28 matches found
CVE-2025-8030 vulnerabilities
Vulnerabilities for packages: firefox...
Fedora 42 : xorg-x11-server-Xwayland (2026-0174d1953a)
The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-0174d1953a advisory. Update to xwayland 24.1.11 ---- Update to xwayland 24.1.10, CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002,...
RHCOS 6 : Red Hat OpenShift Enterprise 1.1.1 update (Moderate) (RHSA-2013:0582)
The remote Red Hat Enterprise Linux CoreOS 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0582 advisory. - rubygem-actionpack: Unsafe query generation CVE-2012-2660 - rubygem-activerecord: SQL injection when processing nested query...
Foxit, LibRaw vulnerabilities
Cisco Talos' Vulnerability Discovery & Research team recently disclosed one Foxit Reader vulnerability, and six LibRaw file reader vulnerabilities. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco 's third-party vulnerability...
TP-Link, Canva, HikVision vulnerabilities
Cisco Talos' Vulnerability Discovery & Research team recently disclosed a vulnerability in HikVision, as well as 10 in TP-Link, and 19 in Canva. The vulnerabilities mentioned in this blog post have been patched by their respective vendors, all in adherence to Cisco 's third-party vulnerability...
DirectX, OpenFOAM, Libbiosig vulnerabilities
Cisco Talos' Vulnerability Discovery & Research team recently disclosed vulnerabilities in the BioSig Project Libbiosig library and OpenCFD OpenFOAM, as well as an unpatched vulnerability in Microsoft DirectX. The vulnerabilities mentioned in this blog post have been patched by their respective...
CVE-Free-CRM-Advisories
CVE-Free-CRM-Advisories This repository contains Proof of Con...
An Evidence-Driven Analysis of Threat Information Sharing Challenges for Industrial Control Systems and Future Directions
The increasing cyber threats to critical infrastructure highlight the importance of private companies and government agencies in detecting and sharing information about threat activities. Although the need for improved threat information sharing is widely recognized, various technical and...
USN-7881-1 openjdk-8 vulnerabilities
Jinfeng Guo discovered that the Security component of OpenJDK 8 did not correctly handle certain representations of encoded strings. An unauthenticated remote attacker could possibly use this issue to modify files or leak sensitive information. CVE-2025-53057 Darius Bohni discovered that the JAXP...
CVE-Disclosures
CVE-Disclosures This repository, "CVE Disclosures", serves as...
Alibaba Cloud Linux 3 : 0196: qt5-qtsvg (ALINUX3-SA-2022:0196)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0196 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-45930: Qt SVG in Qt 5.0.0 through 5.15.2 a...
Improper access permission settings in multiple SEIKO EPSON printer drivers for Windows OS
Overview Multiple SEIKO EPSON printer drivers for Windows OS are configured with an improper access permission settings when installed or used in a language other than English. Incorrect default permissions CWE-276 - CVE-2025-42598 Private security researcher Erkan Ekici reported this vulnerabili...
Brave Android 1.75.175 Security Fixes
Fixed issue where audio was not being farbled in certain cases as reported on HackerOne by cesiumfusilli. Upgraded Chromium to 133.0.6943.54 — refer to Google Chrome advisories for inherited CVEs...
CVE-2024-52570
creationtimestamp| type| source ---|---|--- 2024-11-18 19:03:36+00:00| seen| https://t.me/cvedetector/11356 2024-11-19 06:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1522/ 2024-12-12 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-347-09...
CVE-2024-52573
creationtimestamp| type| source ---|---|--- 2024-11-18 19:03:32+00:00| seen| https://t.me/cvedetector/11352 2024-11-19 06:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1527/ 2024-11-19 17:18:02+00:00| seen| https://infosec.exchange/users/vuldb/statuses/113510756015313793...
CVE-2024-49592
creationtimestamp| type| source ---|---|--- 2024-11-15 21:12:09+00:00| seen| https://infosec.exchange/users/cve/statuses/113489027313480593 2024-11-15 23:19:39+00:00| seen| https://t.me/cvedetector/11182 2024-11-19 06:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1517/...
CVE-2024-38249
creationtimestamp| type| source ---|---|--- 2024-09-10 17:25:32+00:00| seen| https://www.thezdi.com/blog/2024/9/10/the-september-2024-security-update-review 2024-09-26 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-24-1293/ 2024-09-26 05:00:00+00:00| seen|...
Multiple vulnerabilities in Adobe Acrobat Reader could lead to remote code execution
Cisco Talos has disclosed more than 30 vulnerabilities in February, including seven in Adobe Acrobat Reader, one of the most popular PDF editing and reading software currently available. Adversaries could exploit these vulnerabilities to trigger the reuse of a previously freed object, thus causin...
Security updates provided in Brocade Fabric OS v9.2.0, v9.1.1c, v8.2.3d
Dear Brocade Customer: This Advisory aims to inform you of Brocade Fabric OS Security updates in Brocade Fabric OS v9.2.0, v9.1.1c, and v8.2.3d. Please review the recently posted security advisories listed here: Updated Security Advisories...
Oracle OpenJDK Vulnerability (CVE-2023-22044)
Oracle OpenJDK is prone to a vulnerability in the hotspot/compiler component. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...