58 matches found
EUVD-2022-37768
Malicious code in bioql PyPI...
EUVD-2023-26585
Malicious code in bioql PyPI...
EUVD-2025-14627
Malicious code in bioql PyPI...
EUVD-2024-3159
Malicious code in bioql PyPI...
EUVD-2022-38147
Malicious code in bioql PyPI...
EUVD-2024-38957
Malicious code in bioql PyPI...
EUVD-2025-3620
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2024-36931
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: s390/cio: Ensure the copied buf is NUL terminated Currently, we allocate a lbuf-sized kernel...
CVE-2025-43239
An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. Processing a maliciously crafted file may lead to unexpected app termination...
PT-2025-29270 · Unknown · Hax Cms Php +1
Name of the Vulnerable Software and Affected Versions: haxcms-nodejs versions prior to 11.0.6 haxcms-php versions prior to 11.0.6 Description: The logout function does not properly terminate user sessions or clear cookies. A refresh token is issued during logout, potentially allowing continued...
CVE-2025-24163
The issue was addressed with improved checks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iOS 18.4 and iPadOS 18.4, iPadOS 17.7.4, macOS Sequoia 15.3, macOS Sequoia 15.4, macOS Sonoma 14.7.3, tvOS 18.3, tvOS 18.4, visionOS 2.3, visionOS 2.4, watchOS 11.3, watchOS 11.4. Parsing a file may lea...
CVE-2024-48929
Umbraco is a free and open source .NET content management system. In versions on the 13.x branch prior to 13.5.2 and versions on the 10.x branch prior to 10.8.7, during an explicit sign-out, the server session is not fully terminated. Versions 13.5.2 and 10.8.7 contain a patch for the issue...
CVE-2022-24341
In JetBrains TeamCity before 2021.2.1, editing a user account to change its password didn't terminate sessions of the edited user...
CVE-2018-11547
mdislinkreferencedefinitionhelper in md4c 0.2.5 has a heap-based buffer over-read because mdislinklabel mishandles loop termination...
CVE-2009-4593
The bftpdutmplog function in bftpdutmp.c in Bftpd before 2.4 does not place a '\0' character at the end of the string value of the ut.buhost structure member, which might allow remote attackers to cause a denial of service daemon crash via unspecified vectors. NOTE: some of these details are...
F5 BIG-IP 缓冲区错误漏洞
F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, and load balancing from F5 USA. A buffer error vulnerability exists in F5 BIG-IP that stems from a connection mirroring configuration that causes the standby system TMM to...
DEBIAN-CVE-2025-22074
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix rcount dec/increment mismatch rcount is only increased when there is an oplock break wait, so rcount inc/decrement are not paired. This can cause rcount to become negative, which can lead to a problem where the ksmbd...
CVE-2025-30516 Unauthorized Notification Exposure in Mobile App Under Specific Conditions
Mattermost Mobile Apps versions =2.25.0 fail to terminate sessions during logout under certain conditions e.g. poor connectivity, allowing unauthorized users on shared devices to access sensitive notification content via continued mobile notifications...
Azure Linux 3.0 Security Update: mariadb (CVE-2024-5991)
The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-5991 advisory. - In function MatchDomainName, input param str is treated as a NULL terminated string despite being user...
F5 Networks BIG-IP : BIG-IP PEM vulnerability (K000140920)
The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.2. It is, therefore, affected by a vulnerability as referenced in the K000140920 advisory. When URL categorization is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel T...