Debian: Security Advisory (DLA-4443-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

MiracleLinux 7 : kernel-3.10.0-1160.41.1.el7 (AXSA:2021-2410:19)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2021-2410:19 advisory. kernel: out-of-bounds write in xtcompattargetfromuser in net/netfilter/xtables.c CVE-2021-22555 kernel: race condition for removal of the HCI...

EUVD-2017-3023

Malware in sbrugna...

EUVD-2019-5551

Malware in sbrugna...

EUVD-2019-16665

Malware in sbrugna...

DSA-5934-1 roundcube - security update

Bulletin has no description...

CVE-2024-4513

A vulnerability, which was classified as problematic, has been found in Campcodes Complete Web-Based School Management System 1.0. This issue affects some unknown processing of the file /view/timetableupdateform.php. The manipulation of the argument grade leads to cross site scripting. The attack...

About the security content of visionOS 2.5

About the security content of visionOS 2.5 This document describes the security content of visionOS 2.5. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are availabl...

PT-2025-28453 · Qualcomm · Snapdragon +7

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue is related to memory corruption that occurs while processing packet data, specifically when dealing with exceedingly large packets. Recommendations: At the moment, there is no...

GHSA-XQ3W-V528-46RV

creationtimestamp| type| source ---|---|--- 2025-02-14 15:15:16+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4455 2025-06-17 12:51:43+00:00| seen| https://gist.github.com/safer-bot/74e21949896b589baa948e9ed6f5748a 2025-07-16 05:05:11+00:00| seen|...

GHSA-45V9-W9FH-33J6 Mattermost fails to properly validate post props

Mattermost versions 10.2.x = 10.2.0, 9.11.x = 9.11.5, 10.0.x = 10.0.3, 10.1.x = 10.1.3 fail to properly validate post props which allows a malicious authenticated user to cause a crash via a malicious post...

Important: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

PT-2022-24995 · Nagvis +1 · Nagvis +1

Name of the Vulnerable Software and Affected Versions: NagVis versions up to 1.9.33 Description: A vulnerability was found in the function checkAuthCookie of the file share/server/core/classes/CoreLogonMultisite.php. The manipulation of the argument hash leads to incorrect type conversion. The...

SUSE-SU-2022:3656-1 Security update for nodejs16

This update for nodejs16 fixes the following issues: Updated to version 16.17.1: - CVE-2022-32213: Fixed bypass via obs-fold mechanic bsc1201325. - CVE-2022-32215: Fixed incorrect Parsing of Multi-line Transfer-Encoding bsc1201327. - CVE-2022-35256: Fixed incorrect Parsing of Header Fields...

Enphase Energy Envoy Trust Management Issues Vulnerabilities

The Enphase Energy Envoy is a gateway device for connecting smart home devices from Enphase Energy USA. The Enphase Energy Envoy has a trust management issue vulnerability that stems from the installer and Enphase accounts having hard-coded web panel login passwords, which are hard-coded values...

OPENSUSE-SU-2019:0104-1 Security update for ghostscript

This update for ghostscript version 9.26a fixes the following issues: Security issue fixed: - CVE-2019-6116: subroutines within pseudo-operators must themselves be pseudo-operators bsc1122319 This update was imported from the SUSE:SLE-15:Update update project...

New Windows Patch Policy At Odds With Acceptable Risk

With Microsoft’s Patch Tuesday release tomorrow, the countdown begins for application developers to button down code ahead of Microsoft’s new servicing model starting in October that could present vulnerability issues for some businesses. “Tomorrow it’s going to be business as usual, but it will...

openSUSE Security Update : icedtea-web (openSUSE-SU-2012:0981-1)

update to 1.2.1 bnc773458 - Security Updates - CVE-2012-3422, RH840592: Potential read from an uninitialized memory location - CVE-2012-3423, RH841345: Incorrect handling of not 0-terminated strings - NetX - PR898: signed applications with big jnlp-file doesn't start webstart affect like 'frozen'...

Mandrake Linux Security Advisory : freetype2 (MDKSA-2006:099-1)

Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service crash via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values. CVE-2006-0747 Multiple integer overflows in...

NISCC - Vulnerability Issues in Implementations of the DNS Protocol

UNIRAS UK Gov CERT Advisory Type: Briefing Id: 20060425-00311 Ref: 307/06 Date: 25 April 2006 Time: 12:57 Title: NISCC - Vulnerability Issues in Implementations of the DNS Protocol Abstract: The vulnerabilities described in this advisory affect implementations of the Domain Name System DNS...