CVE-2023-24539

CVE-2023-24539 affects golang html/template across multiple advisories (Astra Linux, CBLMariner, AlmaLinux) and is linked to improper sanitization of CSS values in HTML templates. The issue can allow injection of unexpected HTML when templates process untrusted input due to how CSS values are han...

CVE-2022-22995

Netatalk (Apple Filing Protocol server) is affected by CVE-2022-22995. The vulnerability arises from a flaw in the interaction between SMB and AFP primitives in default configurations, enabling arbitrary file writes and potentially remote code execution. Demonstrations and advisories reference an...

CVE-2021-3347

CVE-2021-3347 is a Linux kernel use-after-free in PI futex fault handling that could allow a local user to crash the kernel or escalate privileges. Multiple connected advisories confirm the issue and indicate fixes have been released across distributions (e.g., generic kernel updates and kernel l...

CVE-2020-10730

CVE-2020-10730 affects the Samba AD DC LDAP Server (ASQ, VLV, and paged_results) with a NULL pointer dereference/use-after-free in affected builds prior to 4.10.17, 4.11.11, and 4.12.4. The root cause is in handling certain LDAP controls in the AD DC LDAP server, with the issue also present in th...

CVE-2019-2602

CVE-2019-2602 affects Oracle Java SE and Java SE Embedded Libraries component. Affected: Java SE 7u211, 8u202, 11.0.2, 12; Java SE Embedded 8u201. Root cause per the entry: vulnerability in Libraries that allows an unauthenticated, network-based attacker to cause a hang or frequent crashes (compl...

CVE-2025-53799

CVE-2025-53799 affects the Windows Imaging Component. The vulnerability arises from use of an uninitialized resource in Imaging Component code, enabling local attackers to disclose information. The NCSC entry confirms the impact as Access to sensitive data with a CVSS-like rating around 5.5 (Medi...

CVE-2018-9447

CVE-2018-9447 affects Android devices (Pixel/Nexus context) via a vulnerability in EmergencyCallbackModeExitDialog.java where a missing null check in onCreate can crash emergency callback mode, enabling local denial of service without extra privileges. Descriptions across multiple sources confirm...

CVE-2023-5870

Summary (CVE-2023-5870) : PostgreSQL vulnerability where the pg_cancel_backend role can signal background workers (including the autovacuum launcher and logical replication launcher). The underlying issue is that signaling is possible for non-core extensions with less-resilient background workers...

CVE-2023-46747

CVE-2023-46747 is an unauthenticated remote code execution flaw in F5 BIG-IP TMUI (management port/self IP). Public linked PoCs/exploits demonstrate unauthenticated RCE by targeting TMUI to create or leverage a user/token flow and execute commands on vulnerable devices; CVSS v3.1 = 9.8 (CRITICAL)...

CVE-2023-25717

CVE-2023-25717 affects Ruckus Wireless Admin panels (10.4 and earlier) across Ruckus ZoneDirector, SmartZone, and Solo APs where the web services component is enabled. The vulnerability enables unauthenticated remote code execution via an unauthenticated HTTP GET request (example parameterized lo...

CVE-2022-46768

CVE-2022-46768 describes an arbitrary file read vulnerability in the Zabbix Web Service Report Generation component that listens on port 10053. The issue arises because the service does not validate URL parameters before reading files, enabling potential exposure of sensitive data. The CVSS 3.1 b...

CVE-2022-37967

CVE-2022-37967 is described in connected sources as a Samba-related Kerberos elevation-of-privilege flaw. The Alt Linux entry notes fixes for Samba 4.16 (4.16.8-alt1) and 4.17.x packages addressing CVE-2022-37966, CVE-2022-37967, and CVE-2022-38023, with the specific issue: a service account with...

CVE-2019-14615

The CVE-2019-14615 issue concerns the Linux kernel i915 Intel graphics driver: insufficiently cleared data structures on context switches could leak information to a local attacker. Public notes indicate that the Ubuntu 18.04 kernel fix for CVE-2019-14615 was incomplete in certain kernel versions...

CVE-2019-2758

CVE-2019-2758 affects Oracle MySQL Server, specifically the InnoDB component. Supported affected versions are 5.7.26 and prior, and 8.0.16 and prior. The vulnerability allows a high-privilege attacker with network access to cause a hang or frequent crash (DoS) and may allow unauthorized update, i...

CVE-2019-2627

CVE-2019-2627 affects the MySQL Server component (Server: Security: Privileges). Public details show affected versions: 5.6.43 and prior, 5.7.25 and prior, and 8.0.15 and prior. The vulnerability is exploitable over network by a high-privilege attacker and can lead to a hang or crash (DoS) of MyS...

CVE-2024-12053

CVE-2024-12053 denotes a type confusion issue in V8 used by Google Chrome/Chromium, before version 131.0.6778.108. The vulnerability allows remote exploitation via a crafted HTML page, with a high impact across confidentiality, integrity, and availability, and requires user interaction and networ...

CVE-2020-14812

CVE-2020-14812 affects Oracle MySQL Server (component: Server: Locking) with affected versions 5.6.49 and prior, 5.7.31 and prior, and 8.0.21 and prior. Exploitation can lead to a hang or frequent crashes (DoS) with network access. Remediation status varies by distribution; Debian LTS notes a fix...

CVE-2020-10732

CVE-2020-10732 describes a Linux Kernel flaw in the Userspace core dumps implementation. According to connected IBM bulletin entries, the issue: allows a local authenticated attacker to obtain sensitive information or cause a program crash by exploiting the core-dump handling path. The vulnerabil...

CVE-2019-15917

CVE-2019-15917 concerns a use-after-free in the Linux kernel before 5.0.5. The bug occurs when hci_uart_register_dev() fails in hci_uart_set_proto() within drivers/bluetooth/hci_ldisc.c, potentially after a local Bluetooth UART device setup. Affected: Linux kernel versions prior to 5.0.5. Impact ...

CVE-2019-10130

CVE-2019-10130 affects PostgreSQL where statistics kept for columns can be consulted during query planning before row-level security is enforced, allowing an attacker with SELECT privilege to read the most common values or histograms of certain columns. Affected versions include PostgreSQL 11.x (...

CVE-2019-2739

CVE-2019-2739 affects the MySQL Server component of Oracle MySQL (subcomponent: Server: Security: Privileges). Affected versions are 5.6.44 and earlier, 5.7.26 and earlier, and 8.0.16 and earlier. An attacker with logon to the infrastructure where MySQL Server executes and with high privileges ca...

CVE-2018-20815

CVE-2018-20815 affects QEMU (illustrated by RHSA-2019:1723/1743 and Oracle Linux advisories). Description in the CVE: in QEMU 3.1.0, load_device_tree calls the deprecated load_image function, which has a buffer overflow risk. Connected documents substantiate device_tree.c heap/buffer overflow con...

CVE-2016-7407

CVE-2016-7407 affects Dropbear SSH. The dropbearconvert tool allows arbitrary code execution via a crafted OpenSSH key file due to improper handling of ASN.1 OpenSSH keys in Dropbear before version 2016.74. The impact is remote code execution with the privileges of the dropbearconvert/dropped pro...

CVE-2006-5052

OpenSSH before 4.4 on some platforms is vulnerable to a remote attacker determining the validity of usernames via a GSSAPI authentication abort. The issue affects portable OpenSSH versions prior to 4.4 and is discussed in multiple advisories (e.g., RHSA-2007:0703, RHSA-2007:0540, and related OSS/...

CVE-2025-11932

CVE-2025-11932 describes a timing side-channel in TLS 1.3 PSK binder verification, where a non-constant-time check could leak information about the PSK binder. The connected Nessus/OSV/DEBIAN listings corroborate a vulnerability in wolfSSL-related TLS/PSK processing and reference a changelog noti...

CVE-2025-53020

CVE-2025-53020 affects Apache HTTP Server versions 2.4.17 through 2.4.63. The issue is described as a Late Release of Memory after Effective Lifetime vulnerability. The recommended remediation is to upgrade to version 2.4.64, which fixes the issue. Public references from Debian, Amazon Linux advi...

CVE-2024-21096

Technical details about CVE-2024-21096 are not publicly provided in the supplied documents. Monitoring for updates is advised; the current sources do not specify affected products, versions, exploitability, or remediation within the given materials.

CVE-2021-46953

The CVE-2021-46953 issue affects the Linux kernel ACPI GTDT driver. If a probe fails due to invalid firmware properties, the driver may unmap an interrupt it mapped earlier without verifying that the mapping succeeded, and if the firmware reports an interrupt number overlapping the GIC SGI range,...

CVE-2023-22527

CVE-2023-22527 is an OGNL/SSTI-based remote code execution vulnerability in Atlassian Confluence Data Center and Server. Affected versions include Confluence Data Center/Server 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x, and 8.5.0–8.5.3 (per multiple exploits). Anonymous attackers could trigger RCE via a ...

CVE-2023-25725

HAProxy URL: CVE-2023-25725 affects HAProxy with HTTP/1 header parsing issues that may allow bypassing access control via request smuggling. The root cause is that the HTTP header parsers can accept empty header field names, potentially truncating the header list and causing headers to disappear ...

CVE-2022-31035

CVE-2022-31035 affects Argo CD, a Kubernetes GitOps tool. All versions starting with v1.0.0 are vulnerable to an XSS issue that lets an attacker inject a javascript: link in the UI; when clicked by a victim, the script can run with the victim’s permissions (potentially admin) and perform UI/API a...

CVE-2018-16042

CVE-2018-16042 is a security bypass affecting Adobe Acrobat and Reader versions listed (2019.008.20081/20080, 2017.011.30106/30105, 2015.006.30457/30456, and related builds). The vulnerability’s impact is information disclosure if exploited. The provided sources indicate a bypass issue without de...

CVE-2026-3099

Affects Libsoup’s server-side Digest authentication in SoupAuthDomainDigest. The vulnerability arises from failure to properly track issued nonces and increment nonce-count (nc), enabling a remote attacker to capture a single valid authentication header and replay it to bypass authentication and ...

CVE-2025-11931

The set of connected documents confirms this CVE affects wolfSSL’s XChaCha20-Poly1305 code, specifically the wc_XChaCha20Poly1305_Decrypt() function. The root cause is an integer underflow that can lead to out-of-bounds access when decrypting, and this path is taken from direct application calls ...

CVE-2025-11933

CVE-2025-11933 describes an issue in wolfSSL up to version 5.8.2 where improper input validation in the TLS 1.3 CKS extension parsing can allow a remote unauthenticated attacker to cause a denial‑of‑service with a crafted ClientHello containing duplicate CKS extensions. Affected software is wolfS...

CVE-2024-3393

CVE-2024-3393 affects Palo Alto Networks PAN-OS DNS Security: a vulnerability in parsing/logging malicious DNS packets allows an unauthenticated attacker to reboot the firewall via a crafted packet, with repeated attempts forcing maintenance mode. Connected sources indicate active exploitation an...

CVE-2024-32927

CVE-2024-32927 affects Google's Pixel devices via the RadioExt.cpp function sendDeviceState_1_6, where a use-after-free due to improper locking is reported. The vulnerability enables local escalation of privilege with no additional execution privileges required and no user interaction needed, per...

CVE-2021-33159

Intel AMT vulnerability CVE-2021-33159 stems from improper authentication in the AMT subsystem, enabling a privileged user to escalate privileges via local access. Affected firmware versions include AMT before 11.8.93, 11.12.93, 11.22.93, 12.0.92, 14.1.67, 15.0.42, and 16.1.25. Red Hat and other ...

CVE-2022-41034

Technical details are not publicly available in the provided documents. Monitor for updates.

CVE-2022-38750

CVE-2022-38750 concerns the SnakeYAML YAML parser. Multiple connected sources confirm the issue: parsing untrusted YAML can lead to a Denial of Service via stack overflow, impacting availability. The vulnerability is associated with the SnakeYAML package (Java) and is addressed in various advisor...

CVE-2018-20346

CVE-2018-20346 affects SQLite when the FTS3 extension is enabled. SQLite before 3.25.3 exhibits an integer overflow (and resulting buffer overflow) for FTS3 queries after crafted changes to FTS3 shadow tables, enabling remote attackers to execute arbitrary SQL statements and potentially take cont...

CVE-2022-28958

CVE-2022-28958 maps to a D-Link DIR816L remote code execution vulnerability. CNVD/CNNVD describe an RCE in DIR816L_FW206b01 due to improper filtering of the value parameter in shareport.php, allowing arbitrary code execution on affected devices. No specific affected versions or patch details are ...

CVE-2025-0237

CVE-2025-0237 concerns the WebChannel API: the sending principal was accepted without validation, enabling potential privilege escalation. Affected products include Firefox (all releases before 134; including ESR

CVE-2023-39193

CVE-2023-39193 affects the Linux kernel Netfilter SCTP path, where sctp_mt_check fails to validate the flag_count field, enabling a local attacker with CAP_NET_ADMIN to trigger an out-of-bounds read that can crash the system or cause information disclosure. Connected advisories (Red Hat, AlmaLinu...

CVE-2023-21971

CVE-2023-21971 concerns Oracle MySQL Connectors, specifically the Connector/J component. Affected are 8.0.32 and earlier versions. The vulnerability, described as difficult to exploit, allows a high-privilege attacker with network access via multiple protocols to compromise MySQL Connectors. Impa...

CVE-2019-9518

CVE-2019-9518 describes a denial-of-service risk in HTTP/2 where a flood of frames with empty payloads (DATA, HEADERS, CONTINUATION, PUSH_PROMISE) and no end-of-stream flag can exhaust CPU and memory. Connected docs confirm concrete mentions across multiple ecosystems: Cloud Foundry products (emp...

CVE-2019-4259

CVE-2019-4259 affects IBM Spectrum Scale with CES stack enabled (versions 4.1.1–5.0.0). Affected component: CES stack, where sensitive data could be included with service snaps. The IBM bulletin identifies affected releases and provides fixes: upgrade to V4.1.1.23 (for 4.1.1 branch), V4.2.3.14 (f...

CVE-2018-20677

Bootstrap before 3.4.0 is vulnerable to cross-site scripting via the affix configuration target property due to improper handling of input in that attribute. The issue enables XSS in the affected component, and the condition is described as existing in Bootstrap 3.x prior to 3.4.0. Public referen...

CVE-2023-6502

Summary of CVE-2023-6502: A DoS vulnerability in GitLab CE/EE triggered by processing a crafted wiki page. Affected: GitLab Community Edition and Enterprise Edition, across all versions prior to 16.10.6, 16.11 prior to 16.11.3, and 17.0 prior to 17.0.1. Root cause and exact technical details are ...

CVE-2021-46918

CVE-2021-46918 is a Linux kernel vulnerability in the IDXDMA/DMAR DMA engine where MSIX permission entries were not cleared on device shutdown. The issue arose because MSIX entries were left enabled and pasid entries remained programmed when the device shut down, potentially enabling persistence ...