CVE-2026-26352

Affected product/versions: Smoothwall Express

SUSE-SU-2026:20986-1 Security update for postgresql13

This update for postgresql13 fixes the following issues: Security fixes: - CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS allowed table owners to create statistics in any schema, potentially leading to unexpected naming conflicts bsc1253332 -...

SUSE CVE-2025-66400

mdast-util-to-hast is an mdast utility to transform to hast. From 13.0.0 to before 13.2.1, multiple unprefixed classnames could be added in markdown source by using character references. This could make rendered user supplied markdown code elements appear like the rest of the page. This...

openSUSE Security Advisory (SUSE-SU-2025:4325-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2025-36327

IBM QRadar SIEM 7.5 through 7.5.0 Update Pack 13 Independent Fix 02 is vulnerable to stored cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure...

SUSE-SU-2025:20911-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_13

This update for kernel-livepatch-MICRO-6-0-RTUpdate13 fixes the following issues: - New livepatch SLE Micro 6.0 kernel update 13...

SUSE-SU-2025:20871-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_13

This update for kernel-livepatch-MICRO-6-0-RTUpdate13 fixes the following issues: - New livepatch SLE Micro 6.0 kernel update 13...

CVE-2025-33120

IBM QRadar SIEM 7.5 through 7.5.0 UP13 could allow an authenticated user to escalate their privileges via a misconfigured cronjob due to execution with unnecessary privileges...

SUSE-SU-2025:01705-1 Security update for postgresql13

This update for postgresql13 fixes the following issues: Upgrade to 13.21: - CVE-2025-4207: Fixed PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation bsc1242931 Changelog: https://www.postgresql.org/docs/release/13.21/...

Microsoft SQL Server Security Vulnerability

Microsoft SQL Server is a large commercial database system from Microsoft Corporation USA that is used under Microsoft Windows. A security vulnerability exists in Microsoft SQL Server. An attacker exploiting this vulnerability could remotely execute code. The following products and editions are...

Microsoft Exchange Server Security Vulnerability

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides email access, storage, forwarding, voice mail, email filtering and screening. A security vulnerability exists in Microsoft Exchange Server. The vulnerability is exploited by...

PT-2023-23934 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.5 Description: A logic issue was addressed with improved state management, allowing a user to potentially read information belonging to another user. Recommendations: For versions prior to 13.5, update to macOS...

PT-2023-21630 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: A buffer overflow issue was addressed with improved memory handling, which may allow an app to cause unexpected system termination or write kernel memory. Recommendations: For versions prior to 13.3,...

SUSE CVE-2013-1484

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Libraries...

SUSE CVE-2013-1485

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Libraries...

PT-2021-20439 · Siemens · Teamcenter Visualization +1

Name of the Vulnerable Software and Affected Versions: JT2Go versions prior to V13.2 Teamcenter Visualization versions prior to V13.2 Description: A vulnerability has been identified in the BMP Loader.dll library, which lacks proper validation of user-supplied data when parsing BMP files. This...

KB4019099 - Cumulative Update 13 for SQL Server 2014 SP1

KB4019099 - Cumulative Update 13 for SQL Server 2014 SP1 Cumulative Update 13 CU13 for Microsoft SQL Server 2014 Service Pack 1 SP1 was also released as a SQL Server Security Bulletin on 8/8/2017 KB 4032542. See CVE-2017-8516 for more information. Because of this, you may already have CU13...

Nablarch Denial of Service Vulnerability

Nablarch is a Java application framework based on the middleware model . A security vulnerability exists in Nablarch versions 5, 5u1, and 5u13. A remote attacker could exploit the vulnerability to disclose information or cause a system shutdown...

Adobe ColdFusion Cross-Site Scripting Vulnerability (CNVD-2018-10342)

Adobe ColdFusion is the United States of America Audobee Adobe a dynamic Web server products, which runs the CFML ColdFusion Markup Language is a programming language for Web applications. A cross-site scripting vulnerability exists in Adobe ColdFusion released in 2016 Update 5 and earlier versio...

PT-2018-16643 · Adobe · Coldfusion

Name of the Vulnerable Software and Affected Versions: Adobe ColdFusion versions Update 5 and earlier Adobe ColdFusion 11 versions Update 13 and earlier Description: The issue is related to an exploitable Unsafe XML External Entity Processing. Successful exploitation could lead to information...