13 matches found
CVE-2026-48918
Jenkins Active Directory Plugin 2.41 and earlier follows LDAP referrals by default...
EUVD-2026-32510
Jenkins Active Directory Plugin 2.41 and earlier deserializes data from LDAP referrals without validation...
CVE-2026-8275
A vulnerability was detected in bettercap up to 2.41.5. Affected by this vulnerability is the function ippReadChunkedBody of the file modules/zerogod/zerogodippprimitives.go of the component zerogod IPP Service. Performing a manipulation results in integer coercion error. The attack can be...
CVE-2025-69648 affecting package binutils for versions less than 2.41-11
CVE-2025-69648 affecting package binutils for versions less than 2.41-11. A patched version of the package is available...
CVE-2025-69649 affecting package binutils for versions less than 2.41-11
CVE-2025-69649 affecting package binutils for versions less than 2.41-11. A patched version of the package is available...
CVE-2025-69647 affecting package binutils for versions less than 2.41-11
CVE-2025-69647 affecting package binutils for versions less than 2.41-11. A patched version of the package is available...
CVE-2025-1147 affecting package binutils for versions less than 2.41-11
CVE-2025-1147 affecting package binutils for versions less than 2.41-11. A patched version of the package is available...
gcc-toolset-14-binutils security update
2.41-3.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130636 Thu Feb 20 2025 Nick Clifton - Backport fixes for PR 32082 and PR 32153 in order to fix the PR 20267 linker tests. 2.41-3 - NVR Bump to allow rebuilding with GTS-14 gcc. RHEL-53519 2.41-2 - Fix s390x...
TencentOS Server 3: glibc (TSSA-2025:0993)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0993 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
CVE-2025-67487 Static Web Server is vulnerable to symbolic link Path Traversal
Static Web Server SWS is a production-ready web server suitable for static web files or assets. Versions 2.40.0 and below contain symbolic links symlinks which can be used to access files or directories outside the intended web root folder. SWS generally does not prevent symlinks from escaping th...
EUVD-2025-150360
Frappe Learning is a learning system that helps users structure their content. Starting in version 2.0.0 and prior to version 2.41.0, when admins revoked a role from the user, the effect was not immediate because of caching. The issue has been fixed in version 2.41.0 by ensuring the cache is...
Git for Windows 代码问题漏洞
Git for Windows is Git's Git for Windows. A code issue vulnerability exists in Git for Windows versions prior to 2.40.1, which stems from the fact that any authenticated user can create etc...
PT-2023-2928 · Git +10 · Git +10
Name of the Vulnerable Software and Affected Versions: Git versions prior to 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1 Description: The issue is related to insufficient neutralization of special elements in a request, which can allow an attacker to...