21 matches found
JLSEC-2026-53
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8...
BIT-POSTGRESQL-2026-2003 PostgreSQL oidvector discloses a few bytes of memory
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8...
CVE-2026-2003
Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few bytes of server memory. We have not ruled out viability of attacks that arrange for presence of confidential information in disclosed bytes, but they seem unlikely. Versions before PostgreSQL 18.2, 17.8...
AZL-77643 CVE-2026-2006 affecting package rust 1.90.0-4
Missing validation of multibyte character length in PostgreSQL text manipulation allows a database user to issue crafted queries that achieve a buffer overrun. That suffices to execute arbitrary code as the operating system user running the database. Versions before PostgreSQL 18.2, 17.8, 16.12,...
PT-2025-41299
Name of the Vulnerable Software and Affected Versions Opencast versions prior to 17.8 Opencast versions prior to 18.2 Description Opencast is a platform for managing educational audio and video content. In certain scenarios, prior to versions 17.8 and 18.2, the editor could publish a video withou...
Trend Micro Security 安全漏洞
Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security version 17.8, which stems from a link-following vulnerability that could lead to elevated privileges...
PT-2025-28806 · Trend Micro · Trend Micro Security
Name of the Vulnerable Software and Affected Versions: Trend Micro Security version 17.8 Description: Trend Micro Security 17.8 Consumer contains a link following local privilege escalation issue. A local attacker could unintentionally delete privileged Trend Micro files, including the software...
PT-2025-25761 · Trend Micro · Trend Micro Security
Name of the Vulnerable Software and Affected Versions: Trend Micro Security version 17.8 Consumer Description: The issue is a link following local privilege escalation vulnerability. It could allow a local attacker to unintentionally delete privileged Trend Micro files, including its own...
Trend Micro Security 安全漏洞
Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security version 17.8, which stems from improper link following and could lead to local elevation of privilege...
Trend Micro Security 安全漏洞
Trend Micro Security is an antivirus software from Trend Micro. A security vulnerability exists in Trend Micro Security version 17.8, which stems from improper link following and could lead to local elevation of privilege...
PT-2025-25441 · Trend Micro · Trend Micro Security
Name of the Vulnerable Software and Affected Versions: Trend Micro Security version 17.8 Description: The issue is related to a link following local privilege escalation that could allow a local attacker to unintentionally delete privileged Trend Micro files, including its own. Recommendations: F...
Microsoft Visual Studio 命令注入漏洞
Microsoft Visual Studio is a family of development tool suites from Microsoft Corporation USA and a largely complete development toolset that includes most of the tools needed throughout the software lifecycle. A command injection vulnerability exists in Microsoft Visual Studio. An attacker could...
Microsoft Visual Studio 访问控制错误漏洞
Microsoft Visual Studio is a family of development tool suites and a largely complete set of development tools from Microsoft Corporation USA that includes most of the tools needed throughout the software lifecycle. An access control error vulnerability exists in Microsoft Visual Studio. An...
GitLab 17.5 < 17.6.5 / 17.7 < 17.7.4 / 17.8 < 17.8.2 (CVE-2025-1540)
The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - An issue has been discovered in GitLab CE/EE for Self-Managed and Dedicated instances affecting all versions from 17.5 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2. It was possible...
UBUNTU-CVE-2025-0516
Improper Authorization in GitLab CE/EE affecting all versions from 17.7 prior to 17.7.4, 17.8 prior to 17.8.2 allow users with limited permissions to perform unauthorized actions on critical project data...
WordPress WooCommerce Support Ticket System plugin <= 17.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion and Information Exposure vulnerability
Missing Authorization to Authenticated Subscriber+ Arbitrary Post Deletion and Information Exposure vulnerability discovered by Lucio Sá in WordPress Plugin WooCommerce Support Ticket System versions = 17.8...
PT-2025-2265 · WordPress · Woocommerce Support Ticket System
Name of the Vulnerable Software and Affected Versions: WooCommerce Support Ticket System plugin for WordPress versions up to, and including, 17.8 Description: The issue is related to missing capability checks on the ajax delete message, ajax get customers partial list, and ajax get admins list...
Microsoft .NET 安全漏洞
Microsoft .NET is a software framework from Microsoft Corporation USA dedicated to agile software development, rapid application development, platform-independence, and web transparency. A security vulnerability exists in Microsoft .NET. An attacker could exploit the vulnerability to elevate...
Microsoft Visual Studio和Microsoft .NET 安全漏洞
Microsoft Visual Studio and Microsoft .NET are both products of Microsoft Corporation, USA. Microsoft Visual Studio is a family of development tool suites and a fundamentally complete set of development tools that includes most of the tools needed throughout the software lifecycle. Microsoft .NET...
Microsoft Visual Studio and Microsoft .NET Security Vulnerabilities
Microsoft Visual Studio and Microsoft .NET are both products of Microsoft Corporation, USA. Microsoft Visual Studio is a family of development tool suites and a fundamentally complete set of development tools that includes most of the tools needed throughout the software lifecycle. Microsoft .NET...