Vulnerabilities > GNU
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-04-20 | CVE-2025-43919 | Path Traversal vulnerability in GNU Mailman GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to read arbitrary files via ../ directory traversal at /mailman/private/mailman (aka the private archive authentication endpoint) via the username parameter. | 7.5 |
| 2025-04-20 | CVE-2025-43920 | OS Command Injection vulnerability in GNU Mailman GNU Mailman 2.1.39, as bundled in cPanel (and WHM), in certain external archiver configurations, allows unauthenticated attackers to execute arbitrary OS commands via shell metacharacters in an email Subject line. | 8.1 |
| 2025-04-20 | CVE-2025-43921 | Incorrect Authorization vulnerability in GNU Mailman GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to create lists via the /mailman/create endpoint. | 5.3 |
| 2025-04-04 | CVE-2025-3198 | Memory Leak vulnerability in GNU Binutils 2.43/2.44 A vulnerability has been found in GNU Binutils 2.43/2.44 and classified as problematic. | 5.5 |
| 2025-03-03 | CVE-2024-45778 | Integer Overflow or Wraparound vulnerability in multiple products A stack overflow flaw was found when reading a BFS file system. | 5.5 |
| 2025-03-03 | CVE-2024-45782 | A flaw was found in the HFS filesystem. | 7.8 |
| 2025-03-03 | CVE-2025-0678 | A flaw was found in grub2. | 7.8 |
| 2025-03-03 | CVE-2024-45779 | Unspecified vulnerability in GNU Grub2 An integer overflow flaw was found in the BFS file system driver in grub2. | 6.0 |
| 2025-03-03 | CVE-2024-45780 | Unspecified vulnerability in GNU Grub2 A flaw was found in grub2. | 6.7 |
| 2025-02-11 | CVE-2025-1179 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in GNU Binutils 2.43 A vulnerability was found in GNU Binutils 2.43. | 7.5 |