🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2025-24031 CVE-2025-24032 CVE-2025-24531 Upstream summary: PAM-PKCS#11 is a Linux-PAM login module that allows a X.509 certificate based user login. In versions 0.6.12 and prior, the pam_pkcs11 module segfaults […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2021-32837 Upstream summary: mechanize, a library for automatically interacting with HTTP web servers, contains a regular expression that is vulnerable to regular expression denial of service (ReDoS) prior […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2016-9036 Upstream summary: An exploitable incorrect return value vulnerability exists in the mp_check function of Tarantool's Msgpuck library 1.0.3. A specially crafted packet can cause the mp_check function […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2025-46734 CVE-2026-30838 CVE-2026-33347 Upstream summary: league/commonmark is a PHP Markdown parser. A cross-site scripting (XSS) vulnerability in the Attributes extension of the league/commonmark library (versions 1.5.0 through 2.6.x) […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2020-8189 CVE-2020-8225 CVE-2020-8227 CVE-2021-22879 CVE-2021-22895 CVE-2021-32728 CVE-2022-39331 CVE-2022-39332 +11 more Upstream summary: A cross-site scripting error in Nextcloud Desktop client 2.6.4 allowed to present any html (including local […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2013-0294 CVE-2013-0342 Upstream summary: packet.py in pyrad before 2.1 uses weak random numbers to generate RADIUS authenticators and hash passwords, which makes it easier for remote attackers to […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2007-4974 CVE-2010-3349 CVE-2020-22617 Upstream summary: Heap-based buffer overflow in the flac_buffer_copy function in libsndfile 1.0.17 and earlier might allow remote attackers to execute arbitrary code via a FLAC […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 12 (bookworm) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2017-8315 CVE-2024-21633 Upstream summary: Eclipse XML parser for the Eclipse IDE versions 2017.2.5 and earlier was found vulnerable to an XML External Entity attack. An attacker can exploit […]
🟢 Low ⏱ 5–15 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2022-26874 Upstream summary: lib/Horde/Mime/Viewer/Ooo.php in Horde Mime_Viewer before 2.2.4 allows XSS via an OpenOffice document, leading to account takeover in Horde Groupware Webmail Edition. This occurs after XSLT […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Debian 11 (bullseye) 📖 ~4 min read • Source: Debian Security Tracker Related CVEs: CVE-2019-14751 CVE-2021-3828 CVE-2021-3842 CVE-2021-43854 CVE-2024-39705 CVE-2025-14009 CVE-2026-0846 CVE-2026-0847 +4 more Upstream summary: NLTK Downloader before 3.4.5 is vulnerable to a directory traversal, allowing attackers to write arbitrary files […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
