502 matches found
PT-2026-4885
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb src/cjson modules. This vulnerability is associated with program files cJSON.Cc. This issue affects rethinkdb: through v2.4.4...
CVE-2021-41196
TensorFlow is an open source platform for machine learning. In affected versions the Keras pooling layers can trigger a segfault if the size of the pool is 0 or if a dimension is negative. This is due to the TensorFlow's implementation of pooling operations where the values in the sliding window...
CVE-2019-16667
diagcommand.php in pfSense 2.4.4-p3 allows CSRF via the txtCommand or txtRecallBuffer field, as demonstrated by executing OS commands. This occurs because csrfcallback produces a "CSRF token expired" error and a Try Again button when a CSRF token is missing...
CVE-2025-1326
The Homey theme for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the homeyreservationdel function in all versions up to, and including, 2.4.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete...
WordPress RapidLoad plugin <= 2.4.4 - Missing Authorization to Authenticated (Subscriber+) Limited Setting Reset vulnerability
Missing Authorization to Authenticated Subscriber+ Limited Setting Reset vulnerability discovered by Tieu Pham Trong Nhan - TechlabCorp in WordPress Plugin RapidLoad versions = 2.4.4...
EUVD-2025-201904
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...
CVE-2025-14310
CVE-2025-14310 describes a classic buffer overflow in rethinkdb caused by a buffer copy without checking input size, affecting rethinkdb before 2.4.4. According to connected sources, the flaw can enable arbitrary code execution or denial of service, with high impact to confidentiality, integrity,...
CVE-2025-14310
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...
CVE-2025-14310
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...
RethinkDB 安全漏洞
RethinkDB is a database in the RethinkDB open source. A security vulnerability exists in RethinkDB versions prior to 2.4.4 that stems from a buffer overflow...
Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: expat (UTSA-2025-991053)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991053 advisory. Expat aka libexpat before 2.4.4 has an integer overflow in the doProlog function. Tenable has extracted the preceding description block directly from the Unity Linux...
PT-2025-49809
Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in rethinkdb.This issue affects rethinkdb: before 2.4.4...
NewStart CGSL MAIN 6.06 : audit Vulnerability (NS-SA-2025-0236)
The remote NewStart CGSL host, running version MAIN 6.06, has audit packages installed that are affected by a vulnerability: - Audit before 2.4.4 in Linux does not sanitize escape characters in filenames. CVE-2015-5186 Note that Nessus has not tested for these issues but has instead relied only o...
openbao-2.4.4-1.1 on GA media (moderate)
openbao-2.4.4-1.1 on GA media Announcement ID: openSUSE-SU-2025:15767-1 Rating: moderate Cross-References: CVE-2025-64761 CVSS scores: CVE-2025-64761 SUSE : 6.5 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N CVE-2025-64761 SUSE : 7.4 CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N...
CVE-2025-64713
WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, an out-of-bounds array access issue exists in WAMR's fast interpreter mode during WASM bytecode loading. When framerefbottom and frameoffsetbottom arrays are at capacity and a GETGLOBALI32...
EUVD-2025-199655
WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, an out-of-bounds array access issue exists in WAMR's fast interpreter mode during WASM bytecode loading. When framerefbottom and frameoffsetbottom arrays are at capacity and a GETGLOBALI32...
CVE-2025-64704 WebAssembly Micro Runtime vulnerable to a segmentation fault in v128.store instruction
WebAssembly Micro Runtime WAMR is a lightweight standalone WebAssembly Wasm runtime. Prior to version 2.4.4, WAMR is susceptible to a segmentation fault in v128.store instruction. This issue has been patched in version 2.4.4...
CVE-2025-64761
OpenBao is an open source identity-based secrets management system. Prior to version 2.4.4, a privileged operator could use the identity group subsystem to add a root policy to a group identity group, escalating their or another user's permissions in the system. Specifically this is an issue when...
Incorrect Privilege Assignment
Overview Affected versions of this package are vulnerable to Incorrect Privilege Assignment via the identity/groups endpoints. An attacker can gain unauthorized root-level permissions by adding a root policy to a group, thereby escalating their own or another user's privileges. Note: This is only...
CVE-2025-64761 OpenBao Privileged Operator Identity Group Root Escalation
OpenBao is an open source identity-based secrets management system. Prior to version 2.4.4, a privileged operator could use the identity group subsystem to add a root policy to a group identity group, escalating their or another user's permissions in the system. Specifically this is an issue when...