25 matches found
Chamilo 代码问题漏洞
Chamilo is an open-source learning management system developed by Chamilo. Versions of Chamilo prior to 1.11.28 had code vulnerabilities. These vulnerabilities stemmed from defects in the OpenId functionality, which could lead to forged server requests without proper verification...
CVE-2019-12496
An issue was discovered in Hybrid Group Gobot before 1.13.0. The mqtt subsystem skips verification of root CA certificates by default...
EUVD-2020-16643
Malware in sbrugna...
EUVD-2014-6846
Malware in sbrugna...
EUVD-2018-1050
Malware in sbrugna...
EUVD-2011-5140
Malware in sbrugna...
EUVD-2014-7554
Malware in sbrugna...
EUVD-2001-0071
Malware in sbrugna...
EUVD-2007-1006
Malware in sbrugna...
EUVD-2024-49732
Malicious code in bioql PyPI...
EUVD-2025-7815
Malicious code in bioql PyPI...
ROS-20250616-08
Vulnerability in Mozilla Firefox, Firefox ESR browsers and Thunderbird mail client of operating systems Windows is related to insufficient process isolation when processing "javascript:" URI links. Exploitation of the The exploitation of this vulnerability could allow a remote attacker to bypass...
Alibaba Cloud Linux 3 : 0261: Moderate: python27:2.7 (ALINUX3-SA-2024:0261)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0261 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2019-11236: In the urllib3 library...
SUSE-SU-2025:1262-1 Security update for the Linux Kernel (Live Patch 45 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059164 fixes several issues. The following security issues were fixed: - CVE-2022-49014: net: tun: Fix use-after-free in tundetach bsc1232818. - CVE-2022-49563: crypto: qat - add param check for RSA bsc1238788. - CVE-2022-49564: crypto: qat - add param...
EulerOS 2.0 SP11 : openssh (EulerOS-SA-2025-1367)
According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious...
CVE-2025-27839
The CVE affects Tangem SDK for Android (before 5.18.3) in AttestationTask.kt, where offline wallet genuineness check logic can cause verification results to be disregarded on the first card scan. The issue is limited to the first scan flow and exploitation may not have been possible; upgrading to...
Important: Red Hat Security Advisory: RHUI 4.11 security, bugfix, and enhancement update
An updated version of Red Hat Update Infrastructure RHUI is now available. RHUI 4.11 updates Pulp to a newer upstream version, fixes several issues, and adds an enhancement. Red Hat Update Infrastructure RHUI provides a highly scalable and redundant framework for managing repositories and content...
CVE-2024-47258
CVE-2024-47258 affects 2N Access Commander up to v2.1 (and earlier). The issue is a default-settings MITM risk caused by not validating TLS certificates of 2N edge devices. Mitigation details from connected docs show that 2N released v3.3 of Access Commander with Certificate Fingerprint Verificat...
Amazon Linux 2023 : python3-requests, python3-requests+security, python3-requests+socks (ALAS2023-2024-782)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-782 advisory. Requests is a HTTP library. Prior to 2.32.0, when making requests through a Requests Session, if the first request is made with verify=False to disable cert verification, all subsequent requests to the...
CVE-2018-25099
In the CryptX module before 0.062 for Perl, gcmdecryptverify and chacha20poly1305decryptverify do not verify the tag...