CVE-2025-14170

creationtimestamp| type| source ---|---|--- 2025-12-12 08:33:29+00:00| seen| https://gist.github.com/Darkcrai86/54cf2551bb8a7dcebdc8a3b5945fe1f2...

WordPress Vimeo SimpleGallery plugin <= 0.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings Modification vulnerability

Missing Authorization to Authenticated Subscriber+ Arbitrary Plugin Settings Modification vulnerability discovered by Legion Hunter in WordPress Plugin Vimeo SimpleGallery versions = 0.2...

EUVD-2025-14170

Malicious code in bioql PyPI...

CVE-2019-14170

...

CVE-2019-14170

CVE-2019-14170 is rejected/not used per initial description; it does not represent an active vulnerability entry.

CVE-2020-14170

CVE-2020-14170 is an SSRF vulnerability in Atlassian Bitbucket Server Webhooks. Affected versions are 5.4.0 up to, but not including, 7.3.1 (i.e., 5.4.0–7.3.0). A remote attacker could leverage Webhooks to access internal network resources, potentially including metadata endpoints on cloud enviro...

SSRF in Webhooks - CVE-2020-14170

Affected versions of Atlassian Bitbucket Data Center allow remote attackers to access the content of internal network resources via a Server-Side Request Forgery SSRF vulnerability in Webhooks. When running in an environment like Amazon EC2, this flaw may be used to access to a metadata resource...

CVE-2019-20597

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 software. SPENgesture allows arbitrary applications to read or modify user-input logs. The Samsung ID is SVE-2019-14170 June 2019...

Code injection

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 software. SPENgesture allows arbitrary applications to read or modify user-input logs. The Samsung ID is SVE-2019-14170 June 2019...

CVE-2019-20597

An issue was discovered on Samsung mobile devices with N7.1, O8.x, and P9.0 software. SPENgesture allows arbitrary applications to read or modify user-input logs. The Samsung ID is SVE-2019-14170 June 2019...

CVE-2019-20597

CVE-2019-20597 affects Samsung mobile devices running N(7.1), O(8.x), and P(9.0). The vulnerability exists in the SPENgesture component, which can allow arbitrary applications to read or modify user-input logs. This impacts confidentiality and integrity (CVSSv3.1: 9.1, CRITICAL; CVSSv2: 6.4, MEDI...

[SECURITY] [DLA 1630-1] libav security update

Package : libav Version : 6:11.12-1deb8u4 CVE ID : CVE-2017-9993 CVE-2017-9994 CVE-2017-14055 CVE-2017-14056 CVE-2017-14057 CVE-2017-14170 CVE-2017-14171 CVE-2017-14767 CVE-2017-15672 CVE-2017-17130 CVE-2018-6621 CVE-2018-7557 CVE-2018-14394 CVE-2018-1999010 Several security vulnerabilities were...

Debian: Security Advisory (DLA-1630-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian DSA-3996-1 : ffmpeg - security update

Several vulnerabilities have been discovered in the FFmpeg multimedia framework, which could result in denial of service or potentially the execution of arbitrary code if malformed Real, MV, RL2, ASF, Apple HLS, Phantom Cine, MXF, NSV, MOV or RTP H.264 files/streams are processed. %NASLMINLEVEL...

[SECURITY] [DSA 3996-1] ffmpeg security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3996-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2017 https://www.debian.org/security/faq -...

[ASA-201709-23] ffmpeg2.8: denial of service

Arch Linux Security Advisory ASA-201709-23 ========================================== Severity: Medium Date : 2017-09-28 CVE-ID : CVE-2017-14055 CVE-2017-14056 CVE-2017-14057 CVE-2017-14058 CVE-2017-14059 CVE-2017-14169 CVE-2017-14170 CVE-2017-14171 CVE-2017-14225 Package : ffmpeg2.8 Type : denia...

openSUSE Security Update : ffmpeg / ffmpeg2 (openSUSE-2017-1068)

This update introduces lame and twolame. For ffmpeg2 it updates to version 2.8.13 and fixes several issues. These security issues were fixed : - CVE-2017-14058: The readdata function in libavformat/hls.c did not restrict reload attempts for an insufficient list, which allowed remote attackers to...

CVE-2017-14170

CVE-2017-14170 is a denial-of-service in FFmpeg’s mxf_read_index_entry_array() (libavformat/mxfdec.c) caused by a missing EOF check when a crafted MXF header claims a large nb_index_entries. The issue leads to huge CPU usage and can be triggered by multiple segments in a file. Public advisories (...