CVE-2021-31955

CVE-2021-31955 is a Windows kernel information-disclosure vulnerability in ntoskrnl.exe related to the SuperFetch feature. By sending a SystemSuperfetchInformation query via NtQuerySystemInformation, an attacker can obtain the kernel address of the current process’s EPROCESS, which also contains ...

CVE-2008-3259

OpenSSH vulnerability CVE-2008-3259 affects OpenSSH before 5.1. On affected platforms, when X11UseLocalhost is disabled, SSHD sets SO_REUSEADDR which can allow local users to hijack the X11 forwarding port by binding to a single IP address (demonstrated on HP-UX). The provided description notes t...

CVE-2020-2509

CVE-2020-2509 is a remote command injection affecting QNAP QTS and QuTS hero. The vulnerability could allow an attacker to execute arbitrary commands within a vulnerable application. According to multiple sources, patches are available in the following releases: QTS 4.5.2.1566 Build 20210202 and ...

CVE-2019-12989

CVE-2019-12989 affects Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8. An unauthenticated attacker can exploit an SQL injection caused by improper input validation in specific components, potentially leading to arbitrary SQL execution against the backend database...

CVE-2019-11539

CVE-2019-11539 is a post-auth command injection vulnerability in Pulse Secure VPN appliances (Pulse Connect Secure and Pulse Policy Secure) that can be exploited by an authenticated attacker via the admin web interface to inject and execute commands. Connected sources confirm the flaw requires ad...

CVE-2017-1000486

CVE-2017-1000486 affects Primetek Primefaces 5.x, with a weak encryption flaw enabling remote code execution. Public details describe a padding oracle issue exploited by attackers; Primefaces versions prior to 5.2.21, 5.3.8, or 6.0 are noted as vulnerable, with patches implied for those lines. Pu...

CVE-2024-26594

CVE-2024-26594 affects the Linux kernel ksmbd component, where invalid mech tokens in session setup are validated and result in an error. The vulnerability is described as a local issue with high impact on confidentiality/availability (per the CVSS data in the initial document). The connected Ast...

CVE-2022-42898

CVE-2022-42898 concerns integer overflow in PAC parsing within MIT Kerberos 5 (krb5) via the krb5_pac_parse function in lib/krb5/krb/pac.c. Affected: krb5 before 1.19.4 and 1.20.x before 1.20.1; 32-bit platforms may trigger remote code execution in KDC, kadmind, or a GSS/Kerberos application serv...

CVE-2021-30762

CVE-2021-30762 is a WebKit/Apple WebKit use-after-free issue that affects this component in iOS/WebKit, caused by memory management flaws. The vulnerability could allow arbitrary code execution when processing malicious web content, with Apple noting active exploitation in the wild for related We...

CVE-2018-8581

CVE-2018-8581 is described as a Microsoft Exchange Server elevation of privilege vulnerability (PrivExchange). Connected documents include exploit/testing content showing a Maryland-style mailbox-Delegation approach to impersonate other users by manipulating inbox delegation, effectively enabling...

CVE-2017-3881

CVE-2017-3881 is a Cisco IOS/IOS XE vulnerability in the Cluster Management Protocol (CMP) handling. Two factors enable exploitation: (1) CMP-specific Telnet options were not restricted to internal cluster communications and could be processed over any Telnet session; (2) malformed CMP-specific T...

CVE-2021-38003

CVE-2021-38003 affects Chromium/Chrome’s V8 engine before version 95.0.4638.69. Description and multiple advisories confirm an inappropriate implementation in V8 that could enable remote code execution via crafted HTML, with exploitation noted in the wild (per Arch Linux ASA notes). Affected comp...

CVE-2025-0107

CVE-2025-0107 – Palo Alto Networks Expedition OS command injection . The connected templates confirm an OS command injection in Palo Alto Networks Expedition that allows an unauthenticated attacker to execute arbitrary OS commands as the www-data user, leading to disclosure of usernames, cleartex...

CVE-2020-1380

CVE-2020-1380 : Internet Explorer Scripting Engine memory corruption vulnerability in which memory objects mishandled by the scripting engine (jscript9.dll) can allow remote code execution in the context of the current user..attack vector: web-based via crafted websites or hosting IE rendering en...

CVE-2018-1301

CVE-2018-1301 affects the Apache HTTP Server (httpd) prior to 2.4.30, caused by an out-of-bounds access after a size limit is reached when reading the HTTP header. Impact described as a crash (low risk for normal usage). Affected component is httpd’s HTTP header parsing; root cause is an out-of-b...

CVE-2014-0117

The vulnerability CVE-2014-0117 affects the Apache HTTP Server, specifically the mod_proxy behavior in the 2.4.x line prior to 2.4.10. When a reverse proxy is enabled, a remote attacker can craft an HTTP Connection header to trigger a denial of service (child process crash). This is documented ac...

CVE-2019-0803

CVE-2019-0803 is a Windows Win32k elevation of privilege vulnerability. Root cause: Win32k fails to properly handle objects in memory, enabling local kernel-mode code execution. Affected software: Microsoft Windows Win32k component (privilege escalation). Impact: local privilege escalation with k...

CVE-2013-1690

CVE-2013-1690 affects Mozilla Firefox prior to 22.0, Firefox ESR 17.x prior to 17.0.7, Thunderbird prior to 17.0.7, and Thunderbird ESR 17.x prior to 17.0.7. Root cause is improper handling of onreadystatechange events with page reload, enabling a crafted web page to cause a denial-of-service (cr...

CVE-2022-21919

CVE-2022-21919 is a Windows User Profile Service elevation-of-privilege bug. Connected docs describe the root cause as improper validation in profext.dll’s CreateDirectoryJunction, enabling a directory junction attack to escalate to SYSTEM by abusing UI/UX (Narrator/consent.exe) and UAC. Some sou...

CVE-2024-26604

CVE-2024-26604 concerns the Linux kernel. The issue arises from reverting the change that removed redundant NULL checks for ktype in kobject handling. The description and connected docs indicate this revert was done because of reported problems, and there is no publicly provided fix or patch deta...

CVE-2022-21703

CVE-2022-21703 is a Grafana Cross-Site Request Forgery (CSRF) vulnerability that can enable privilege escalation by tricking an authenticated high-privilege user into inviting the attacker as a new user with high privileges. Affected software is Grafana (versions from >= 3.0-beta1; as per advi...

CVE-2018-15982

CVE-2018-15982 is a use-after-free vulnerability in Adobe Flash Player (versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier) that allows remote code execution when a memory reference is released but remains in a vector due to a faulty reference in the com.adobe.tvsdk.mediacore.metadata pa...

CVE-2015-2590

CVE-2015-2590 is an unspecified vulnerability affecting Oracle Java SE (6u95, 7u80, 8u45) and Java SE Embedded (7u75, 8u33) with impact to confidentiality, integrity, and availability via unknown vectors in the Libraries component. Public details in the initial description are limited; connected ...

CVE-2023-52463

CVE-2023-52463 affects the Linux kernel efivarfs: when SetVariable support is missing at runtime, the code remounts efivarfs RO but fails to validate remount flags, allowing a NULL or improper access leading to a crash. The issue is demonstrated by remounting /sys/firmware/efi/efivars RW and issu...

CVE-2020-2021

CVE-2020-2021 (PAN-OS SAML authentication bypass) : Affects PAN-OS where SAML is enabled and the Identity Provider certificate validation is disabled. The root cause is improper verification of SAML signatures, enabling an unauthenticated, network-accessible attacker to access protected resources...

CVE-2019-1579

CVE-2019-1579 is a Remote Code Execution in PAN-OS when GlobalProtect Portal or Gateway Interface is enabled. It affects PAN-OS 7.1.x before 7.1.19, 8.0.x before 8.0.12, and 8.1.x before 8.1.3, allowing an unauthenticated attacker to execute arbitrary code. The flaw’s root cause is an issue in th...

CVE-2019-9674

The CVE-2019-9674 entry affects Python’s Lib/zipfile.py up to Python 3.7.2. It enables remote attackers to cause a denial of service via a ZIP bomb, triggering resource consumption. The vulnerability originates from how zip files are processed in lib/zipfile.py, leading to potential exhaustion of...

CVE-2019-9023

CVE-2019-9023 affects PHP mbstring: heap-based buffer over-read when regcomp/regexec/regparse in mbstring are fed invalid multibyte data. Affected versions include PHP 5.6.40 and PHP 7.x prior to 7.1.26 (7.1.x), 7.2.x prior to 7.2.14, and 7.3.x prior to 7.3.1. Root cause is memory read outside al...

CVE-2018-17960

CVE-2018-17960 affects CKEditor 4.x before 4.11.0, where a user-assisted XSS can be triggered by pasting in source mode. The issue arises from improper handling of HTML during source-mode paste, enabling injection of malicious script into a page viewed by other users. The documented remediation i...

CVE-2023-42859

CVE-2023-42859 affects macOS where an app may modify protected parts of the file system. Root cause details aren’t explicitly provided beyond this risk. The issue is fixed in macOS Sonoma 14.1 and also addressed in macOS Monterey 12.7.1 and macOS Ventura 13.6.1. CVSS context among sources indicat...

CVE-2021-44077

CVE-2021-44077 affects Zoho ManageEngine ServiceDesk Plus prior to 11306, ServiceDesk Plus MSP prior to 10530, and SupportCenter Plus prior to 11014. The issue enables unauthenticated remote code execution via /RestAPI servlet endpoints and ImportTechnicians in Struts configuration. Evidence in t...

CVE-2018-1303

CVE-2018-1303: An out-of-bounds read in mod_cache_socache could crash the Apache HTTP Server prior to 2.4.30, enabling a DoS against users of httpd. The issue is discussed across multiple advisories (Debian/ALT Linux/Arch Linux security notes and CentOS RH advisories) and is attributed to imprope...

CVE-2017-5487

CVE-2017-5487 affects WordPress 4.7.x prior to 4.7.1. The REST API endpoint wp-json/wp/v2/users does not properly restrict author listings, allowing unauthenticated remote access to usernames and related information. Root cause: insufficient access control on author listings in the REST API. Impa...

CVE-2025-23048

Affected software: Apache HTTP Server (httpd). CVE-2025-23048 describes an access-control bypass in mod_ssl when TLS 1.3 session resumption is used in configurations with multiple virtual hosts, each with different trusted client certificates; a client trusted for one vhost could access another i...

CVE-2023-52472

CVE-2023-52472 : Linux kernel vulnerability in crypto: rsa where a NULL dereference could occur if mpi_alloc() allocation fails. The fix adds a check for allocation failure to satisfy static analyzers; current small allocations are unlikely to fail, but the patch is implemented to prevent NULL de...

CVE-2023-3824

CVE-2023-3824 affects PHP runtimes 8.0.* before 8.0.30, 8.1.* before 8.1.22, and 8.2.* before 8.2.8. When loading a PHAR file and reading PHAR directory entries, PHP may fail an insufficient length check, allowing a stack buffer overflow that can cause memory corruption and potentially remote cod...

CVE-2022-29147

CVE-2022-29147 is documented as a Spoofing Vulnerability in Microsoft Edge (Chromium-based) . The available sources identify the issue with Edge UI spoofing, but do not provide detailed technical roots beyond the vulnerability class. The CVSS data in the Initial Document shows a low base score (3...

CVE-2021-3560

CVE-2021-3560 – Polkit local privilege escalation : A flaw in polkit allows a local unprivileged process to bypass credential checks for D-Bus requests, enabling privilege escalation to root. Technical details across connected sources show the issue arises when a requesting process disconnects fr...

CVE-2021-1879

CVE-2021-1879 affects Apple WebKit/WebKit-based parsing in iOS/iPadOS/watchOS (WebKit component). The issue is a cross-site scripting vulnerability triggered by processing malicious web content, potentially leading to universal XSS. Root cause: improved management of object lifetimes in WebKit/CS...

CVE-2019-18348

CVE-2019-18348 affects Python’s urllib/urllib2 handling of URL parameters. The issue allows CRLF injection when an attacker controls a url parameter, notably in the host component of a URL, enabling injection of HTTP headers. Public details in connected advisories confirm the vulnerability and ci...

CVE-2017-9120

CVE-2017-9120 affects PHP 7.x through 7.1.5, due to an Integer overflow in mysqli_real_escape_string that can trigger a denial of service (buffer overflow and application crash). The connected documents confirm this root cause and impact across multiple advisories and listings (e.g., CVE-2017-912...

CVE-2019-25162

CVE-2019-25162: In the Linux kernel, an information-leak/UAF issue was fixed in the i2c subsystem. The patch fixes a potential use-after-free by ensuring the adap structure is freed only after it is no longer in use; specifically, put_device() is moved down to avoid freeing the adapter too early....

CVE-2019-1064

CVE-2019-1064 is a Windows elevation-of-privilege flaw in the AppXSVC (Windows AppX Deployment Service) due to improper handling of hard links. The root cause allows a locally authenticated attacker to run processes in an elevated context, potentially installing programs or modifying data. Micros...

CVE-2021-33766

Technical details about CVE-2021-33766 are not publicly provided in the supplied documents. Monitor for updates from the referenced advisories; additional specifics (affected versions, exploitability, and fixes) are not available here.

CVE-2018-1273

CVE-2018-1273 is a remote code execution vulnerability in Spring Data Commons (affecting versions prior to 1.13.10 and 2.0–2.0.5, plus older unsupported builds). An unauthenticated attacker could supply crafted request parameters against Spring Data REST HTTP resources or via Spring Data projecti...

CVE-2013-1862

CVE-2013-1862 affects Apache HTTP Server 2.2.x up to 2.2.24, where mod_rewrite writes log data without sanitizing non‑printable characters. This can allow a remote attacker to execute arbitrary commands by sending an HTTP request containing an escape sequence for a terminal emulator, with some so...

CVE-2021-45968

Pascom CPS before 7.20 contains a known Local File Inclusion vulnerability (CVE-2021-45968) in Pascom Cloud Phone System, as documented by Nuclei templates. The issue can allow an attacker to access sensitive information or arbitrary files via LFI. Remediation: apply the latest vendor patches/upd...

CVE-2021-44521

CVE-2021-44521 affects Apache Cassandra when enable_user_defined_functions: true, enable_scripted_user_defined_functions: true, and enable_user_defined_functions_threads: false. The documented unsafe configuration can allow an attacker with cluster-level permissions to create user-defined functio...

CVE-2018-17463

CVE-2018-17463 is a remote code execution vulnerability in the V8 JavaScript engine used by Google Chrome/Chromium. The issue allows a remote attacker to execute arbitrary code inside the browser sandbox via a crafted HTML page, stemming from an incorrect side-effect annotation in V8. Public disc...

CVE-2023-52468

The CVE-2023-52468 entry describes a Linux kernel use-after-free in class_register. The issue arises because lock_class_key remains registered in lock_keys_hash after subsys_private is freed in an error path, so a task iterating the hash later may trigger a use-after-free. The fix unregisters the...