Insufficiently Protected Credentials

Overview Affected versions of this package are vulnerable to Insufficiently Protected Credentials via the Slack import process. An attacker can gain unauthorized access to user accounts by obtaining disclosed passwords and impersonating users. Remediation Upgrade...

Dell PowerScale OneFS 9.5.x < 9.10.1.7 / 9.11.x < 9.13.0.2 Incorrect Privilege Assignment (DSA-2026-125)

The version of Dell PowerScale OneFS running on the remote host is 9.5.x prior to 9.10.1.7 or 9.11.x prior to 9.13.0.2. It is, therefore, affected by a vulnerability: - An incorrect privilege assignment vulnerability allows a low privileged attacker with local access to potentially escalate...

CVE-2018-4834

A vulnerability has been identified in Desigo PXC00-E.D V4.10 All versions V4.10.111, Desigo PXC00-E.D V5.00 All versions V5.0.171, Desigo PXC00-E.D V5.10 All versions V5.10.69, Desigo PXC00-E.D V6.00 All versions V6.0.204, Desigo PXC00/64/128-U V4.10 All versions V4.10.111 only with web module,...

EUVD-2022-47969

Malicious code in bioql PyPI...

EUVD-2022-4550

Malicious code in bioql PyPI...

Exploit for CVE-2025-31486

Vite Path Traversal Lab CVE-2025-31486 !Open in GitHub Co...

PT-2025-28476 · Ivanti · Ivanti Connect Secure +1

Name of the Vulnerable Software and Affected Versions: Ivanti Connect Secure versions prior to 22.7R2.8 Ivanti Policy Secure versions prior to 22.7R1.5 Description: The issue is related to improper access control in the certificate management component. This allows a remote authenticated admin wi...

Kibana < 7.17.29 / 8.x < 8.17.18 / 8.18.x < 8.18.3 / 9.x < 9.0.3 Multiple Vulnerabilities (ESA-2025-09, ESA-2025-10)

The version of Kibana running on the remote host is prior to 7.17.29, 8.x prior to 8.17.18, 8.18.x prior to 8.18.3, or 9.x prior to 9.0.3. It is, therefore, affected by multiple vulnerabilities: - Type Confusion in V8 in Google Chrome prior to 134.0.6998.88 allowed a remote attacker to potentiall...

Grafana < 9.3.15 Multiple Vulnerabilities

According to its self-reported version, the Grafana install hosted on the remote host is earlier than 8.5.26, or earlier than 9.2.19, or earlier than 9.3.15, or earlier than 9.4.12, or 9.5.x earlier than 9.5.3. It is, therefore, affected by multiple vulnerabilities: - A Missing Authorization...

CVE-2022-38649

Improper Neutralization of Special Elements used in an OS Command 'OS Command Injection' vulnerability in Apache Airflow Pinot Provider, Apache Airflow allows an attacker to control commands executed in the task execution context, without write access to DAG files. This issue affects Apache Airfl...

CVE-2020-35805

Certain NETGEAR devices are affected by stored XSS. This affects D7800 before 1.0.1.56, R7500v2 before 1.0.3.46, R7800 before 1.0.2.74, R8900 before 1.0.4.28, R9000 before 1.0.4.28, RAX120 before 1.0.0.78, RBK20 before 2.3.5.26, RBR20 before 2.3.5.26, RBS20 before 2.3.5.26, RBK40 before 2.3.5.30,...

CVE-2018-21190

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. This affects D6100 before 1.0.0.57, D7800 before 1.0.1.34, R6100 before 1.0.1.20, R7500 before 1.0.0.122, R7800 before 1.0.2.40, R9000 before 1.0.2.52, WNDR3700v4 before 1.0.2.92, WNDR4300 before...

Google Chrome Security Update(stable-channel-update-for-desktop_29-2025-04) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Moodle 3.11.x < 3.11.16 phpCAS Library Upgrade

According to its self-reported version, the Moodle install hosted on the remote host is prior to 3.9.23, 3.11.x prior to 3.11.16 or 4.0.x prior to 4.0.10. The phpCAS library included with Moodle has been upgraded to version 1.6.0, which includes a fix for a serious security issue. Note that the...

CVE-2025-21490 affecting package mariadb for versions less than 10.11.11-1

CVE-2025-21490 affecting package mariadb for versions less than 10.11.11-1. An upgraded version of the package is available that resolves this issue...

CVE-2019-20683

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. This affects D3600 before 1.0.0.76, D6000 before 1.0.0.76, D6200 before 1.1.00.32, D7000 before 1.0.1.68, JR6150 before 1.0.1.18, PR2000 before 1.0.0.28, R6020 before 1.0.0.38, R6050 before...

Security update for python3-virtualenv

This update for python3-virtualenv fixes the following issues: Security issue fixed: CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706 Non-security issue fixed: Relax version requirements that cannot be provided bsc1232072 Patch Instructions: To install this SUSE...

SUSE-SU-2024:4143-1 Security update for python3-virtualenv

This update for python3-virtualenv fixes the following issues: Security issue fixed: - CVE-2024-53899: Fixed a command injection through activation scripts bsc1233706 Non-security issue fixed: - Relax version requirements that cannot be provided bsc1232072...

SUSE-SU-2022:2831-1 Recommended update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures, python-coverage, python-oniconfig, python-unittest-mixins

This update for aws-efs-utils, python-ansi2html, python-py, python-pytest-html, python-pytest-metadata, python-pytest-rerunfailures fixes the following issues: - Update in SLE-15 bsc1196696, bsc1195916, jscSLE-23972 - Remove redundant python3 dependency from Requires - Update regular expression t...

Troubleshooting Automated Configuration for Citrix Virtual Apps and Desktops

The Automated Configuration Tool is designed to migrate configurations such as policies, applications, machine catalogs, and others for the following use cases: Virtual Apps and Desktop from one or more On-Premises sites to the Citrix DaaS hosted on Citrix Cloud Migration between different Cloud...