24 matches found
CVE-2026-2636
This vulnerability is caused by a CWE‑159: "Improper Handling of Invalid Use of Special Elements" weakness, which leads to an unrecoverable inconsistency in the CLFS.sys driver. This condition forces a call to the KeBugCheckEx function, allowing an unprivileged user to trigger a system crash...
PT-2026-21986
Name of the Vulnerable Software and Affected Versions Windows versions prior to September 2025 cumulative update for Windows 11 2024 LTSC and Windows Server 2025 Windows 11 23H2 and earlier Description The issue is caused by improper handling of invalid use of special elements within the CLFS.sys...
PT-2025-46508
Name of the Vulnerable Software and Affected Versions Microsoft Windows affected versions not specified Description A race condition exists in the Windows Kernel due to improper synchronization when multiple threads concurrently access shared kernel resources. This flaw allows a local authenticat...
Exploit for Out-of-bounds Write in Samsung Android
🔐 CVE-2025-21042 — Samsung Image Codec Remote Code Execution...
Security Bulletin: Multiple Vulnerabilities in IBM® Java SDK affect IBM WebSphere Application Server and IBM WebSphere Liberty shipped with IBM Security Guardium Key Lifecycle Manager (CVE-2025-53066, CVE-2025-53057)
Summary IBM WebSphere Application Server and IBM WebSphere Liberty is shipped as a component of IBM Security Guardium Key Lifecycle Manager SKLM/GKLM. Information about multiple security vulnerabilities affecting IBM WebSphere Application Server and IBM WebSphere Liberty has been published in a...
Android Automotive OS Update Bulletin—November 2025Stay organized with collectionsSave and categorize content based on your preferences.
The Android Automotive OS AAOS Update Bulletin contains details of security vulnerabilities affecting the Android Automotive OS platform. The full AAOS update comprises the security patch level of 2025-11-05 or later from the November 2025 Android Security Bulletin in addition to all issues in th...
Important Photon OS Security Update - PHSA-2025-5.0-0655
Updates of 'linux-esx', 'linux' packages of Photon OS have been released...
mysql: DML unspecified vulnerability (CPU Apr 2025)
Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...
CVE-2025-59434 Critical Multi-Tenant Variable Disclosure in Flowise Cloud via Custom JavaScript Function
Flowise is a drag & drop user interface to build a customized large language model flow. Prior to August 2025 Cloud-Hosted Flowise, an authenticated vulnerability in Flowise Cloud allows any user on the free tier to access sensitive environment variables from other tenants via the Custom JavaScri...
Description of the security update for SharePoint Server Subscription Edition: September 09, 2025 (KB5002784)
Description of the security update for SharePoint Server Subscription Edition: September 09, 2025 KB5002784 Summary Important: Prior to installing this Cumulative Update, if you're running the 2013 Style Workflows, you must install the August 2025 patch for SharePoint Workflow manager to your Far...
Exploit for External Control of File Name or Path in Microsoft
CVE-2025-33053 POC Exploit Overview The working director...
Microsoft patches some very important vulnerabilities in August’s patch Tuesday
In the August 2025 patch Tuesday round Microsoft fixed a total of 111 Microsoft vulnerabilities. A few of them are very important for people to apply. Even if you’re not a tech expert, keeping your Windows system up to date is one of the simplest and most effective ways to protect yourself from...
PT-2025-32855
Name of the Vulnerable Software and Affected Versions Windows versions prior to August 2025 Patch Tuesday Description A relative path traversal vulnerability exists in the Windows Kerberos implementation. This flaw allows an authorized attacker to elevate privileges on a network. The vulnerabilit...
Exploit for CVE-2025-54253
🔥 CVE-2025-54253 — Critical RCE Vulnerability in Adobe AEM For...
Microsoft and Adobe Patch Tuesday, May 2025 Security Update Review
Microsoft's May 2025 Patch Tuesday rolls out critical security updates, addressing multiple vulnerabilities across Windows, Office, and other key products. Here's a quick breakdown of what you need to know. Microsoft Patch Tuesday for May 2025 In this month's Patch Tuesday, May 2025 edition,...
CVE-2025-22462
An authentication bypass in Ivanti Neurons for ITSM on-prem only before 2023.4, 2024.2 and 2024.3 with the May 2025 Security Patch allows a remote unauthenticated attacker to gain administrative access to the system...
PT-2025-20981 · Microsoft · Office Excel +1
Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel affected versions not specified Description: A heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. This issue enables remote attackers to execute arbitrary code...
Exploit for Classic Buffer Overflow in Qualcomm Qca9367_Firmware
CVE-2024-53027-WIP Work in Progress for POC CVE-2024-53027:...
PT-2025-15202 · Qualcomm · Snapdragon Qam8620P +40
Name of the Vulnerable Software and Affected Versions: Qualcomm Snapdragon versions prior to the April 2025 patchday Qualcomm 205 Mobile Platform affected versions not specified Qualcomm 215 Mobile Platform affected versions not specified Snapdragon 1200 Wearable Platform affected versions not...
Microsoft and Adobe Patch Tuesday, February 2025 Security Update Review
As the second Patch Tuesday of 2025 arrives, Microsoft has released crucial updates to strengthen cybersecurity defenses. Let's explore the highlights and what they mean for users. Microsoft Patch Tuesday for February 2025 Microsoft Patch's Tuesday, February 2025 edition addressed 67...