🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: Spotipy — Spotipy's cache file, containing spotify auth token, is created with overly broad permissions Related CVEs: CVE-2023-23608 CVE-2025-27154 Upstream summary: [email protected] reports: Spotipy is a lightweight Python library for […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: nghttp2 — CWE-617: Reachable Assertion Related CVEs: CVE-2015-8659 CVE-2016-1544 CVE-2018-1000168 CVE-2019-9511 CVE-2019-9513 CVE-2020-11080 CVE-2026-27135 Upstream summary: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-6933-cjhr-5qg6 reports: nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: Borg (Backup) — flaw in cryptographic authentication scheme in Borg allowed an attacker to fake archives and indirectly cause backup data loss. Related CVEs: CVE-2023-36811 Upstream summary: Thomas Waldmann reports: […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: FreeBSD 15 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: sql-ledger — security bypass vulnerability Related CVEs: CVE-2006-4244 CVE-2006-4731 CVE-2006-5872 Upstream summary: Chris Travers reports: George Theall of Tenable Security notified the LedgerSMB core team today of an authentication bypass […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: Pillow — Regular Expression Denial of Service (ReDoS) Related CVEs: CVE-2019-19911 CVE-2020-5310 CVE-2020-5311 CVE-2020-5312 CVE-2020-5313 CVE-2021-23437 CVE-2021-25288 CVE-2021-28675 +3 more Upstream summary: GitHub Advisory Database reports: Uncontrolled Resource Consumption in […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: py-social-auth-app-django — Unsafe account association Related CVEs: CVE-2024-32879 CVE-2025-61783 Upstream summary: Michal Čihař reports: Upon authentication, the user could be associated by e-mail even if the associate_by_email pipeline was not […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 12 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: cisco — OpenH264 Decoding Functions Heap Overflow Vulnerability Related CVEs: CVE-2004-0097 CVE-2025-27091 Upstream summary: Cisco reports: A vulnerability in the decoding functions of OpenH264 codec library could allow a remote, […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: py-treq — sensitive information leak vulnerability Related CVEs: CVE-2022-23607 Upstream summary: Treq's request methods (`treq.get`, `treq.post`, `HTTPClient.request`, `HTTPClient.get`, etc.) accept cookies as a dictionary. Such cookies are not bound to […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 13 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: sudo-rs — Authenticating user not recorded properly in timestamp Related CVEs: CVE-2025-64170 CVE-2025-64517 Upstream summary: Trifecta Tech Foundation reports: With Defaults targetpw (or Defaults rootpw) enabled, the password of the […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: FreeBSD 14 📖 ~4 min read • Source: FreeBSD VuXML VuXML topic: PHP Composer — Multiple vulnerabilities Related CVEs: CVE-2026-40176 CVE-2026-40261 Upstream summary: Composer project reports: Fixed command injection via malicious Perforce reference (GHSA-gqw4-4w2p-838q / CVE-2026-40261) Fixed command injection via malicious Perforce […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
