EUVD-2025-12216

Malicious code in bioql PyPI...

EUVD-2025-24231

Malicious code in bioql PyPI...

app.cash.lilbitcoinj:lilbitcoinj-core (>=0.0.2 <=0.0.3), app.cash.lninvoice:ln-invoice (>=0.0.1 <=0.0.4) +1309 more potentially affected by CVE-2025-8885 via org.bouncycastle:bcprov-jdk15to18 (>=1.63 <=1.77)

org.bouncycastle:bcprov-jdk15to18 MAVEN version =1.63, =0.0.2, =0.0.1, =0.2.9, =0.1.0, =0.2.1, =0.2.0, =1.0.0, =1.0.1, =0.2.0, =0.2.0, =1.0.0.RELEASE, =1.0.0, =1.0.0.RELEASE, =2.7.0 and more Source cves: CVE-2025-8885 Source advisory: OSV:GHSA-67MF-3CR5-8W23...

Bouncy Castle for Java on All (API modules) allows Excessive Allocation

A resource allocation vulnerability exists in Bouncy Castle for Java by Legion of the Bouncy Castle Inc. that affects all API modules. The vulnerability allows attackers to cause excessive memory allocation through unbounded resource consumption, potentially leading to denial of service. The issu...

CVE-2025-8885

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BC-FJA bc-fips on All allows Excessive Allocation. This vulnerability is associated with program files...

CVE-2025-8885

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BC-FJA bc-fips on All allows Excessive Allocation. This vulnerability is associated with program files...

CVE-2025-8885 Possible DOS in processing specially formed ASN.1 Object Identifiers

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BC-FJA bc-fips on All allows Excessive Allocation. This vulnerability is associated with program files...

CVE-2025-8885

Allocation of Resources Without Limits or Throttling vulnerability in Legion of the Bouncy Castle Inc. BC Java bcprov on All API modules, Legion of the Bouncy Castle Inc. BC-FJA bc-fips on All allows Excessive Allocation. This vulnerability is associated with program files...

Bouncy Castle 安全漏洞

Bouncy Castle is a collection of APIs used in cryptography organized by Bouncy Castle. It includes APIs for the Java and C programming languages . A security vulnerability exists in Bouncy Castle versions 1.77 and earlier, which stems from an unrestricted resource allocation that could lead to...

PT-2025-32637 · Unknown +1 · Bouncy Castle For Java +1

Name of the Vulnerable Software and Affected Versions: Bouncy Castle for Java versions 1.0 through 1.77 Bouncy Castle for Java - FJA versions 1.0.0 through 2.0.0 Description: A resource allocation issue exists in Bouncy Castle for Java affecting all API modules. The vulnerability allows attackers...

CVE-2024-40445

A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths...

UBUNTU-CVE-2024-40445

A directory traversal vulnerability in forkosh Mime TeX before version 1.77 allows attackers on Windows systems to read or append arbitrary files by manipulating crafted input paths...

MimeTeX 安全漏洞

MimeTeX is an image converter from the individual developer John Forkosh. A security vulnerability exists in versions prior to MimeTeX v1.77, which stems from specially crafted scripts that lead to the execution of arbitrary code...

CVE-2025-1213 pihome-shc PiHome index.php cross site scripting

A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $SERVER'PHPSELF' leads to cross site scripting. The attack may be launched remotely. The exploit has...

CVE-2025-1213 pihome-shc PiHome index.php cross site scripting

A vulnerability was found in pihome-shc PiHome 1.77. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument $SERVER'PHPSELF' leads to cross site scripting. The attack may be launched remotely. The exploit has...

PT-2025-6449 · Unknown · Pihome-Shc Pihome

Name of the Vulnerable Software and Affected Versions: pihome-shc PiHome version 1.77 Description: A critical issue affects some unknown functionality of the file "/ajax.php?Ajax=GetModal MQTTEdit". The manipulation of the id argument leads to SQL injection. The attack may be launched remotely. T...

PiHome SQL注入漏洞

PiHome is a home automation system by the individual developer of PiHomeHVAC. A SQL injection vulnerability exists in PiHome version 1.77, which stems from the id parameter of /ajax.php?Ajax=GetModalMQTTEdit contains a SQL injection vulnerability...

PiHome 代码注入漏洞

PiHome is a home automation system from the individual developer of PiHomeHVAC. A code injection vulnerability exists in PiHome version 1.77, which stems from a cross-site scripting vulnerability contained in the PHPSELF parameter of /index.php...

rust-toolset:rhel8 bug fix and enhancement update

An update is available for rust, module.rust. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Rust Toolset provides the Rust programming language compiler rustc,...

br.net.woodstock.rockframework:rockframework-core (>=1.2.1 <=1.2.2), com.alanpoi:alanpoi-all (>=1.3.5 <=3.0.0) +126 more potentially affected by CVE-2024-30171 via org.bouncycastle:bcprov-jdk14 (>=1.38 <=1.77)

org.bouncycastle:bcprov-jdk14 MAVEN version =1.38, =1.2.1, =1.3.5, =1.3.5, =2.0, =1.0, =1.6.1.P24, =1.7, =0.0.1, =1.0, =1.1 - com.github.lkkushan101.RestAssuredPDFReport:com.github.lkkushan101.RestAssuredPDFReport =1.00 - com.github.lkkushan101.appiumlocator:com.github.lkkushan101.appiumlocator...