CVE-2024-30129 HCL Nomad server on Domino is affected by a host header injection vulnerability

The HTTP host header can be manipulated and cause the application to behave in unexpected ways. Any changes made to the header would cause the request to be sent to a completely different domain/IP address...

CVE-2024-5535

Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty supported client protocols buffer may cause a crash or memory contents to be sent to the peer. Impact summary: A buffer overread can have a range of potential consequences such as unexpected application beahviour or ...

Unspecified Vulnerability in Siemens XHQ

Siemens XHQ Production Operations Intelligence is Siemens Energy's flagship solution and is widely deployed by the world's largest oil & gas and chemical companies. An unspecified vulnerability exists in Siemens XHQ, which can be exploited by an attacker to cause an application to run in an...

Amazon Linux AMI : glibc (ALAS-2016-660)

It was discovered that the calloc implementation in glibc could return memory areas which contain non-zero bytes. This could result in unexpected application behavior such as hangs or crashes. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...