368410 matches found
CVE-2024-26994
CVE-2024-26994 (Linux kernel) is a concrete vulnerability: the Speakup console driver may crash when a very long word (>256 chars) is presented, due to a buffer length issue. The fix prevents using a word buffer beyond its limit, stopping word processing before overflow. Connected Astra Linux ...
CVE-2023-42858
CVE-2023-42858 affects Apple macOS: an app may access user-sensitive data due to a prior access-control issue. It is fixed in macOS Sonoma 14.1, macOS Monterey 12.7.1, and macOS Ventura 13.6.1. The issue is described as addressed with improved checks; no exploit details are provided in the connec...
CVE-2011-5000
OpenSSH
CVE-2023-3518
HashiCorp Consul and Consul Enterprise 1.16.0 had a vulnerability in JWT-based service-mesh authentication that allowed or denied access independent of service identities. The issue is fixed in version 1.16.1. No exploitation details are provided in the connected documents. Affected product/versi...
CVE-2021-0447
CVE-2021-0447 entry is rejected/not used per the description.
CVE-2023-22044
CVE-2023-22044 affects OpenJDK/OpenJDK-based runtimes (e.g., Debian openjdk-17, AlmaLinux java-17-openjdk) as part of the July 2023 Java updates. Connected advisories confirm it is among multiple OpenJDK vulnerabilities and are addressed by updates to OpenJDK 17 (e.g., 17.0.8) across distribution...
CVE-2024-27073
CVE-2024-27073 concerns the Linux kernel media/ttpci budget code. The connected sources describe two memory leaks in budget_av_attach that occur when saa7146_register_device or saa7146_vv_init fail, and that budget_av_attach should free resources similarly to the error-handling in ttpci_budget_in...
CVE-2023-20214
Cisco SD-WAN vManage REST API authentication validation vulnerability (CVE-2023-20214) allows unauthenticated remote attackers to read or partially modify configuration due to insufficient REST API request validation. Affected product: Cisco SD-WAN vManage (REST API surface only; web UI/CLI unaff...
CVE-2021-34859
CVE-2021-34859 affects TeamViewer 15.16.8.0. The issue stems from improper validation during parsing of TVS files, leading to memory corruption that enables remote code execution in the context of the current process. Exploitation requires user interaction (the target opens a malicious file or vi...
CVE-2025-1243
Temporal api-go library prior to v1.44.1 fails to send update response data to Data Converter when used in a gRPC proxy during UpdateWorkflowExecution, causing incomplete Data Converter transformations (e.g., encryption) on the update response field. This occurs only when using the UpdateWorkflow...
CVE-2024-53845
CVE-2024-53845 concerns ESPRESSIF ESP-IDF’s ESPTouch v2 AES/CBC encryption where the Initialization Vector (IV) was not configurable prior to versions 5.3.2, 5.2.4, 5.1.6, and 5.0.8, causing a deterministic ciphertext and potential data leakage. The fixed behavior, implemented in these versions, ...
CVE-2024-34932
The CVE-2024-34932 entry concerns Campcodes Complete Web-Based School Management System 1.0. A SQL injection vulnerability exists in the /model/update_exam.php endpoint, exploitable via the name parameter to execute arbitrary SQL commands. The issue is described across multiple connected records ...
CVE-2023-42938
The CVE-2023-42938 entry concerns Apple iTunes for Windows prior to version 12.13.1, where a logic issue could allow a local user to elevate privileges. The vulnerability is described across multiple Connected documents as a local privilege escalation affecting iTunes on Windows, caused by insuff...
CVE-2024-56734
CVE-2024-56734 affects Better Auth (TypeScript) prior to version 1.1.6, where the verify-email endpoint accepts a callbackURL parameter and uses JWT without proper domain validation. This open-redirect flaw can allow an attacker to redirect users to arbitrary, attacker-controlled sites. Root caus...
CVE-2023-4785
CVE-2023-4785: Google gRPC core flaw — lack of error handling in the TCP server on posix platforms (e.g., Linux) can cause DoS when many connections are opened. Affected: gRPC C++, Python, Ruby (not Java/Go). Upgrades exist: CBLMariner advises grpc >= 1.62.0-2; IBM advisories for Cloud Pak for...
CVE-2024-50349
CVE-2024-50349 affects Git. When prompting for credentials in terminal (no credential helper), Git decodes URL-encoded parts and prints the host; attackers can craft URLs with ANSI escape sequences to mislead users. The issue was patched via commits 7725b81 and c903985 and is addressed in multipl...
CVE-2024-52006
Git vulnerability CVE-2024-52006 involves newline confusion in credential helpers that use a line-based protocol. Some environments (notably .NET and Node.js) may treat a single Carriage Return as a newline, bypassing protections for credential helpers that rely on CR handling. The issue has been...
CVE-2024-52008
Fides (open-source privacy engineering platform) has a password policy bypass in its invite flow. The /api/v1/user/accept-invite endpoint does not enforce the server-side password policy, allowing an invited user to set an arbitrarily weak password during initial account setup despite UI client-s...
CVE-2024-3656
The issue CVE-2024-3656 affects Keycloak prior to 24.0.5, where several admin REST API endpoints allow low-privilege users to perform administrator actions. The root cause is broken access control enabling authenticated non-admin users to access functionalities intended for admins, potentially le...
CVE-2024-27054
The CVE-2024-27054 issue resides in the Linux kernel s390/dasd path where the module refcount could be decremented twice due to manual handling of refcounts after device association. The vulnerability results in an artificial decrease of the module’s refcount on each error path, rather than keepi...
CVE-2024-2609
The CVE-2024-2609 issue concerns a permission-prompt input delay that can expire when the window is not focused, enabling clickjacking on malicious sites. Affected products and versions include Firefox < 124, Firefox ESR < 115.10, and Thunderbird
CVE-2014-1692
CVE-2014-1692 affects OpenSSH up to version 6.4 when Makefile.inc enables J-PAKE; the hash_buffer function in schnorr.c may not initialize certain data structures, enabling remote attackers to trigger a memory corruption denial of service (and potentially other impact). The provided documents do ...
CVE-2023-39153
CVE-2023-39153 is a CSRF vulnerability in Jenkins GitLab Authentication Plugin versions ≤ 1.17.1. The flaw allows an attacker to lure a logged-in user into authenticating to the attacker’s account, via a crafted request, effectively abusing the OAuth flow. The root cause is the plugin’s lack of a...
CVE-2024-34397
GLib vulnerability CVE-2024-34397: a GDBus signal-subscription spoofing flaw allows non-trusted local users on shared systems to inject spoofed D-Bus signals, potentially making a GDBus client misbehave (application-dependent impact). Affected: GLib’s GDBus-based clients; vulnerable in GLib up to...
CVE-2024-26880
CVE-2024-26880 (Linux kernel) summary The issue concerns the DM stack’s suspend/resume flow: dm_internal_resume previously called origin_postsuspend/DM targets’ resume in a way that could corrupt the hash_list due to paired suspend/resume calls being mismatched. The fix changes __dm_internal_resu...
CVE-2025-27152
CVE-2025-27152 affects axios, a promise-based HTTP client for browser and Node.js. The issue occurs when passing absolute URLs (not protocol-relative) to axios; even if baseURL is set, requests may be sent to the absolute URL, enabling SSRF and potential credential leakage for both server-side an...
CVE-2024-26950
CVE-2024-26950 concerns the Linux kernel's WireGuard netlink handling. The connected documents confirm a concrete issue in the kernel’s WireGuard netlink path where a NULL peer->device could be dereferenced. The fix changes the device retrieval to ctx->wg (i.e., obtain the device from the c...
CVE-2024-26889
CVE-2024-26889 refers to a Linux kernel security fix for a Bluetooth (hci_core) buffer overflow. The root cause was a fixed-size name field in struct hci_dev_info (name[8]); a larger hdev->name could cause strcpy to overrun its destination. The fix switches to strscpy to safely copy the device...
CVE-2019-3571
WhatsApp Desktop versions prior to 0.3.3793 are affected by an input validation issue that allows malicious clients to send files to users that would be displayed with a wrong extension. Root cause: input validation weakness. Supported by multiple sources (NVD/NVD-linked CVE records). No exploit ...
CVE-2024-26940
CVE-2024-26940 refers to a Linux kernel issue in drm/vmwgfx where /sys/kernel/debug/dri/0/mob_ttm could be created even if the corresponding ttm_resource_manager was not allocated, risking a crash when reading the file. The fix adds checks to only create mob_ttm, system_mob_ttm, and gmr_ttm debug...
CVE-2025-24976
Distribution’s token authentication flaw (CVE-2025-24976) affects registry versions 3.0.0-beta.1 through 3.0.0-rc.2 with token auth enabled. The root cause: JWT JWK verification accepts a header with a certificate chainless JWK but only validates the KeyID against trusted keys, not the actual key...
CVE-2023-2728
CVE-2023-2728 : The vulnerability allows containers to bypass the mountable secrets policy enforced by the ServiceAccount admission plugin when ephemeral containers are used. Kubernetes clusters are affected only if both the ServiceAccount admission plugin and the annotation kubernetes.io/enforce...
CVE-2024-53240
The CVE-2024-53240 entry refers to a Xen netfront crash in the Linux kernel. The issue occurs when removing a netfront device directly after a suspend/resume cycle, where queues may not be reinitialized and a crash can happen when stopping them. The fix is to check that the queues exist before st...
CVE-2024-53148
CVE-2024-53148 affects the Linux kernel (comedi: Flush partial mappings in error case). If remap_pfn_range() partially succeeded before a failure, user mappings can remain in place until the mmap error path is taken; the fix explicitly flushes all mappings in the VMA on error. A commit titled mm:...
CVE-2023-35082
CVE-2023-35082 describes an authentication bypass in Ivanti EPMM 11.10 and older, allowing unauthenticated access to restricted API functionality. The vulnerability is tied to Ivanti EPMM/MobileIron Core deployments and is documented as an authentication bypass that enables unauthorized access to...
CVE-2024-26894
CVE-2024-26894 affects the Linux kernel: ACPI: processor_idle memory leak after CPU idle device unregister. Root cause: memory allocated for acpi_processor_power_exit is not freed. Remediation: free the CPU idle device after unregistering it (kernel patch cited in multiple advisories).
CVE-2018-7600
CVE-2018-7600 (Drupalgeddon2) is a remote code execution vulnerability in Drupal core. Public details confirm it affects: Drupal 7.x up to 7.57/7.58; Drupal 8.x up to 8.3.8/8.3.9; 8.4.x up to 8.4.5/8.4.6; 8.5.x up to 8.5.0/8.5.1, with default or common module configurations. The root cause involv...
CVE-2024-53849
The CVE-2024-53849 issue affects editorconfig-core-c (EditorConfig core library in C) where multiple escaped characters in input patterns can trigger stack/pointer overflows in the '[' handling during parsing. The root cause is that added backslashes reduce available space in nested-bracket outpu...
CVE-2024-26956
CVE-2024-26956 covers a kernel vulnerability in nilfs2 within the Linux kernel. The issue has two flaws: (1) nilfs_get_block() may misinterpret a DAT-corrupted data block as existing, due to DAT translation returning -ENOENT; and (2) after this inconsistency, the caller may request a read on an u...
CVE-2023-1108
CVE-2023-1108 affects Undertow within Red Hat JBoss EAP 7.3.x (SSLConduit) where an infinite loop on close can cause DoS. Connected RHSA-2025-9583 confirms the issue and indicates a fix in the eap-7.3.z line (Patched Undertow). Remediation is to upgrade to the patched EAP 7.3.x release (eap-7.3.z...
CVE-2020-35483
AnyDesk on Windows prior to 6.1.0 (portable mode) is affected. If an attacker can write to the application directory, a Trojan horse gcapi.dll can be placed with a read‑only setting, enabling local user account compromise. Affected component is the application executable/dll loading mechanism in ...
CVE-2024-52577
CVE-2024-52577 concerns Apache Ignite: versions 2.6.0 through
CVE-2024-27906
CVE-2024-27906 affects Apache Airflow versions before 2.8.2. The published docs describe a vulnerability where authenticated users can view DAG code and import errors for DAGs they should not be allowed to view via the API and the UI. The primary impact is information disclosure of DAG contents a...
CVE-2017-11882
CVE-2017-11882 is a memory corruption vulnerability in Microsoft Office's Equation Editor that affects Office 2007 SP3, 2010 SP2, 2013 SP1, and 2016. The flaw resides in eqnedt32.exe, an out-of-process COM server, and can lead to remote code execution when a user opens a specially crafted Word do...
CVE-2022-30637
Adobe Illustrator CVE-2022-30637 is an out-of-bounds write in font parsing that could allow arbitrary code execution. Affected: Illustrator 26.0.2 and earlier, and 25.4.5 and earlier. Exploitation requires user interaction (open a malicious file). No exploit details are provided in the documents....
CVE-2023-2804
CVE-2023-2804 affects libjpeg-turbo; a heap-based buffer overflow in h2v2_merged_upsample_internal() of jdmrgext.c can be triggered when decoding 12-bit lossless JPEGs with out-of-range samples, leading to segmentation faults or buffer overflows and application crashes. The vulnerability requires...
CVE-2024-42139
CVE-2024-42139 affects the Linux kernel component related to ice/extts handling for PTP; when the driver is removed while an application using ts2phc is running, a previously enabled extts event may remain active, potentially causing a kernel crash. On driver reload, a remaining extts event for t...
CVE-2024-27393
CVE-2024-27393 involves the Linux kernel: xen-netfront missing skb_mark_for_recycle call due to history of page_pool_release_page usage. The root cause is that skb_mark_for_recycle() was introduced after fixes tag and a missing call to page_pool_release_page() in older revisions (v5.9–v5.14). Fro...
CVE-2023-40343
CVE-2023-40343 affects Jenkins Tuleap Authentication Plugin (versions 1.1.20 and earlier). The root cause is a non-constant-time comparison function when validating authentication tokens, which could allow attackers to apply statistical methods to obtain a valid token. The issue is mitigated by u...
CVE-2023-41333
Cilium is vulnerable: an attacker who can create/modify CiliumNetworkPolicy objects in a namespace can bypass namespace restrictions and affect traffic across the entire cluster by crafting an endpointSelector that uses the DoesNotExist operator on the reserved:init label. The issue requires API ...