42 matches found
EUVD-2022-0160
Malicious code in bioql PyPI...
CVE-2022-41954
MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...
Unspecified vulnerability in FreeBSD (CNVD-2025-09233)
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. FreeBSD has security vulnerabilities, and no detailed vulnerability details are provided at this time...
Unspecified vulnerability in FreeBSD (CNVD-2025-09234)
FreeBSD is a set of Unix-like operating systems from the FreeBSD Foundation. FreeBSD has security vulnerabilities, and no detailed vulnerability details are provided at this time...
EulerOS 2.0 SP9 : cups (EulerOS-SA-2024-2384)
According to the versions of the cups package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the...
CVE-2024-35235
OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. In versions 2.4.8 and earlier, when starting the cupsd server with a Listen configuration item pointing to a symbolic link, the cupsd process can be caused to perform an arbitrary chmod of the...
Webmin cross-site scripting vulnerability (CNVD-2024-06437)
Webmin is the Webmin community's set of Web-based system administration tools for Unix-like operating systems. A cross-site scripting vulnerability exists in Webmin v.2.105 and earlier versions, which stems from the application's lack of effective filtering and escaping of user-supplied data, and...
EulerOS Virtualization 2.9.0 : cups (EulerOS-SA-2023-2978)
According to the versions of the cups package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a...
EulerOS Virtualization 2.9.1 : cups (EulerOS-SA-2023-2952)
According to the versions of the cups package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a...
Oracle Linux 9 : cups (ELSA-2023-6596)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6596 advisory. - CVE-2023-32360 cups: Information leak through Cups-Get-Document operation - CVE-2023-34241 cups: use-after-free in cupsdAcceptClient in...
RHEL 9 : cups (RHSA-2023:6596)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6596 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for Linux, UNIX, and similar operating systems. Security Fixes: cups...
SUSE SLES12: cups / cups-client / cups-ddk / cups-devel / cups-libs / etc (SUSE-SU-2023:3706-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3706-1 advisory. - CVE-2023-4504: Fixed heap overflow in OpenPrinting CUPS Postscript Parsing bsc1215204. - CVE-2023-34241: Fixed a use-after-free...
Huawei EulerOS: Security Advisory for cups (EulerOS-SA-2023-2856)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 37 Update: kernel-6.4.13-100.fc37
The kernel meta package...
EulerOS 2.0 SP9 : cups (EulerOS-SA-2023-2607)
According to the versions of the cups package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - OpenPrinting CUPS is an open source printing system. In versions 2.4.2 and prior, a heap buffer overflow vulnerability would allow a remote attacke...
Fedora 37 : cups (2023-9dbd5b28d4)
The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-9dbd5b28d4 advisory. 2218124 - The command cancel -x does not remove job files 2218123 - Delays printing to lpd when reserved ports are exhausted Security fix for...
CVE-2023-34241 CUPS vulnerable to use-after-free in cupsdAcceptClient()
OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when it should have logged the data...
Temporary File Information Disclosure vulnerability in MPXJ
Impact On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other user on the system can read the contents of this file. When MPXJ is reading a type of schedule file...
CVE-2022-41954 Temporary File Information Disclosure Vulnerability
MPXJ is an open source library to read and write project plans from a variety of file formats and databases. On Unix-like operating systems not Windows or macos, MPXJ's use of File.createTempFile.. results in temporary files being created with the permissions -rw-r--r--. This means that any other...
Webmin Cross-Site Scripting Vulnerability (CNVD-2022-54893)
A cross-site scripting vulnerability exists in Webmin, the Webmin community's Web-based system administration tool for Unix-like operating systems, due to a lack of data validation filtering of user-supplied and output data in the Read Mail module. An attacker could use this vulnerability to crea...