CVE-2024-36264

UNSUPPORTED WHEN ASSIGNED Improper Authentication vulnerability in Apache Submarine Commons Utils. If the user doesn't explicitly set submarine.auth.default.secret, a default value will be used. This issue affects Apache Submarine Commons Utils: from 0.8.0. As this project is retired, we do not...

CVE-2025-29868

Private Data Structure Returned From A Public Method vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.2. If a user uses an externally referenced image, when a user accesses this image, the provider of the image may obtain private information about the ip address of th...

CVE-2022-46156

The Synthetic Monitoring Agent for Grafana's Synthetic Monitoring application provides probe functionality and executes network checks for monitoring remote targets. Users running the Synthetic Monitoring agent prior to version 0.12.0 in their local network are impacted. The authentication token...

CVE-2024-50386

Account users in Apache CloudStack by default are allowed to register templates to be downloaded directly to the primary storage for deploying instances. Due to missing validation checks for KVM-compatible templates in CloudStack 4.0.0 through 4.18.2.4 and 4.19.0.0 through 4.19.1.2, an attacker...

CVE-2024-51745 Wasmtime doesn't fully sandbox all the Windows device filenames

Wasmtime is a fast and secure runtime for WebAssembly. Wasmtime's filesystem sandbox implementation on Windows blocks access to special device filenames such as "COM1", "COM2", "LPT0", "LPT1", and so on, however it did not block access to the special device filenames which use superscript digits,...

Mitsubishi Outlander mixing vehicles storage security breaches-hacking-vulnerability warning-the black bar safety net

According to the BBC 6 on 6 reported, the researchers found that the Mitsubishi Outlander hybrid vehicle Wi-Fi there is a security vulnerability, easy hacking, and turn off the vehicle alarm system. This means that criminals could exploit the vulnerability into the vehicle or steal the vehicle, o...

w00w00-AIM-2.txt

================================== AOL Instant Messenger Overflow 2 w00w00! http://www.w00w00.org ================================== PRELUDE AOL Instant Messenger is still vulnerable to a serious overflow, as discovered by John Hennessy while tweaking our example exploit, w00aimexp. A few simple...

IRIX O2 video security issue

-----BEGIN PGP SIGNED MESSAGE----- SGI Security Advisory Title: IRIX O2 video security issue Number: 20020103-01-I Date: January 28, 2002 SGI provides this information freely to the SGI user community for its consideration, interpretation, implementation and use. SGI recommends that this...

ISS Security Alert: AOL Instant Messenger Remote Buffer Overflow

Internet Security Systems Security Alert January 2, 2002 AOL Instant Messenger Remote Buffer Overflow Synopsis: Internet Security Systems ISS X-Force has learned of a remote buffer overflow vulnerability in the popular AOL Instant Messenger AIM software. An exploit for this vulnerability has been...

[SECURITY] New version of Debian php3 packages released (updated)

---------------------------------------------------------------------------- Debian Security Advisory [email protected] http://www.debian.org/security/ Daniel Jacobowitz October 14, 2000 - ---------------------------------------------------------------------------- Package: php3 Vulnerability:...