120959 matches found
MailEnableMailEnableMailEnable Insecure DLL Loading Vulnerability (CNVD-2026-14405)
MailEnable is a Windows-based business e-mail server from MailEnable Australia. MailEnable suffers from a MailEnable Insecure DLL Load vulnerability that can be exploited by an attacker to cause local arbitrary code execution...
TeamViewer DEX Client Elevation of Privilege Vulnerability
TeamViewer DEX Client is a digital employee experience and endpoint management software from TeamViewer Germany. An elevation of privilege vulnerability exists in TeamViewer DEX Client, which can be exploited by an attacker to cause elevation of privilege and execute arbitrary code...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW National Instruments LabVIEW version 2025 Q3 and earlier versions, which originates from an out-of-bounds write when parsing a corrupted ...
PT-2025-52237
Name of the Vulnerable Software and Affected Versions NI LabVIEW versions prior to 25.3 Description An out of bounds read issue exists in NI LabVIEW within the LVResFile::FindRsrcListEntry function when processing a damaged VI file. This can lead to information disclosure or arbitrary code...
PT-2025-52235
Name of the Vulnerable Software and Affected Versions NI LabVIEW versions 2025 Q3 25.3 and prior Description An out of bounds read issue exists in NI LabVIEW within the lvre!DataSizeTDR function when processing a damaged VI file. Exploitation of this issue could lead to information disclosure or...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW version 2025 Q3 and prior versions that originates from an out-of-bounds read when parsing a corrupted VI file, which could lead to...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW version 2025 Q3 and prior versions that originates from an out-of-bounds read when parsing a corrupted VI file, which could lead to...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW National Instruments LabVIEW version 2025 Q3 and earlier versions, which originates from an out-of-bounds read when parsing a corrupted V...
KLA90825 Multiple vulnerabilities in Microsoft Browser
Multiple vulnerabilities were found in Microsoft Browser. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of vulnerabilities: 1. Use after free vulnerability in WebGPU can be exploited to cause...
PT-2025-52242
Name of the Vulnerable Software and Affected Versions NI LabVIEW versions 2025 Q3 25.3 and prior Description A use-after-free issue exists in the sentry span set data function when processing a malformed VI file. Exploitation of this issue could lead to information disclosure or arbitrary code...
PT-2025-52234
Name of the Vulnerable Software and Affected Versions NI LabVIEW versions prior to 2025 Q3 25.3 Description An out of bounds read issue exists in NI LabVIEW within the VisaWriteFromFile function when processing a corrupted VI file. Exploitation of this issue could lead to information disclosure o...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW version 2025 Q3 and prior versions that originates from an out-of-bounds read when parsing a corrupted VI file, which could lead to...
NI LabVIEW 安全漏洞
NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW version 2025 Q3 and prior versions that originates from a stack buffer overflow when parsing a corrupted VI file, which could lead to...
PT-2025-52310
Name of the Vulnerable Software and Affected Versions Kentico Xperience affected versions not specified Description A reflected cross-site scripting issue exists in Kentico Xperience. Authenticated users can inject malicious scripts into the administration interface. Exploitation allows attackers...
Mozilla Firefox < 3.0.12
The version of Firefox installed on the remote Windows host is prior to 3.0.12. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2009-34 advisory. - The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird allows remote attackers to cause a denial of...
Firefox -- Memory safety bugs
https://bugzilla.mozilla.org/buglist.cgi?bugid=1996570%2C1999700 reports: Memory safety bugs present in Firefox 146. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code...
Mozilla Firefox 安全漏洞
Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. A security vulnerability exists in Mozilla Firefox versions prior to 146.0.1, which stems from a memory security issue that could lead to memory corruption and execution of arbitrary code...
CVE-2025-68432
Zed, a code editor, has an aribtrary code execution vulnerability in versions prior to 0.218.2-pre. The Zed IDE loads Language Server Protocol LSP configurations from the settings.json file located within a project’s .zed subdirectory. A malicious LSP configuration can contain arbitrary shell...
CVE-2025-68433 Zed IDE MCP Context Server Configuration Arbitrary Code Execution
Zed, a code editor, has an aribtrary code execution vulnerability in versions prior to 0.218.2-pre. The Zed IDE loads Model Context Protocol MCP configurations from the settings.json file located within a project’s .zed subdirectory. A malicious MCP configuration can contain arbitrary shell...
EUVD-2025-204009
Zed, a code editor, has an aribtrary code execution vulnerability in versions prior to 0.218.2-pre. The Zed IDE loads Model Context Protocol MCP configurations from the settings.json file located within a project’s .zed subdirectory. A malicious MCP configuration can contain arbitrary shell...