Vulnerability & Exploit Database

Foxit Reader: Use After Free (CVE-2023-28744)

Foxit Reader: Access of Resource Using Incompatible Type ('Type Confusion') (CVE-2023-32664)

Oracle Linux: CVE-2023-37464: ELSA-2023-4418: mod_auth_openidc:2.3 security update (IMPORTANT) (Multiple Advisories)

Alma Linux: CVE-2023-37464: Important: mod_auth_openidc:2.3 security update (Multiple Advisories)

CentOS Linux: CVE-2023-37464: Important: cjose security update (Multiple Advisories)

Debian: CVE-2023-37464: cjose -- security update

Red Hat: CVE-2023-37464: AES GCM decryption uses the Tag length from the actual Authentication Tag provided in the JWE (Multiple Advisories)

Rocky Linux: CVE-2023-37464: mod_auth_openidc-2.3 (RLSA-2023-4418)

Ubuntu: USN-6307-1 (CVE-2023-37464): JOSE for C/C++ vulnerability

SUSE: CVE-2023-37464: SUSE Linux Security Advisory

Alpine Linux: CVE-2023-37464: Use of a Broken or Risky Cryptographic Algorithm

Debian: CVE-2023-29449: zabbix -- security update

Debian: CVE-2023-29458: zabbix -- security update

SUSE: CVE-2023-29450: SUSE Linux Security Advisory

Debian: CVE-2023-29450: zabbix -- security update

MediaWiki: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2023-37251)

MediaWiki: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') (CVE-2023-37256)

FreeBSD: VID-AB0BAB3C-2927-11EE-8608-07B8D3947721: gitea -- Disallow dangerous URL schemes

PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal Authentication

SUSE: CVE-2022-46165: SUSE Linux Security Advisory