CVE-2025-20729

creationtimestamp| type| source ---|---|--- 2025-11-04 11:34:54+00:00| seen| https://gist.github.com/Darkcrai86/a2f8c588d5a0dbb6107299e795be1824...

CVE-2025-20729

In wlan AP driver, there is a possible out of bounds write due to an incorrect bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: WCNCR00441512; Issue ID: MSV-415...

CVE-2023-40471

PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit ...

CVE-2023-40471 PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability

PDF-XChange Editor App Untrusted Pointer Dereference Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit ...

CVE-2024-20729

creationtimestamp| type| source ---|---|--- 2024-02-15 14:32:10+00:00| seen| https://t.me/ctinow/185554...

CVE-2024-20729 TALOS-2023-1890 - Adobe Acrobat Reader Annot3D object zoom event use-after-free vulnerability

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2024-20729

CVE-2024-20729 affects Adobe Acrobat Reader (DC/Continuous) with Use-After-Free in the Annot3D object zoom handling, impacting v20.005.30539, v23.008.20470 and earlier. The issue can lead to arbitrary code execution in the context of the current user and requires the user to open a malicious file...

Adobe Reader Classic 2020 Security Update (APSB24-07) - Windows

Adobe Acrobat Reader Classic 2020 Continuous is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2023-20729

creationtimestamp| type| source ---|---|--- 2024-01-04 12:55:37+00:00| seen| https://t.me/arpsyndicate/2459 2025-01-08 15:12:47+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/695...

CVE-2023-20729

CVE-2023-20729 reflects a WLAN module issue in MediaTek chips where a missing bounds check enables an out-of-bounds read. The vulnerability could lead to local information disclosure, with execution privileges required and no user interaction needed. Documented impact is limited to information di...

CVE-2023-20729

In wlan, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07573552; Issue ID: ALPS07573575...

CVE-2022-20729

Cisco Firepower Threat Defense (FTD) Software CLI is affected by an XML injection vulnerability due to insufficient input validation in the command parser. An authenticated, local attacker could supply crafted input to inject XML, potentially causing unexpected command processing and output. Cisc...

CVE-2022-20729 Cisco Firepower Threat Defense Software XML Injection Vulnerability

A vulnerability in CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to inject XML into the command parser. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted input in commands...

CVE-2021-20729

creationtimestamp| type| source ---|---|--- 2022-03-31 12:18:23+00:00| seen| https://t.me/cibsecurity/39901...

CVE-2021-20729

Cross-site scripting vulnerability in pfSense CE and pfSense Plus pfSense CE software versions 2.5.2 and earlier, and pfSense Plus software versions 21.05 and earlier allows a remote attacker to inject an arbitrary script via a malicious URL...

CVE-2021-20729

Cross-site scripting vulnerability in pfSense CE and pfSense Plus pfSense CE software versions 2.5.2 and earlier, and pfSense Plus software versions 21.05 and earlier allows a remote attacker to inject an arbitrary script via a malicious URL...

CVE-2021-20729

The CVE-2021-20729 entry concerns a Cross-site scripting (XSS) vulnerability in pfSense CE (versions <= 2.5.2) and pfSense Plus (versions

JVN#87751554: Multiple vulnerabilities in pfSense

pfSense software provided by Netgate contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 - CVE-2021-20729 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2| AV:N/AC:M/Au:N/C:N/I:P/A:N| Base Score: 4.3 Improper...

OSV-2020-190 Use-of-uninitialized-value in file_vprintf

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=20729 Crash type: Use-of-uninitialized-value Crash state: filevprintf fileprintf filebuffer...

CVE-2019-20729

CVE-2019-20729 affects several NETGEAR router models (e.g., JNDR3000, R6250, R6300v2, R6400/r6400v2, R6700, R6900, R7000, R6900P/R7000P, R7300DST, R7900/R8000, R7900P/R8000P, R8300, R8500, WNDR3400v3, WNDR4500v2, WNR3500Lv2 and others) with an issue described as incorrect configuration of securit...