CVE-2026-20925

creationtimestamp| type| source ---|---|--- 2026-01-13 18:01:16+00:00| seen| https://www.thezdi.com/blog/2026/1/13/the-january-2026-security-update-review 2026-01-13 18:16:30+00:00| seen| https://advisories.ncsc.nl/advisory?id=NCSC-2026-0007 2026-04-10 10:53:42+00:00| seen|...

CVE-2026-20925

CVE-2026-20925 affects Windows NTLM and is described as an external control of the file name or path that enables spoofing (pretend to be another user) over a network. The vulnerability is assigned a CVSS v3.1 base score of 6.5 (Medium) with network attack vector and required user interaction. Co...

CVE-2024-20925

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

CVE-2022-20925

A vulnerability in the web management interface of the Cisco Firepower Management Center FMC Software could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system. The vulnerability is due to insufficient validation of user-supplied parameters for...

CVE-2025-20925

Out-of-bounds read in applying binary of text data in Samsung Notes prior to version 4.4.26.71 allows local attackers to potentially read memory...

CVE-2025-20925

Out-of-bounds read in applying binary of text data in Samsung Notes prior to version 4.4.26.71 allows local attackers to potentially read memory...

CVE-2023-42052

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2023-42052 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2023-42052 PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

be.yildiz-games:module-window-javafx (>=3.2.2 <=3.5.4), com.acrolinx.client:sidebar-sdk-java (>=2.5.21 <=2.8.1) +146 more potentially affected by CVE-2024-20925 via org.openjfx:javafx-media (>=18 <=21.0.11)

org.openjfx:javafx-media MAVEN version =18, =3.2.2, =2.5.21, =3.1.0, =1.8.0, =1.2.0, =17.1, =17.1, =17.1, =17.1, =17.1, =17.1, =17.1, =2022.2023, =2022.2023.beta1 and more Source cves: CVE-2024-20925 Source advisory: OSV:GHSA-47G3-MF24-6559...

CVE-2024-20925

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

CVE-2024-20925

...

CVE-2024-20925

CVE-2024-20925 is a vulnerability affecting Oracle Java SE (JavaFX) and Oracle GraalVM Enterprise Edition (JavaFX). Affected versions include Oracle Java SE 8u391 and GraalVM EE 20.3.12 / 21.3.8. The issue is described as difficult to exploit, requiring network access via multiple protocols and u...

CVE-2024-20925

Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to exploit vulnerability allows unauthenticated...

CVE-2024-20925

...

CVE-2024-20925

creationtimestamp| type| source ---|---|--- 2024-02-09 17:21:57+00:00| seen| https://t.me/ctinow/182156 2024-02-17 03:26:49+00:00| seen| https://t.me/ctinow/186752...

Amazon Corretto Java 8.x < 8.402.06.1 Multiple Vulnerabilities

The version of Amazon Corretto installed on the remote host is prior to 8 8.402.06.1. It is, therefore, affected by multiple vulnerabilities as referenced in the corretto-8-2024-Jan-16 advisory. - hotspot/compiler CVE-2024-20918, CVE-2024-20921 - hotspot/runtime CVE-2024-20919 -...

CVE-2023-20925

In setUclampMinLocked of PowerSessionManager.cpp, there is a possible way to corrupt memory due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

CVE-2023-20925

CVE-2023-20925 affects the Android kernel, specifically the use-after-free in the PowerSessionManager.cpp function setUclampMinLocked. This memory corruption can lead to local escalation of privilege without extra execution privileges and requires local access, with no user interaction needed. Th...

CVE-2022-20925

Summary (CVE-2022-20925) : The Cisco Firepower Management Center (FMC) web management interface is affected by an API input validation vulnerability. An authenticated attacker with Device-permission credentials could exploit crafted input to API endpoints to execute arbitrary OS commands with low...