CVE-2025-6014

Vault and Vault Enterprise’s “Vault” TOTP Secrets Engine code validation endpoint is susceptible to code reuse within its validity period. Fixed in Vault Community Edition 1.20.1 and Vault Enterprise 1.20.1, 1.19.7, 1.18.12, and 1.16.23...

HashiCorp Vault Community Edition和HashiCorp Vault Enterprise 安全漏洞

HashiCorp Vault Enterprise and HashiCorp Vault Community Edition are both products of HashiCorp, Inc. of the U.S. HashiCorp Vault Enterprise is an enterprise information archiving platform.HashiCorp Vault HashiCorp Vault Enterprise is an enterprise information archiving platform, and HashiCorp...

libheif 安全漏洞

libheif is an ISO/IEC 23008-12:2017 HEIF file format decoder and encoder from struktur open source. A security vulnerability exists in libheif version 1.19.7, which originates from the ability of a local attacker to execute arbitrary code via SAO processing resulting in a buffer overflow...

SUSE-SU-2023:1815-1 Security update for amazon-ssm-agent

This update for amazon-ssm-agent fixes the following issue: - rebuilt using go1.19.7 to fix bugs and security issues...

Security fix for the ALT Linux 10 package golang version 1.19.7-alt1

1.19.7-alt1 built March 10, 2023 Alexey Shabalin in task 316367 March 7, 2023 Alexey Shabalin - New version 1.19.7 Fixes: CVE-2023-24532...

NodeBB < 1.19.8, 2.x < 2.0.1 Account Takeover Vulnerability

NodeBB is prone to an account takeover vulnerability via a cryptographically weak PRNG in SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...