CVE-2025-34027

Summary of CVE-2025-34027: Versa Concerto SD-WAN exposes an authentication bypass in the Traefik reverse proxy configuration, enabling unauthorized access to administrative endpoints. In addition, the Spack upload endpoint can trigger a TOCTOU race with path loading manipulation to achieve remote...

CVE-2025-0237

CVE-2025-0237 concerns the WebChannel API: the sending principal was accepted without validation, enabling potential privilege escalation. Affected products include Firefox (all releases before 134; including ESR

CVE-2023-6502

Summary of CVE-2023-6502: A DoS vulnerability in GitLab CE/EE triggered by processing a crafted wiki page. Affected: GitLab Community Edition and Enterprise Edition, across all versions prior to 16.10.6, 16.11 prior to 16.11.3, and 17.0 prior to 17.0.1. Root cause and exact technical details are ...

CVE-2023-39193

CVE-2023-39193 affects the Linux kernel Netfilter SCTP path, where sctp_mt_check fails to validate the flag_count field, enabling a local attacker with CAP_NET_ADMIN to trigger an out-of-bounds read that can crash the system or cause information disclosure. Connected advisories (Red Hat, AlmaLinu...

CVE-2023-21971

CVE-2023-21971 concerns Oracle MySQL Connectors, specifically the Connector/J component. Affected are 8.0.32 and earlier versions. The vulnerability, described as difficult to exploit, allows a high-privilege attacker with network access via multiple protocols to compromise MySQL Connectors. Impa...

CVE-2020-12651

CVE-2020-12651 affects VanDyke Software SecureCRT versions prior to 8.7.2. The issue is a memory corruption vulnerability triggered by an invalid banner-driven CSI sequence, where a line number passed to CSI functions can exceed INT_MAX, leading to integer overflow and potential arbitrary code ex...

CVE-2020-8015

CVE-2020-8015 is a local privilege-escalation in Exim packaging affecting openSUSE Factory exim versions prior to 4.93.0.4-3.1. The issue allows escalation from the mail user to root via a UNIX symbolic link (Symlink) following vulnerability. Remediation is to upgrade to Exim 4.93.0.4 or newer; S...

CVE-2017-7546

CVE-2017-7546 affects PostgreSQL versions prior to 9.2.22, 9.3.18, 9.4.13, 9.5.8 and 9.6.4, due to an incorrect authentication flaw that allows remote attackers to gain access to accounts with an empty password. Upstream fixed versions are 9.2.22, 9.3.18, 9.4.13, 9.5.8, and 9.6.4; vendor advisori...

CVE-2025-67896

Exim vulnerability CVE-2025-67896 affects Exim before 4.99.1 with certain non-default rate-limit configurations, enabling a remote heap-based buffer overflow due to unvalidated casting of database records to internal structures. Fedora advisories indicate fixes in exim-4.99.1-1 (FC42/FC43). Impac...

CVE-2024-46982

CVE-2024-46982 affects Next.js pages router SSR caching: crafted requests can poison non-dynamic SSR routes (e.g., pages/dashboard.tsx) and lead to caching of sensitive responses with Cache-Control: s-maxage=1, stale-while-revalidate, potentially spreading via upstream CDNs. Affected versions are...

CVE-2023-1255

The CVE-2023-1255 vulnerability affects OpenSSL’s AES-XTS decryption on 64-bit ARM, where the implementation may read beyond the ciphertext buffer (for ciphertext sizes that are 4 mod 5 in 16-byte blocks), causing a crash and potential denial of service. Affected OpenSSL deployments may crash if ...

CVE-2022-29846

Progress WhatsUp Gold (versions 16.1–21.1.1 and 22.0.0) is affected by a vulnerability that allows an unauthenticated attacker to obtain the product installation serial number. The publicly provided documents confirm affected versions and the disclosure impact, but do not specify the root cause d...

CVE-2025-11934

CVE-2025-11934 concerns wolfSSL’s TLS 1.3 CertificateVerify signature algorithm negotiation. The vulnerability stems from improper input validation that can downgrade the negotiated signature algorithm (e.g., client supports ECDSA P521 but server accepts and uses ECDSA P256), potentially weakenin...

CVE-2025-12817

CVE-2025-12817 is addressed in multiple PostgreSQL security advisories. The issue is missing authorization in CREATE STATISTICS, allowing a table owner to cause denial of service for other CREATE STATISTICS users by creating in any schema; a subsequent CREATE STATISTICS using the same name can fa...

CVE-2025-21971

CVE-2025-21971 in the Linux kernel net_sched subsystem: creation of a Qdisc class with classid TC_H_ROOT (0xFFFFFFFF) could terminate traversal early during qdisc tree walk, causing incorrect root backlog statistics and potential CRASH in DRR. The fix prevents creating any Qdisc class with TC_H_R...

CVE-2023-38611

CVE-2023-38611 affects WebKitGTK/WebKitGTK+ in WebKitGTK’s handling of web content. The vulnerability stems from memory handling issues that could allow arbitrary code execution when processing web content. Debian, Fedora, Gentoo, AlmaLinux advisories and the CVE pages indicate updates to WebKitG...

CVE-2023-25652

CVE-2023-25652 affects Git before 2.30.9, 2.31.8, 2.32.7, 2.33.8, 2.34.8, 2.35.8, 2.36.6, 2.37.7, 2.38.5, 2.39.3, and 2.40.1.** The vulnerability arises when feeding specially crafted input to git apply --reject, which can cause a path outside the working tree to be overwritten with partially con...

CVE-2022-33329

Robustel R1510 OS command injection (CVE-2022-33329) exists in the web server ajax endpoints, including /ajax/set_sys_time/. The root cause is unsafe handling of user-controlled parameters (via functions like sysprintf and system), enabling arbitrary command execution on the device. Talos documen...

CVE-2022-29845

Summary: CVE-2022-29845 affects Progress Ipswitch WhatsUp Gold versions 21.1.0–21.1.1 and 22.0.0. An authenticated user can trigger an API transaction to read the contents of a local file. The Red Hat and CVE CN/CZ records corroborate this issue with the same description. The Metasploit entry sho...

CVE-2021-2166

CVE-2021-2166 affects the MySQL/MariaDB Server: DML component. Public sources in connected documents confirm affected products and versions: MySQL/MariaDB server vulnerable when running on Oracle MySQL 5.7.33 and earlier and 8.0.23 and earlier (per AstraLinux/ALMA advisories and related entries)....

CVE-2019-2628

CVE-2019-2628 affects MySQL Server (InnoDB) with affected versions 5.7.25 and prior, and 8.0.15 and prior. An attacker with network access via multiple protocols can exploit this easily to cause a hang or frequent crash of MySQL Server (DoS). Connected sources confirm the vulnerability in multipl...

CVE-2012-4557

CVE-2012-4557 affects the Apache HTTP Server, specifically the mod_proxy_ajp module in versions 2.2.12–2.2.21. The vulnerability causes a worker node to enter an error state when a long request-processing time is detected, enabling remote attackers to trigger a denial of service via an expensive ...

CVE-2024-55591

CVE-2024-55591 is a critical authentication bypass affecting FortiOS and FortiProxy. Public PoCs describe remote exploitation via WebSocket/Telnet management interfaces to gain super-admin privileges without valid credentials. Affected versions include FortiOS 7.0.0–7.0.16 and FortiProxy 7.0.0–7....

CVE-2022-48565

CVE-2022-48565 is an XXE issue in Python’s plistlib that occurs up to Python 3.9.1, where entity declarations in XML plist files could lead to vulnerabilities. The root cause is plistlib not rejecting entity declarations in XML plist files. Public advisories confirm remediation by updating Python...

CVE-2022-23656

Zulip Server (main branch, from June 2021 onward) is vulnerable to a cross-site scripting (XSS) issue on the recent topics page. The vulnerability arises from insufficient validation of client-side data, allowing an attacker to craft a malicious full name and trigger JavaScript execution when a v...

CVE-2019-20388

CVE-2019-20388 affects libxml2 2.9.10. The Broadcom advisory BSNSA36819 confirms a memory leak in xmlSchemaValidateStream (xmlschemas.c) that can impact availability (memory exhaustion) when processing XML schemas. Affected component: libxml2’s xmlSchemaValidateStream; root cause relates to a lea...

CVE-2025-48593

The CVE-2025-48593 entry concerns a remote code execution flaw in Android’s system code, specifically within the bta_hf_client_main.cc path (bta_hf_client_cb_init). The root cause is a missing bounds check during processing of network packets, enabling a buffer overflow via memcpy into a fixed-si...

CVE-2023-36762

CVE-2023-36762 is a Microsoft Word remote code execution vulnerability. The available documents confirm an impact on Word and related Word components, with an exploit path requiring user interaction and local access (CVSS 3.1: AV=L, AC=L, PR=None, UI=Required, C/H/I/H/A=L). Public details note po...

CVE-2016-1546

CVE-2016-1546 affects Apache HTTP Server 2.4.17/2.4.18 with mod_http2 enabled, where there is no limit on the number of simultaneous stream workers for a single HTTP/2 connection. This can allow remote attackers to cause a denial of service (stream-processing outage) via modified flow-control win...

CVE-2013-0424

CVE-2013-0424 is an unspecified vulnerability in the Java Runtime Environment (JRE) component affecting Oracle Java SE 7 up to Update 11, 6 up to Update 38, 5.0 up to Update 38, and 1.4.2_40 and earlier, plus OpenJDK 7. The issue relates to RMI and could allow remote attackers to affect integrity...

CVE-2024-56128

CVE-2024-56128 affects Apache Kafka SCRAM authentication. Root cause: SCRAM server nonce verification against the server’s first message was not performed per RFC 5802, enabling plaintext-snooping scenarios if SCRAM is used over non-TLS. Impact: exploitation requires access to plaintext SCRAM exc...

CVE-2024-22195

CVE-2024-22195 affects Jinja2: the xmlattr filter can accept keys/values that bypass escaping, enabling possible XSS via HTML attribute injection. Public notes show affected packages including python-jinja2 and jinja2, with fixes in 3.1.4 (e.g., Astra Linux entry indicates 3.1.4 as the patch). De...

CVE-2023-4813

CVE-2023-4813 is a glibc flaw where gaih_inet may use freed memory, causing an application crash. It is exploitable when getaddrinfo is called and NSS/hosts database uses SUCCESS=continue or SUCCESS=merge. Public documentation confirms the issue and tracks it alongside other CVEs (e.g., CVE-2023-...

CVE-2022-40982

CVE-2022-40982 is an information-leak via microarchitectural state after transient execution in certain Intel vector execution units. The connected docs consistently describe local information disclosure by an authenticated user on affected Intel processors, with mitigations centered on firmware/...

CVE-2023-31130

CVE-2023-31130 affects the c-ares asynchronous DNS library. The vulnerability is a buffer underflow/underwrite in ares_inet_net_pton() for IPv6 addresses such as 0::00:00:00/2. Affected versions are prior to the fix, with the issue addressed in c-ares 1.19.1. Multiple advisories reference upgrade...

CVE-2023-21835

CVE-2023-21835 affects Oracle Java SE and GraalVM Enterprise Edition (JSSE/DTLS handshake). An unauthenticated network attacker can exploit DTLS to cause a partial denial of service on affected Java runtimes. Affected: Oracle Java SE 11.0.17, 17.0.5, 19.0.1 and Oracle GraalVM EE 20.3.8, 21.3.4, 2...

CVE-2022-28282

Summary: CVE-2022-28282 is a use-after-free in the L10n/TranslateDocument path triggered when destroying an object during JavaScript execution and then referencing it via a freed pointer, with exploits tied to Firefox/Thunderbird. Affected versions: Thunderbird < 91.8, Firefox < 99, and Fir...

CVE-2022-41223

The CVE-2022-41223 issue affects the Director database component of Mitel MiVoice Connect (up to 19.3 / 22.22.6100.0). An authenticated attacker can perform a code-injection attack via crafted data due to insufficient restrictions on the database data type. This vulnerability is tracked by CISA a...

CVE-2022-22526

CVE-2022-22526 affects Carlo Gavazzi UWP3.0 and CPY Car Park Server (v2.8.3). The root cause is a missing authentication mechanism that allows full access via the API, enabling unauthorized control or data access. Public sources in connected documents describe an access control error leading to r...

CVE-2020-28469

CVE-2020-28469 affects the glob-parent package prior to v5.1.2. The flaw arises from the enclosure-regex used to validate strings ending in an enclosure that contains a path separator. The described effect is a Regular Expression Denial of Service (ReDoS) scenario. Affected software/component: gl...

CVE-2021-33194

The CVE affects golang.org/x/net (likely the net/html component) prior to the commit 37e1c6afe023, where crafted input to ParseFragment can trigger an infinite loop and cause a denial of service. Exploitation details are not provided in the linked documents. Remediation/patched versions are not s...

CVE-2020-15522

CVE-2020-15522 affects Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.1.2/1.0.2.1, and BC-FNA before 1.0.1.1. The issue is a timing side-channel in the EC math library that can reveal information about a private key when an attacker observes timing across multiple d...

CVE-2017-18640

CVE-2017-18640 affects SnakeYAML; the vulnerability arises from entity expansion (Billion Laughs style) during load, allowing abuse of the alias feature. Affected versions are before 1.26 (e.g., SnakeYAML 1.25.x onward) with public mentions in multiple advisories showing a fix in 1.26. Fedora/Alm...

CVE-2008-2072

CVE-2008-2072 describes a Cross-site scripting (XSS) vulnerability in index.php of Virtual Design Studio vlbook 1.21, allowing remote attackers to inject arbitrary web script or HTML via the l parameter. The entry notes this is a different vector from CVE-2006-3260, and the affected component is ...

CVE-2025-48493

The vulnerability CVE-2025-48493 affects the Yii 2 Redis extension (yii2-redis) used with Yii Framework 2.0. Prior to version 2.0.20, AUTH credentials are logged in plain text when a connection fails, exposing usernames and passwords to anyone with access to the logs. The issue is mitigated by up...

CVE-2025-29923

CVE-2025-29923 affects the Go Redis client library (go-redis). Prior to versions 9.5.5, 9.6.3, and 9.7.3, the client may return out-of-order responses when a timeout occurs during the CLIENT SETINFO phase at connection establishment, especially if identity transmission is enabled or timeouts are ...

CVE-2022-23122

CVE-2022-23122 affects Netatalk, with the flaw in setfilparams allowing an unauthenticated attacker to trigger a stack-based buffer overflow and execute code as root. This is a remote code execution with high impact on confidentiality, integrity, and availability. The issue stems from insufficien...

CVE-2022-27228

CVE-2022-27228 affects Bitrix Site Manager’s built-in vote (Polls, Votes) module prior to version 21.0.100. A remote unauthenticated attacker can execute arbitrary code on affected systems due to the module’s vulnerability, with CVSS overall high impact (C/H/I/A all high) reported in multiple sou...

CVE-2021-22222

Wireshark is affected by CVE-2021-22222 due to an infinite loop in the DVB-S2-BB dissector, impacting 3.4.0 through 3.4.5 and enabling a denial-of-service via crafted captures or packet injection. The issue originates in the DVB-S2-BB parser; exploiting it causes the Wireshark process to hang, co...

CVE-2021-23337

CVE-2021-23337 (Lodash) affects Lodash versions prior to 4.17.21, vulnerable to Command Injection via the template function. Affected component: lodash.template; root cause: unsafe template evaluation. Impact per document: potential code execution with privileges of the running environment. Mitig...