Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003479)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003479 advisory. Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent...

CVE-2024-50476

Missing Authorization vulnerability in GRÜN Software Group GmbH GRÜN spendino Spendenformular spendino allows Privilege Escalation.This issue affects GRÜN spendino Spendenformular: from n/a through = 1.0.1...

CVE-2024-50476

Missing Authorization vulnerability in GRÜN Software Group GmbH GRÜN spendino Spendenformular spendino allows Privilege Escalation.This issue affects GRÜN spendino Spendenformular: from n/a through = 1.0.1...

CVE-2024-50476 WordPress GRÜN spendino Spendenformular plugin <= 1.0.1 - Arbitrary Option Update to Privilege Escalation vulnerability

Missing Authorization vulnerability in GRÜN Software Group GmbH GRÜN spendino Spendenformular spendino allows Privilege Escalation.This issue affects GRÜN spendino Spendenformular: from n/a through = 1.0.1...

CVE-2024-50476

CVE-2024-50476 affects the WordPress plugin GRÜN spendino Spendenformular (

Citrix Workspace app for Windows Security Bulletin CVE-2024-6286

Description of Problem A vulnerability has been discovered that impacts the Citrix Workspace app for Windows. Refer to below for further details: Affected Versions The vulnerability affects the following supported versions of the Citrix Workspace app for Windows Current Release CR Citrix Workspac...

Citrix Provisioning Security Bulletin CVE-2024-6150

Description of Problem A vulnerability has been discovered that impacts Citrix Provisioning. Refer to below for further details: Affected Versions The vulnerability affects the following supported versions of Citrix Provisioning Current Release CR Citrix Provisioning versions before 2402 Long Ter...

Cloud Software Group Security Advisory for CVE-2024-6387

Advisory for 3rd party CVE-2024-6387 Cloud Software Group is aware of the vulnerability CVE-2024-6387 impacting OpenSSH. Qualys has discovered a remote unauthenticated code execution vulnerability in OpenSSH’s server sshd in glibc-based Linux systems. Because this vulnerability is a regression of...

Impact of HTTP/2 CONTINUATION frames being utilized for DoS attacks on Cloud Software Group Products

Cloud Software Group is aware of the reports describing HTTP/2 CONTINUATION frames being utilized for DoS attacks. HTTP/2 CONTINUATION frames can be utilized for DoS attacks HTTP/2 CONTINUATION Flood Cloud Software Group continues to investigate any potential impact on Cloud Software Group-manage...

CVE-2023-25295

CVE-2023-25295 describes a Cross Site Scripting (XSS) in GRUEN eVEWA3 Community, affecting versions 31 through 53, via the file evewa3ajax.php . The vulnerability allows an attacker to escalate privileges by sending a crafted request to the login panel. Reports consistently identify the vulnerabl...

GRN Software Group eVEWA3 Community Cross-Site Scripting Vulnerability

GRN Software Group eVEWA3 Community is a software application from GRN Software Group, Inc. to address management and billing issues on the Internet. A cross-site scripting vulnerability exists in GRN Software Group eVEWA3 Community versions 31 through 53, which stems from the presence of a...

Impact of Chromium vulnerabilities CVE-2023-4863 and CVE-2023-5217 on Cloud Software Group products

Cloud Software Group will continue to update this post as additional information becomes available. Summary Google Chromium Heap-Based Buffer Overflow Vulnerability Cloud Software Group is aware of the vulnerabilities CVE-2023-4863 and CVE-2023-5217 that impact Chromium. CVE-2023-4863 description...

K24578092: Linux kernel vulnerability CVE-2017-6001

Security Advisory Description Race condition in kernel/events/core.c in the Linux kernel before 4.9.7 allows local users to gain privileges via a crafted application that makes concurrent perfeventopen system calls for moving a software group into a hardware context. NOTE: this vulnerability exis...

SUSE CVE-2013-4254

The validateevent function in arch/arm/kernel/perfevent.c in the Linux kernel before 3.10.8 on the ARM platform allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash by adding a hardware event to an event group led by a software event...

Information leakage vulnerability in the smart hospital system of Shenzhen Coordinate Software Group Co.

Shenzhen Coordinate Software Group Co., Ltd. covers medical informatization eco-products smart hospitals, internet healthcare, regional medical consortium/medical community platforms, medical big data and solutions around this system. Shenzhen Coordinate Software Group Limited smart hospital syst...

Command Execution Vulnerability in Wisdom Notes Software

Developed by YouShang.com, an e-commerce service website under Kingdee International Software Group HK Code: 268, WisdomJournal is China's first free management software tailored for individual merchants to manage their sales and inventories, with the core value of "accurate quotes and clear...

SpyHunter 4 - SpyHunter 4 Service Unquoted Service Path

SpyHunter 4 - SpyHunter 4 Service Unquoted Service Path Exploit Title: SpyHunter 4 - 'SpyHunter 4 Service' Unquoted Service Path Discovery by: Alejandro Reyes Discovery Date: 2020-03-05 Vendor Homepage: https://www.enigmasoftware.com Software Link :...

SpyHunter 4 Unquoted Service Path

Exploit Title: SpyHunter 4 - 'SpyHunter 4 Service' Unquoted Service Path Discovery by: Alejandro Reyes Discovery Date: 2020-03-05 Vendor Homepage: https://www.enigmasoftware.com Software Link : https://www.enigmasoftware.com/spyhunter-download-instructions/ Tested Version: 4 Vulnerability Type:...

SpyHunter 4 - &#039;SpyHunter 4 Service&#039; Unquoted Service Path

Exploit Title: SpyHunter 4 - 'SpyHunter 4 Service' Unquoted Service Path Discovery by: Alejandro Reyes Discovery Date: 2020-03-05 Vendor Homepage: https://www.enigmasoftware.com Software Link : https://www.enigmasoftware.com/spyhunter-download-instructions/ Tested Version: 4 Vulnerability Type:...

SpyHunter 4 - (SpyHunter 4 Service) Unquoted Service Path Vulnerability

Exploit Title: SpyHunter 4 - 'SpyHunter 4 Service' Unquoted Service Path Discovery by: Alejandro Reyes Vendor Homepage: https://www.enigmasoftware.com Software Link : https://www.enigmasoftware.com/spyhunter-download-instructions/ Tested Version: 4 Vulnerability Type: Unquoted Service Path Tested...