Hat Security Advisory: traceroute security update
Bulletin has no description...
Advisory ROSA-SA-2025-2644
Software: fonttools 4.28.5 WASP: ROSA-CHROME packageevrstring: fonttools-4.28.5 CVE-ID: CVE-2023-45139 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: An XML External Entity Injection XXE vulnerability in the fontTools library allows an attacker to access arbitrary files or execute web requests. CVE-STATU...
Advisory ROSA-SA-2025-2568
software: dnsmasq 2.90 WASP: ROSA-CHROME packageevrstring: dnsmasq-2.90-1 CVE-ID: CVE-2023-50387 BDU-ID: 2024-01359 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the DNSSEC component of the DNS protocol implementation of the DNS server BIND is related to the algorithmic complexity and unrestricted...
aau-gomapedge-etl (=0.4.1), altimate-dataminion (>=0.0.11 <=0.0.20) +45 more potentially affected by CVE-2024-41672 via duckdb (=1.0.0)
duckdb PYPI version =1.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on duckdb and may be impacted: - aau-gomapedge-etl =0.4.1 - altimate-dataminion =0.0.11, =0.3.0.2, =0.14.0, =2.2.1, =0.2.2, =0.10.23, =0.10.0, =0.1.3, =1.0.1, =0.3.0, =0.7.3 and mo...
RHSA-2025:0310 Red Hat Security Advisory: raptor2 security update
Bulletin has no description...
BELL-CVE-2024-56698
Bulletin has no description...