EPSON Printers Incorrect Default Permissions (CVE-2020-12695)

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue. This plugin only works with Tenable.ot...

MiracleLinux 8 : gssdp-1.0.5-1.el8, gupnp-1.0.6-1.el8 (AXSA:2021-2048:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2048:01 advisory. hostapd: UPnP SUBSCRIBE misbehavior in WPS AP CVE-2020-12695 Tenable has extracted the preceding description block directly from the MiracleLinux security...

CVE-2025-12695

creationtimestamp| type| source ---|---|--- 2025-11-04 17:47:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m4t3q5u2xt2u...

agent-toolkit (=0.1.9), ailite (>=6.0.0 <=6.1.10) +39 more potentially affected by CVE-2025-12695 via dspy (>=0.1.5 <=3.0.3)

dspy PYPI version =0.1.5, =6.0.0, =0.1.0, =0.1.9, =2.5.5, =0.1.0, =2.8.0, =0.2.1, =0.1.0, =0.1.1 and more Source cves: CVE-2025-12695 Source advisory: OSV:GHSA-VVW2-H478-XWR3...

agent-toolkit (=0.1.9), ailite (>=6.0.0 <=6.1.10) +40 more potentially affected by CVE-2025-12695 via dspy (>=0.1.5 <=3.1.0)

dspy PYPI version =0.1.5, =6.0.0, =0.1.0, =0.1.9, =2.5.5, =0.1.0, =2.8.0, =0.2.1, =0.5.400 and more Source cves: CVE-2025-12695 Source advisory: SNYK:PYTHON-DSPY-13832222...

CVE-2025-12695

The CVE-2025-12695 vulnerability affects DSPy where an overly permissive sandbox around the PythonInterpreter allows reading sensitive files when running untrusted code in an AI agent. Public sources describe an arbitrary-file-read risk via the sandbox, with the affected component being DSPy’s sa...

CVE-2025-12695 Insecure configuration in DSPy lead to arbitrary file read when running untrusted code inside the sandbox

The overly permissive sandbox configuration in DSPy allows attackers to steal sensitive files in cases when users build an AI agent which consumes user input and uses the “PythonInterpreter” class...

PT-2025-26565 · Undefined · Undefined

@exploitsclub @Synacktiv @bugscale @binarly io @watchtowrcyber You use CVE-2024-19695, that should be 2024-12695...

Linux Distros Unpatched Vulnerability : CVE-2024-12695

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page...

OPENSUSE-SU-2024:0417-1 Security update for chromium

This security update for Chromium to version 131.0.6778.204 boo1234704 fixes: CVE-2024-12692: Type Confusion in V8 CVE-2024-12693: Out of bounds memory access in V8 CVE-2024-12694: Use after free in Compositing CVE-2024-12695: Out of bounds write in V8 Various fixes from internal audits, fuzzing...

Fedora 41 : chromium (2024-21c7531146)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-21c7531146 advisory. Update to 131.0.6778.204 High CVE-2024-12692: Type Confusion in V8 High CVE-2024-12693: Out of bounds memory access in V8 High CVE-2024-12694: Use...

Fedora 40 : chromium (2024-4808dce926)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-4808dce926 advisory. Update to 131.0.6778.204 High CVE-2024-12692: Type Confusion in V8 High CVE-2024-12693: Out of bounds memory access in V8 High CVE-2024-12694: Use...

Microsoft Edge (Chromium-Based) Multiple Vulnerabilities - (Dec-2 2024)

Microsoft Edge Chromium-Based is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Chromium: CVE-2024-12695 Out of bounds write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

Google Chrome Security Update (stable-channel-update-for-desktop_18-2024-12) - Mac OS X

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Google Chrome Security Update (stable-channel-update-for-desktop_18-2024-12) - Windows

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Google Chrome Security Update (stable-channel-update-for-desktop_18-2024-12) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

CVE-2024-12695

Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

CVE-2024-12695 vulnerabilities

Vulnerabilities for packages: chromium...

CVE-2024-12695

Out of bounds write in V8 in Google Chrome prior to 131.0.6778.204 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...