EUVD-2016-9684

Malware in sbrugna...

EUVD-2024-45512

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-39790

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE...

DEBIAN-CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

UBUNTU-CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

CVE-2025-39790

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the TREs between it and...

CVE-2025-39790

CVE-2025-39790 : In the Linux kernel, the bus: mhi: host implementation could mis-handle completion events when a device points a TRE pointer ahead of the host’s ring read pointer, enabling a window where a stale TRE is read and its buffer freed twice. The published description documents that thi...

PT-2025-18405

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists between mhi unprepare from transfer and mhi queue buf functions. When a client driver uses mhi unprepare from transfer to quiesce incoming data during its teardow...

CVE-2024-51713

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TRe Technology And Research S.r.l. HQ60 Fidelity Card hq60-fidelity-card allows Reflected XSS.This issue affects HQ60 Fidelity Card: from n/a through = 1.8...

CVE-2024-51713

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TRe Technology And Research S.r.l. HQ60 Fidelity Card hq60-fidelity-card allows Reflected XSS.This issue affects HQ60 Fidelity Card: from n/a through = 1.8...

CVE-2024-51713 WordPress HQ60 Fidelity Card plugin <= 1.8 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in TRe Technology And Research S.r.l. HQ60 Fidelity Card hq60-fidelity-card allows Reflected XSS.This issue affects HQ60 Fidelity Card: from n/a through = 1.8...

CVE-2024-51713

CVE-2024-51713 is a reflected XSS vulnerability in HQ60 Fidelity Card (TRe Technology And Research S.R.L) plugin. Affected: HQ60 Fidelity Card from n/a to 1.8. Reported CVSS 3.1 (7.1, HIGH) with NETWORK attack vector, UI interaction required. No explicit mitigation or fix details are provided in ...

CVE-2024-26827

A flaw was found in the Linux kernel. An incorrect TRE sequence in the gpidrivers/dma/qcom/gpi.c driver may lead to compromised availability...

CVE-2024-26827

CVE-2024-26827 entry is rejected/withdrawn by the CVE Numbering Authority and not an active vulnerability entry.

@miniflare/tre (=3.0.0-next.14), miniflare (>=0.20230628.0 <=0.20230908.0) +1 more potentially affected by CVE-2023-2512 via workerd (>=0.20230628.0 <=1.20230404.0)

workerd NPM version =0.20230628.0, =0.20230628.0, =0.0.0-3f61892d, =0.0.0-bcdc1fe5 Source cves: CVE-2023-2512 Source advisory: OSV:GHSA-8VX6-69VG-C46F...

Debian: Security Advisory (DLA-687-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2016-8859

Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of 1 states or 2 tags, which triggers an out-of-bounds write...

tre-deutschland.de Cross Site Scripting vulnerability OBB-3001143

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Mageia: Security Advisory (MGASA-2016-0395)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...