CVE-2019-25676 Ask Expert Script 3.0.5 Cross Site Scripting SQL Injection

Ask Expert Script 3.0.5 contains cross-site scripting and SQL injection vulnerabilities that allow unauthenticated attackers to inject malicious code by manipulating URL parameters. Attackers can inject script tags through the cateid parameter in categorysearch.php or SQL code through the view...

Installer of M-Audio M-Track Duo HD may insecurely load Dynamic Link Libraries

Overview The installer of M-Track Duo HD provided by M-Audio contains the following vulnerability with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries. Uncontrolled search path element CWE-427 - CVE-2026-25676 Kazuma Matsumoto of GMO Cybersecurity by IERAE, Inc...

CVE-2023-25676

TensorFlow is an open source machine learning platform. When running versions prior to 2.12.0 and 2.11.1 with XLA, tf.rawops.ParallelConcat segfaults with a nullptr dereference when given a parameter shape with rank that is not greater than zero. A fix is available in TensorFlow 2.12.0 and 2.11.1...

CVE-2022-25676

Information disclosure in video due to buffer over-read while parsing avi files in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wearables...

CVE-2021-25676

A vulnerability has been identified in RUGGEDCOM RM1224 V6.3, SCALANCE M-800 V6.3, SCALANCE S615 V6.3, SCALANCE SC-600 All Versions = V2.1 and V2.1.3. Multiple failed SSH authentication attempts could trigger a temporary Denial-of-Service under certain conditions. When triggered, the device will...

Linux Distros Unpatched Vulnerability : CVE-2020-25676

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In CatromWeights, MeshInterpolate, InterpolatePixelChannel, InterpolatePixelChannels, and InterpolatePixelInfo, which are all functions in /MagickCore/pixel.c,...

CVE-2025-25676

Tenda i12 V1.0.0.103805 was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function...

CVE-2025-25676

Tenda i12 V1.0.0.103805 was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function...

CVE-2025-25676

Tenda i12 V1.0.0.103805 was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function...

CVE-2025-25676

CVE-2025-25676 affects Tenda i12, specifically a buffer overflow in the formwrlSSIDset function triggered by the list parameter. Public sources describe a remote-triggerable condition that can crash the application and cause denial of service; some entries also imply potential for unauthorized ac...

CVE-2025-25676

Tenda i12 V1.0.0.103805 was discovered to contain a buffer overflow via the list parameter in the formwrlSSIDset function...

CVE-2023-25676 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25676 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...

Ubuntu: Security Advisory (USN-7068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Intersil (Boa) HTTPd Basic Authentication Password Reset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Intersil Boa HTTPd Basic Authentication Password Reset', 'Description' = %q The Intersil extension in the Boa HTTP Server 0.93.x - 0.94.11 allows...

CVE-2024-25676

An issue was discovered in ViewerJS 0.5.8. A script from the component loads content via URL TAGs without properly sanitizing it. This leads to both open redirection and out-of-band resource loading...

Security Bulletin: Multiple Vulnerabilities affecting IBM Watson Studio in Cloud Pak for Data Are Addressed

Summary There are multiple vulnerabilities in Runtimes 22.2 component impacting IBM Watson Studio in Cloud Pak for Data. This bulletin identifies the steps to take to address the vulnerabilities. Vulnerability Details CVEID:CVE-2023-2800 DESCRIPTION: Hugging Face Transformers is vulnerable to a...

CVE-2023-25676 affecting package tensorflow for versions less than 2.11.1-1

CVE-2023-25676 affecting package tensorflow for versions less than 2.11.1-1. A patched version of the package is available...

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow (CVE-2023-25676)

Summary IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a denial of service in TensorFlow, , caused by a NULL pointer dereference in tf.rawops.ParallelConcat when running XLA CVE-2023-25676. TensorFlow is included as part of the runtimes in our service. This...

Siemens SCALANCE and RUGGEDCOM Devices SSH Improper Restriction of Excessive Authentication Attempts (CVE-2021-25676)

A vulnerability has been identified in RUGGEDCOM RM1224 V6.3, SCALANCE M-800 V6.3, SCALANCE S615 V6.3, SCALANCE SC-600 All Versions = V2.1 and = V2.1 and V2.1.3. Multiple failed SSH authentication attempts could trigger a temporary Denial-of-Service under certain conditions. When triggered, the...

CVE-2023-25676

creationtimestamp| type| source ---|---|--- 2023-03-25 06:38:13+00:00| seen| https://t.me/cibsecurity/60738...