25 matches found
CVE-2026-25170
Technical details for CVE-2026-25170 are not publicly provided in the supplied documents. Monitor updates from Microsoft and national advisories for affected products, fixes, and confirmed impact.
CVE-2026-25170
Use after free in Windows Hyper-V allows an authorized attacker to elevate privileges locally...
CVE-2026-25170 Windows Hyper-V Elevation of Privilege Vulnerability
...
CVE-2018-25170
creationtimestamp| type| source ---|---|--- 2026-03-06 14:14:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mgfipnviud27...
CVE-2024-25170
An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...
CVE-2025-25170
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DotsquaresLtd Migrate Posts migrate-post allows Reflected XSS.This issue affects Migrate Posts: from n/a through = 1.0...
CVE-2025-25170
CVE-2025-25170 affects the WordPress Migrate Posts plugin (versions
CVE-2024-25170
creationtimestamp| type| source ---|---|--- 2024-02-28 21:26:58+00:00| seen| https://t.me/ctinow/195880 2024-02-28 21:27:08+00:00| seen| https://t.me/ctinow/195890...
CVE-2024-25170
An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...
CVE-2024-25170
An issue in Mezzanine v6.0.0 allows attackers to bypass access controls via manipulating the Host header...
CVE-2024-25170
Mezzanine v6.0.0 contains a vulnerability where attackers can bypass access controls by manipulating the Host header. Descriptions across Red Hat, GHSA, OSV, NVD, and related advisories consistently reference Host header-based bypass with potential unauthorized access to information or systems. T...
CVE-2023-25170
creationtimestamp| type| source ---|---|--- 2023-03-13 19:23:14+00:00| seen| https://t.me/cibsecurity/59912...
CVE-2023-25170 PrestaShop has possible CSRF token fixation
PrestaShop is an open source e-commerce web application that, prior to version 8.0.1, is vulnerable to cross-site request forgery CSRF. When authenticating users, PrestaShop preserves session attributes. Because this does not clear CSRF tokens upon login, this might enable same-site attackers to...
CVE-2023-25170
PrestaShop prior to version 8.0.1 is vulnerable to Cross-site request forgery (CSRF) due to CSRF tokens not being cleared on login, allowing potential session-fixation-like attacks by attackers with network access. Affected component is the authentication/session management flow; root cause is to...
CVE-2022-25170
The affected product is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...
CVE-2022-25170
CVE-2022-25170 affects FATEK Automation FvDesigner. The vulnerability is a stack-based buffer overflow while processing project files, enabling arbitrary code execution. Affected product/version: FvDesigner versions 1.5.100 and prior. Impact: potential for high-severity code execution; CVSS v3.1 ...
CVE-2022-25170 ICSA-22-055-01 FATEK Automation FvDesigner
The affected product is vulnerable to a stack-based buffer overflow while processing project files, which may allow an attacker to execute arbitrary code...
CVE-2021-25170
creationtimestamp| type| source ---|---|--- 2021-02-08 22:39:38+00:00| seen| https://t.me/cibsecurity/23240...
CVE-2021-25170
The CVE-2021-25170 entry concerns the Baseboard Management Controller (BMC) firmware in HPE Apollo 70 System prior to version 3.0.14.0, where a local buffer overflow exists in the libifc.so websetremoteimageinfo function. Affected component: BMC firmware on HPE Apollo 70; root cause: buffer overf...
CVE-2020-25170
creationtimestamp| type| source ---|---|--- 2020-11-06 20:51:08+00:00| seen| https://t.me/cibsecurity/15985...