CVE-2026-43366

Summary: CVE-2026-43366 affects the Linux kernel’s io_uring/kbuf recycling path. A gap existed between when a buffer was grabbed and when it could be recycled; if the target list is empty, it could be upgraded to a ring-provided type without proper validation. The issue arises from missing checks...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2024-12147

A vulnerability was found in Netgear R6900 1.0.1.261.0.20. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file upgradecheck.cgi of the component HTTP Header Handler. The manipulation of the argument Content-Length leads to buffer overflow. The...

PT-2024-9998 · NetGear · Netgear R6900P

Name of the Vulnerable Software and Affected Versions: Netgear R6900 version 1.0.1.26 1.0.20 Description: A critical vulnerability has been found in the Netgear R6900 router, affecting an unknown functionality of the file upgrade check.cgi in the HTTP Header Handler component. The manipulation of...

Moderate: Red Hat Security Advisory: Satellite 6.10 Release

An update is now available for Red Hat Satellite 6.10 for RHEL 7. Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Security Fixes: python-ecdsa...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

UBUNTU-CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

Design/Logic Flaw

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyModeQSslSocket::VerifyNone. A man-in-the-middle attacker could offer a spoofed download resource...

CVE-2020-24619

CVE-2020-24619 affects Shotcut prior to 20.09.13, where an upgrade check misuses TLS via setPeerVerifyMode(QSslSocket::VerifyNone) in mainwindow.cpp. This enables a man-in-the-middle to offer a spoofed download resource. The Red Hat, Ubuntu, Ubuntu OSV, and other entries in the connected set corr...

Veeam Availability Console 3.0 upgrade considerations

Challenge Under certain circumstances upgrade to Veeam Availability Console v3 may fail leaving configuration database in a non-consistent state Cause The issue occurs when one or more tenants from the underlying Cloud Connect server have duplicated backup quotas on the repository. Solution Befor...

Fast Breakfast App Upgrade Checked for Design Logic Flaws

Fast Breakfast App is a mobile service that can help you buy breakfast. A design logic vulnerability exists in the upgrade check of Fast Breakfast APP. Due to lax upgrade request checking in Fast Breakfast APP, attackers are allowed to exploit the vulnerability to install malicious programs...

Security Advisory-Two Security Vulnerabilities in the ME906 Wireless Module

ME906 is a mobile Internet access module. The module supports LTE, WCDMA, EVDO, and GSM. The product uses the M.2 interface, supports Windows 7 and Windows 8.1, and is intended for laptop and tablet OEM. This security advisory SA describes the impact of two vulnerabilities. These vulnerabilities...

SCVMM 2008 R2 Administrator Console (64 bit)

This detects if the Microsoft System Center Virtual Machine Manager 2008 R2 Administrator Console product is installed. This is 64 bit only. Ensures that this installation has not been upgraded to SP1. Product code for SP1 RTM, version 2.0.4521.0 = 66810BF3-AE13-45B0-BD30-49B1CC0C25FE Product cod...