16 matches found
PT-2026-37989
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...
Fedora 42 : python3.12 (2026-3ebfc12a16)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-3ebfc12a16 advisory. Update to 3.12.13 ---- Security fixes for CVE-2026-1299, CVE-2026-0865, CVE-2025-15366 and CVE-2025-15367 Tenable has extracted the preceding...
SUSE-SU-2025:20349-1 Security update for kernel-livepatch-MICRO-6-0_Update_3
This update for kernel-livepatch-MICRO-6-0Update3 fixes the following issues: - CVE-2024-53042: ipv4: iptunnel: Fix suspicious RCU usage warning in iptunnelinitflow bsc1233678 - CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice bsc1234847 - CVE-2024-50115: KVM: nSV...
CVE-2025-40566
A vulnerability has been identified in SIMATIC PCS neo V4.1 All versions V4.1 Update 3, SIMATIC PCS neo V5.0 All versions V5.0 Update 1. Affected products do not correctly invalidate user sessions upon user logout. This could allow a remote unauthenticated attacker, who has obtained the session...
CVE-2024-46889
A vulnerability has been identified in SINEC INS All versions V1.0 SP2 Update 3. The affected application uses hard-coded cryptographic key material to obfuscate configuration files. This could allow an attacker to learn that cryptographic key material through reverse engineering of the applicati...
PT-2023-7778 · Siemens · Opcenter Quality +4
Name of the Vulnerable Software and Affected Versions: Opcenter Execution Foundation versions prior to V2407 Opcenter Quality versions prior to V2312 SIMATIC PCS neo versions prior to V4.1 SINEC NMS versions prior to V2.0 SP1 Totally Integrated Automation Portal TIA Portal V14 Totally Integrated...
CVE-2023-30986
A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain a memory corruption vulnerability while parsing specially crafted STP files. This could allow an attacker to execute code in the...
CVE-2023-21830
Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Serialization. Supported versions that are affected are Oracle Java SE: 8u351, 8u351-perf; Oracle GraalVM Enterprise Edition: 20.3.8 and 21.3.4. Easily exploitable vulnerability allows...
PT-2022-2991 · Adobe · Robohelp Server
Name of the Vulnerable Software and Affected Versions: RoboHelp Server versions earlier than 11 Update 3 Description: The issue is related to an Improper Authorization vulnerability, which could lead to privilege escalation. An authenticated attacker could leverage this vulnerability to achieve...
Veeam Backup&Replication 路径遍历漏洞
Veeam Backup & Replication is a suite of data protection software from the Swiss company Veeam. The software provides backup, replication and recovery for VMware and Hyper-V VMs, physical and cloud environments. A path traversal vulnerability exists in Veeam Backup & Replication 9.5U3, 9.5U4, 10....
OpenJDK: Weak ciphers preferred over stronger ones for TLS (JSSE, 8264210)
Vulnerability in the Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Java SE: 7u311, 8u301, 11.0.12; Oracle GraalVM Enterprise Edition: 20.3.3 and 21.2.0. Difficult to exploit vulnerability allows unauthenticated...
CVE-2021-2432
Vulnerability in the Java SE product of Oracle Java SE component: JNDI. The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this...
Intel VTune Amplifier Elevation of Privilege Vulnerability
Intel VTune Amplifier is a set of performance analysis tools from Intel USA. The product is mainly used for performance analysis of software for high-performance computing, IoT embedded applications, device drivers and game engines. An elevation of privilege vulnerability exists in the installer ...
Geovap Reliance 4 SCADA/HMI Cross-Site Scripting Vulnerability
Geovap Reliance 4 SCADA/HMI is an industrial process and building automation monitoring system from GEOVAP in the Czech Republic. A security vulnerability exists in Geovap Reliance 4 SCADA/HMI 4.7.3 Update 3 and earlier versions. An attacker can exploit the vulnerability to inject arbitrary code...
Micro Focus NetIQ Privileged Account Manager Cross-Site Scripting Vulnerability
Micro Focus NetIQ Privileged Account Manager is a privileged user management solution from Micro Focus UK. The solution protects privileged account access to databases, applications and the cloud. A cross-site scripting vulnerability exists in versions prior to Micro Focus NetIQ Privileged Accoun...
KB4538853 - Cumulative Update 3 for SQL Server 2019
None None...