8 matches found
Astra Linux – Vulnerability in Qemu
A use-after-free flaw was discovered in the MegaRAID emulator of QEMU. This issue occurs during the processing of SCSI I/O requests when the mptsasfreerequest function fails to dequeue the request object ‘req’ from the pending requests queue. This flaw allows a privileged guest user to crash the...
@antv/l7 (>=2.1.13 <=2.25.10), @antv/l7-draw (>=2.1.13 <=2.1.14) +5 more potentially affected by unknown CVE via @antv/l7-scene (>=2.10.0 <=2.25.9)
@antv/l7-scene NPM version =2.10.0, =2.1.13, =2.1.13, =2.10.0, =2.1.13, =2.10.0, =1.0.0, =1.0.17, =1.0.18 Source cves: unknown CVE Source advisory: SNYK:JS-ANTVL7SCENE-16754481...
GHSA-MPFM-FPGX-647Q CKAN has no certificate validation on STMP connection
Impact Configured SMTP server may be spoofed with any certificate e.g. self-signed, leaving credentials and all emails sent open to MITM attacks. Patches The vulnerability has been patched in CKAN 2.10.10 and CKAN 2.11.5...
Linux Distros Unpatched Vulnerability : CVE-2025-61100
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FRRouting/frr from v2.0 through v10.4.1 was discovered to contain a NULL pointer dereference via the ospfopaquelsadump function at ospfopaque.c. This...
i-Educar 授权问题漏洞
i-Educar is a free educational software from Portábilis Open Source. An authorization issue vulnerability exists in i-Educar versions 2.10 and earlier, which stems from an improper authorization issue in the /module/Api/turma file...
CVE-2023-35091
Cross-Site Request Forgery CSRF vulnerability in storeapps Stock Manager for WooCommerce woocommerce-stock-manager allows Cross Site Request Forgery.This issue affects Stock Manager for WooCommerce: from n/a through = 2.10.0...
OpenDKIM 安全漏洞
OpenDKIM is a C-based DKIM sender authentication system from the OpenDKIM organization. A security vulnerability exists in OpenDKIM versions 2.10.3, 2.11.x through 2.11.0-Beta2, which stems from its inability to keep track of ordinal numbers when deleting a spoofed Authentication-Results header...
SUSE CVE-2019-3812
QEMU, through version 2.10 and through version 3.1.0, is vulnerable to an out-of-bounds read of up to 128 bytes in the hw/i2c/i2c-ddc.c:i2cddc function. A local attacker with permission to execute i2c commands could exploit this to read stack memory of the qemu process on the host...