CVE-2017-14491

CVE-2017-14491 : Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to crash the service or potentially execute arbitrary code via a crafted DNS response. Affected component: dnsmasq. Root cause described as a heap overflow in the DNS reply-building path. Public details in ...

CVE-2021-31525

CVE-2021-31525 affects Go’s net/http (standard library). Affected are Go versions prior to 1.15.12 and 1.16.x prior to 1.16.4; processing very large HTTP header values in ReadRequest/ReadResponse can trigger a panic, causing denial of service on server, transport, or client in some configurations...

CVE-2025-32433

The CVE-2025-32433 issue affects Erlang/OTP’s SSH server and is caused by a flaw in SSH message handling during authentication, enabling an unauthenticated attacker to execute arbitrary commands with the SSH daemon’s privileges (potentially root). Affected OTP versions include OTP-27.3.2?3, OTP-2...

CVE-2024-1709

CVE-2024-1709 affects ConnectWise ScreenConnect (23.9.7 and earlier). It is an Authentication Bypass Using an Alternate Path or Channel that can grant direct access to confidential information or critical systems. Multiple sources indicate active exploitation and urge patching; ConnectWise releas...

CVE-2023-20273

CVE-2023-20273 concerns Cisco IOS XE Software Web UI. A vulnerability in the Web UI input validation allows an authenticated, remote attacker to inject commands with root privileges, potentially compromising the underlying OS. CVSS v3.1 base score 7.2 (HIGH); attack vector NETWORK, privileges req...

CVE-2012-2531

CVE-2012-2531 concerns Microsoft IIS. Public description indicates IIS 7.5 stores credentials in the Operational log with weak permissions, enabling local users to read credentials (Password Disclosure Vulnerability). Connected sources reference an IIS FTP information-disclosure issue (MS12-073) ...

CVE-2024-31310

CVE-2024-31310 affects Android: in AutofillManagerServiceImpl.newServiceInfoLocked, improper input validation can allow hiding an enabled Autofill service in the Autofill service settings. Impact is local privilege escalation with high confidentiality/integrity/availability implications, requirin...

CVE-2024-21338

CVE-2024-21338 is a Windows kernel local privilege escalation caused by an exposed IOCTL with insufficient access control in the appid.sys component. The vulnerability enables local attackers with LOW privileges and no user interaction to escalate to kernel to access high-privilege operations (CV...

CVE-2022-32149

CVE-2022-32149 enables DoS by crafting an Accept-Language header that causes significant parsing delay in Go’s text parsing. Connected advisories show affected packages across multiple distributions with available fixes: Astra Linux notes golang-x-text; CBL-Mariner entries indicate patched versio...

CVE-2022-23722

PingFederate Password Reset vulnerability (CVE-2022-23722): when the password-reset mechanism uses the Authentication API with an Authentication Policy, email OTP, PingID, or SMS, an existing user can reset another user’s password. The connected sources describe the issue and its impact but do no...

CVE-2022-24847

CVE-2022-24847 affects GeoServer (Java) where an unchecked JNDI lookup can lead to class deserialization and arbitrary code execution. Exploitation requires admin rights and use of the GeoServer GUI or REST API. Mitigations include restricting access to geoserver/web and geoserver/rest (and GeoWe...

CVE-2021-32027

CVE-2021-32027 is documented across multiple connected advisories as a PostgreSQL flaw in which, on versions prior to 13.3, 12.7, 11.12, 10.17, and 9.6.22, authenticated database users could write arbitrary bytes into server memory while modifying certain SQL array values due to missing bounds ch...

CVE-2020-2883

CVE-2020-2883 is an Oracle WebLogic Server deserialization vulnerability (Core) that allows unauthenticated remote code execution over network access via IIOP/T3, potentially taking over the WebLogic server. Affected Oracle Fusion Middleware WebLogic versions include 10.3.6.0.0, 12.1.3.0.0, 12.2....

CVE-2022-31123

Grafana contains a plugin-signature verification bypass (CVE-2022-31123) due to a versioning flaw in signed/unsigned plugin handling. A local authenticated attacker could persuade a server admin to load a malicious unsigned plugin. Affected CTs: Grafana versions prior to 9.1.8 and 8.5.14. Remedia...

CVE-2022-29097

Dell Wyse Management Suite versions prior to 3.7 (3.6.1 and below) are affected by a Path Traversal vulnerability in the Device API (CVE-2022-29097), allowing remote attackers with the web app privileges to read files on the server. Nessus/DSA-2022-143 references this issue among multiple vulnera...

CVE-2026-23744

CVE-2026-23744 affects MCPJam Inspector up to version 1.4.2. The Nuclei template and related sources describe a remote code execution (RCE) vulnerability exploitable via the /api/mcp/connect endpoint. The flaw arises from passing user-controlled input to shell execution, and the service is expose...

CVE-2022-23615

CVE-2022-23615 – XWiki Platform permission bypass. In affected XWiki versions, any user with SCRIPT right could save a document using the current user’s rights, potentially accessing APIs requiring programming rights if the current user also has programming rights. The issue has been patched in X...

CVE-2017-12171

CVE-2017-12171 is a vulnerability reported for Red Hat Enterprise Linux 6.9 with httpd 2.2.15-60. The regression causes comments in the Allow and Deny directives to be parsed incorrectly, potentially allowing a remote attacker to bypass access controls and gain access to a restricted HTTP resourc...

CVE-2009-1890

CVE-2009-1890 affects Apache HTTP Server when used as a reverse proxy. The mod_proxy_http.c mechanism can fail to correctly bound a stream when Content-Length is exceeded, causing a denial-of-service via CPU exhaustion from crafted requests. The issue is specific to the reverse-proxy path in mod_...

CVE-2024-52581

CVE-2024-52581 affects Litestar (ASGI framework). The vulnerability arises in the multipart/form-data parsing path prior to version 2.13.0, where the parser reads the entire request body into memory without a size limit, enabling unbounded memory consumption (DoS) on large uploads. The issue is t...

CVE-2023-5868

CVE-2023-5868 affects PostgreSQL memory handling via certain aggregate calls with unknown-type arguments, allowing remote access to parts of server memory through excessive output in aggregates. The issue is documented across multiple vendors' advisories, with remediation generally involving upgr...

CVE-2023-35355

CVE-2023-35355 is a Windows elevation-of-privilege vulnerability affecting the Windows Cloud Files Mini Filter Driver. The CVE is rated CVSSv3.1 base 7.8 (LOCAL exploit, LOW privileges required, no user interaction, HIGH impact to confidentiality, integrity, and availability) per Microsoft. Conne...

CVE-2022-2795

CVE-2022-2795 is a DNS resolver vulnerability in BIND where flooding the resolver with specific queries can cause a denial of service by severely degrading resolver performance. The issue is associated with the BIND 9 series (notably 9.16.x, 9.18.x, and 9.19.x branches in various advisories) and ...

CVE-2016-10033

PHPMailer CVE-2016-10033 affects the isMail transport in PHPMailer prior to 5.2.18, where an attacker can craft the Sender property to inject an extra parameter to the mail() call and achieve remote code execution on the web server. Related entries note the issue as a fix in PHPMailer versions 5....

CVE-2022-24872

Shopware CVE-2022-24872 is an improper access‑control issue in the admin-api where permissions set to the sales channel context can be used within a normal user session. Affects Shopware platform (Symfony/Vue) across affected releases; remediation is to update to version 6.4.10.1. For 6.1–6.3, se...

CVE-1999-0519

CVE-1999-0519 describes a Windows SMB/NETBIOS issue where a share password is default, null, or missing, enabling NULL session authentication bypass. Public sources (NVD, Red Hat, SUSE, OpenVAS/Nessus entries) consistently describe an authentication bypass risk tied to SMB/NETBIOS NULL sessions. ...

CVE-2022-25237

CVE-2022-25237 concerns Bonita Web 2021.2. An authentication/authorization bypass occurs due to an overly broad exclude pattern in the RestAPIAuthorizationFilter. By appending ;i18ntranslation or /../i18ntranslation/ to the end of a URL, users with no privileges can access privileged API endpoint...

CVE-2023-32002

CVE-2023-32002 concerns Node.js where the policy mechanism (experimental) can be bypassed via Module._load() , allowing modules outside policy.json. The CVE affects all supported lines using the experimental policy (Node.js 16.x, 18.x, 20.x). Connected advisories confirm affected packages as Node...

CVE-2023-0216

CVE-2023-0216 : OpenSSL contains an invalid pointer dereference on read when an application loads malformed PKCS7 data via d2i_PKCS7(), d2i_PKCS7_bio(), or d2i_PKCS7_fp(). This can cause an application crash and potentially a denial of service. The description notes that the TLS implementation it...

CVE-2022-27510

CVE-2022-27510 affects Citrix ADC and Citrix Gateway (Gateway) with unauthorized access to Gateway user capabilities. According to CTX463706, affected versions are Citrix ADC/Gateway 12.1.x before 12.1-65.21 (12.1-FIPS before 12.1-55.289), 13.0.x before 13.0-88.12, and 13.1.x before 13.1-33.47. T...

CVE-2018-5391

CVE-2018-5391 affects the Linux kernel (3.9+) via FragmentSmack: IP fragment reassembly can be exploited to exhaust CPU and cause DoS. Citrix/Arista/CentOS advisories describe affected products and kernel updates; CentOS/RH advisories list patched versions and note the vulnerability stems from fr...

CVE-2011-3348

The CVE-2011-3348 issue affects the Apache HTTP Server’s mod_proxy_ajp in combination with mod_proxy_balancer, where certain configurations allow remote attackers to trigger a denial of service by sending a malformed HTTP request. The vulnerability is described as causing a temporary error state ...

CVE-2023-46805

CVE-2023-46805 describes an authentication bypass in the web component of Ivanti Connect Secure (ICS) and Ivanti Policy Secure gateways (9.x and 22.x). The vulnerability allows an unauthenticated or improperly authenticated actor to access restricted resources by bypassing access controls, per CV...

CVE-2023-32006

CVE-2023-32006 affects Node.js when using the experimental policy mechanism (supported in 16.x, 18.x, 20.x). The root cause is that module.constructor.createRequire() can bypass policy and load modules outside policy.json. Multiple advisories reference the vulnerability alongside other policy-rel...

CVE-2023-24932

CVE-2023-24932 is a Secure Boot bypass vulnerability. It involves a Microsoft-signed UEFI application using the IhisiParamBuffer NVRAM variable to bypass Security2 verification, potentially allowing execution of unsigned binaries during early boot. Affected components include DT Research’s DtBios...

CVE-2023-23376

CVE-2023-23376 is a Windows Common Log File System Driver elevation-of-privilege vulnerability. The flaw in the CLFS driver could allow a local attacker to gain SYSTEM privileges, potentially enabling a chain with other bugs. Public exploitation and in-the-wild activity are discussed in Patch Tue...

CVE-2022-24748

CVE-2022-24748 affects Shopware: before version 6.4.8.2, an improper API route check allows modifying customers and creating orders without App Permission. Root cause: inadequate authorization in API routing. Impact: unauthorized actions with no privileges; no exploitation details provided in the...

CVE-2021-40690

The CVE-2021-40690 issue affects Apache Santuario – XML Security for Java. All versions prior to 2.2.3 and 2.1.7 are vulnerable due to the "secureValidation" property not being passed when creating a KeyInfo from a KeyInfoReference element, enabling an XPath Transform abuse to extract local .xml ...

CVE-2019-16746

CVE-2019-16746 : A buffer overflow in the Linux kernel (net/wireless/nl80211.c) can occur through improper bounds checking of variable-length elements in a beacon head, enabling potential arbitrary code execution or a system crash. The issue affects Linux kernels up to at least 5.2.17, with repor...

CVE-2018-20148

CVE-2018-20148 affects WordPress versions prior to 4.9.9 and 5.x prior to 5.0.1. The issue stems from mishandling of serialized data at phar:// URLs in wp-includes/post.php: wp_get_attachment_thumb_file can mishandle metadata and lead to PHP object injection via crafted wp.getMediaItem XMLRPC cal...

CVE-2023-46589

CVE-2023-46589 : Improper input validation in Apache Tomcat allows HTTP trailer headers to exceed the header size limit, causing the server to treat a single request as multiple requests and enabling potential request smuggling when behind a reverse proxy. Affected lines cover Tomcat releases fro...

CVE-2021-27928

MariaDB and Percona Server are affected by CVE-2021-27928: an untrusted search path enables eval injection, allowing a database SUPER user to execute OS commands after altering wsrep_provider and wsrep_notify_cmd. Affected versions: MariaDB 10.2 before 10.2.37, 10.3 before 10.3.28, 10.4 before 10...

CVE-2021-2022

CVE-2021-2022 is a vulnerability in Oracle MySQL Server (component: InnoDB) that affects MySQL Server versions 5.6.50 and earlier, 5.7.32 and earlier, and 8.0.22 and earlier. The issue is exploitable by a highly privileged attacker who can access the affected server over network via multiple prot...

CVE-2018-19296

PHPMailer (versions before 5.2.27 and 6.x before 6.0.6) is affected by an object injection vulnerability (CVE-2018-19296). The issue stems from how attachments may be processed, enabling an attacker to inject objects via crafted input, potentially leading to code execution. Patches were released ...

CVE-2018-19321

CVE-2018-19321 affects GIGABYTE GPCIDrv and GDrv low-level drivers in APP Center (and related tools) that expose functionality to read/write arbitrary physical memory. The root cause is insufficient input control in the drivers, enabling a local attacker to elevate privileges. Affected products/v...

CVE-2026-34480

Technical details about CVE-2026-34480 are not publicly available in the provided connected documents. The initial description gives an overview but no vendor/product/version specifics or remediation steps here. Monitor for updates from official advisories.

CVE-2024-53582

CVE-2024-53582 affects OpenPanel v0.3.4, where the Copy and View functions in the File Manager are vulnerable to directory traversal via crafted HTTP requests. The root cause is a directory traversal flaw in the File Manager’s Copy and View endpoints, enabling an attacker to access filesystem pat...

CVE-2024-31033

CVE-2024-31033 concerns the JJWT (Java JWT) library up to version 0.12.5, where an issue in signing/verification could lead a user to falsely believe a key is strong due to ignored characters in signing operations (setSigningKey in DefaultJwtParser and signWith in DefaultJwtBuilder). IBM and Red ...

CVE-2024-26582

CVE-2024-26582 (Linux kernel) : The vulnerability lies in the TLS path where tls_decrypt_sg does not take a reference on the pages from clear_skb. Consequently, the put_page() in tls_decrypt_done can free those pages, enabling a use-after-free when reading from a partially read skb in process_rx_...

CVE-2022-29161

CVE-2022-29161 concerns the XWiki Platform Crypto API generating X509 certificates signed by default with SHA-1 with RSA , a deprecated algorithm due to collision risks. The issue was patched in XWiki versions 13.10.6, 14.3.1 and 14.4-rc-1 , after which the API signs certificates with SHA-256 wit...