10 matches found
Fedora 41 : logiops (2024-1a9b10c921)
The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-1a9b10c921 advisory. Fixes CVE-2024-45752: A vulnerability that allows users to remap keys arbitrarily. This allows all users on the system to remap a key unexpectedly to a...
PT-2024-6666
Name of the Vulnerable Software and Affected Versions: Qualcomm Multiple Chipsets affected versions not specified Description: The issue is related to a use-after-free vulnerability in the Digital Signal Processor DSP service of Qualcomm chipsets, which can lead to memory corruption while...
CVE-2024-1104
An unauthenticated remote attacker can bypass the brute force prevention mechanism and disturb the webservice for all users...
Fail to enumerate resource with "Cannot complete your request "error after configure SAML
Fail to enumerate resource with "Cannot complete your request "error after configure SAML All users have the same issue Issue happen after click "detect Workspace" on Storefront web...
GHSA-3W3H-7XGX-GRWC Leak in Aliyun KeySecret
Impact Users of this library will be affected when using this library, the incoming secret will be disclosed unintentionally. Patches This have already been solved. Workarounds No, It cannot be patched without upgrading References No For more information If you have any questions or comments abou...
triumph-occasion.fr Cross Site Scripting vulnerability OBB-2613493
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2021-37136
The Bzip2 decompression decoder function doesn't allow setting size restrictions on the decompressed output data which affects the allocation size used during decompression. All users of Bzip2Decoder are affected. The malicious input can trigger an OOME and so a DoS attack...
Cross site scripting
ZTE's big video business platform has two reflective cross-site scripting XSS vulnerabilities. Due to insufficient input verification, the attacker could implement XSS attacks by tampering with the parameters, to affect the operations of valid users. This affects:...
Millions of PornHub users affected by a year long malvertising campaign
By Waqas The quote where there is pleasure there is pain is This is a post from HackRead.com Read the original post: Millions of PornHub users affected by a year long malvertising campaign...
CVE-2017-2341 Junos OS: VM to host privilege escalation in platforms with Junos OS running in a virtualized environment.
An insufficient authentication vulnerability on platforms where Junos OS instances are run in a virtualized environment, may allow unprivileged users on the Junos OS instance to gain access to the host operating environment, and thus escalate privileges. Affected releases are Juniper Networks Jun...