34 matches found
CLSA-2026-1773668222 Fix CVE(s): CVE-2026-24481
SECURITY UPDATE: heap information disclosure in PSD handler - debian/patches/CVE-2026-24481.patch: zero-initialize pixel buffer in ReadPSDChannelZip to prevent heap info leak when ZIP-compressed layer data decompresses to fewer bytes than expected - CVE-2026-24481...
ROOT-OS-DEBIAN-11-CVE-2026-24481 CVE-2026-24481 in rootio-imagemagick - Patched by Root
Root has patched CVE-2026-24481 in the rootio-imagemagick package for Root:Debian:11. Multiple fixed versions available...
CLSA-2026-1773412353 Fix CVE(s): CVE-2026-24481
SECURITY UPDATE: heap information disclosure in PSD channel decoder - debian/patches/CVE-2026-24481.patch: initialize pixel buffer with zeros in ReadPSDChannelZip to prevent heap memory leak - CVE-2026-24481...
[SECURITY] [DLA 4497-1] imagemagick security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-4497-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès March 11, 2026 https://wiki.debian.org/LTS -...
Debian dsa-6159 : imagemagick - security update
The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6159 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6159-1 [email protected] https://www.debian.org/securit...
Linux Distros Unpatched Vulnerability : CVE-2026-24481
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap information...
PT-2025-47891
CERT/CC Warns of Unpatched Root-Level Command Injection Flaws in Tenda 4G03 Pro and N300 Routers CVE-2025-13207, CVE-2024-24481 https://t.co/ZUXQixklyd...
CVE-2023-24481
Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2021-24481
The Any Hostname WordPress plugin through 1.0.6 does not sanitise or escape its "Allowed hosts" setting, leading to an authenticated stored XSS issue as high privilege users are able to set XSS payloads in it...
CVE-2020-24481
Insecure inherited permissions for the IntelR Quartus Prime Pro and Standard edition software may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2025-24481
creationtimestamp| type| source ---|---|--- 2025-01-28 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-028-04 2025-01-28 20:58:31+00:00| seen| https://infosec.exchange/users/cve/statuses/113907984678433445 2025-01-28 21:15:50+00:00| seen|...
CVE-2024-8842 PDF-XChange Editor RTF File Parsing Uninitialized Variable Remote Code Execution Vulnerability
PDF-XChange Editor RTF File Parsing Uninitialized Variable Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must...
CVE-2024-8842
PDF-XChange Editor is affected by CVE-2024-8842 due to an uninitialized memory access in the RTF file parsing path, enabling potential remote code execution. The flaw is triggered when a user opens a malicious RTF file or visits a page hosting exploit code, with the attacker gaining code executio...
CVE-2023-24481
creationtimestamp| type| source ---|---|--- 2024-03-06 10:11:31+00:00| seen| https://t.me/ctinow/201173...
CVE-2023-24481
Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-24481
Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-24481
CVE-2023-24481 affects Intel Thunderbolt DCH drivers for Windows prior to v88. The vulnerability is caused by improper access control, potentially allowing an authenticated user to escalate privileges via local access. Affected software/component: Intel Thunderbolt DCH driver for Windows before 8...
CVE-2023-24481
Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2023-24481
Improper access control in some IntelR ThunderboltTM DCH drivers for Windows before version 88 may allow an authenticated user to potentially enable escalation of privilege via local access...
Intel® ThunderboltTM DCH Drivers for Windows Advisory
Summary: Potential security vulnerabilities in some Intel® Thunderbolt™ Declarative Componentized Hardware DCH drivers for Windows may allow escalation of privilege, denial of service, and/or information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities...