Mattermost 安全漏洞

Mattermost is an open-source collaboration platform developed by the American company Mattermost. There is a security vulnerability in Mattermost, which stems from an unvalidated target path for advanced log files. This vulnerability could allow system administrators to read arbitrary host files...

EUVD-2018-10557

Malware in sbrugna...

EUVD-2021-6566

Malicious code in bioql PyPI...

EUVD-2021-6569

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2025-6023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An open redirect vulnerability has been identified in Grafana OSS that can be exploited to achieve XSS attacks. The vulnerability was introduced in Grafana...

CVE-2021-1103

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11.5 and version 8.x prior 8.8...

CVE-2021-1084

NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager vGPU plugin, in which an input length is not validated, which may lead to information disclosure, tampering of data or denial of service. This affects vGPU version 12.x prior to 12.2 and version 11...

CVE-2021-1101

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x prior to 12.3, version 11.x prior to 11.5 and version 8.x prior 8.8...

CrushFTP 10.x < 10.8.3 / 11.x < 11.3.0 Authentication Bypass

CrushFTP versions 10.x before 10.8.3 and 11.x before 11.3.0 are vulnerable to an authentication bypass vulnerability, allowing a remote and unauthenticated user to gain access to the target CrushFTP instance. No source data...

Drupal Multiple Vulnerabilities (Nov 2024) - Linux

Drupal is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:drupal:drupal"; ifdescription...

Microsoft Windows Security Feature Bypass And Spoofing Vulnerabilities (KB5043049)

This host is missing an important security update according to Microsoft KB5043049 SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Apple Mac OS X SEoL (11.x)

According to its version, Apple Mac OS X is 11.x. It is, therefore, no longer maintained by its vendor or provider. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it may contain security vulnerabilities. %NASLMINLEVEL 80900 C...

Foxit PhantomPDF Multiple Vulnerabilities (June-3 2024)

Foxit PhantomPDF is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:foxitsoftware:phantompdf";...

Oracle Solaris Security Vulnerability

Oracle Solaris is a UNIX operating system from the American company Oracle. A security vulnerability exists in Oracle Solaris version 11.x from Oracle Systems. An attacker could exploit the vulnerability to access sensitive data...

AXIS OS Command Injection Vulnerability (Oct 2023)

AXIS OS is prone to a command injection vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:axis:axisos"; if descripti...

IBM DB2 10.5 < 10.5 FP 11 41247 / 11.1 < 11.1.4 FP 7 41246 / 11.5 < 11.5.8 FP 0 26513 Information Disclosure (Windows)

According to its self-reported version number, IBM Db2 is affected by multiple information disclosure vulnerabilities: - IBM Db2 is vulnerable to an information disclosure vulnerability due to improper privilege management when a specially crafted table access is used. CVE-2022-43927 - IBM Db2 is...

TYPO3 Information Disclosure Vulnerability (TYPO3-CORE-SA-2022-007)

TYPO3 is prone to an information disclosure vulnerability SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:typo3:typo3"; if...

PostgreSQL 10.x < 10.22, 11.x < 11.17, 12.x < 12.12, 13.x < 13.8, 14.x < 14.5 Extension Vulnerability - Windows

PostgreSQL is prone to a vulnerability where extension scripts replace objects not belonging to the extension. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifie...

Opencast < 10.14, 11.x < 11.7 Improper Authentication Vulnerability

Opencast is prone to a improper authentication vulnerability. Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software;...

PostgreSQL 10.x < 10.21, 11.x < 11.16, 12.x < 12.11, 13.x < 13.7, 14.x < 14.3 Privilege Escalation Vulnerability - Windows

PostgreSQL is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...