EUVD-2025-25943

Malicious code in bioql PyPI...

CVE-2025-7989

Ashlar-Vellum Cobalt AR File Parsing Out-Of-Bounds Read allows remote code execution. The flaw occurs in AR file parsing due to inadequate validation, enabling an attacker to read past the end of an allocated structure and execute code in the target process. Exploitation requires user interaction...

CVE-2022-25943

The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed...

CVE-2021-25943

creationtimestamp| type| source ---|---|--- 2025-04-30 21:15:33+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/14170...

CVE-2025-25943

creationtimestamp| type| source ---|---|--- 2025-02-20 02:16:44+00:00| seen| https://t.me/cvedetector/18499...

CVE-2025-25943

Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary code via the AP4Stz2Atom::AP4Stz2Atom component located in Ap4Stz2Atom.cpp...

CVE-2025-25943

Buffer Overflow vulnerability in Bento4 v.1.6.0-641 allows a local attacker to execute arbitrary code via the AP4Stz2Atom::AP4Stz2Atom component located in Ap4Stz2Atom.cpp...

CVE-2025-25943

CVE-2025-25943 concerns Bento4 v1.6.0-641, where a buffer overflow in the AP4_Stz2Atom::AP4_Stz2Atom component (Ap4Stz2Atom.cpp) allows a local attacker to execute arbitrary code. Public documents confirm the affected software and the vulnerable function/file, and describe the impact as local arb...

CVE-2024-25943

iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking vulnerability in IPMI. A remote attacker could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable application...

CVE-2024-25943

iDRAC9, versions prior to 7.00.00.172 for 14th Generation and 7.10.50.00 for 15th and 16th Generations, contains a session hijacking vulnerability in IPMI. A remote attacker could potentially exploit this vulnerability, leading to arbitrary code execution on the vulnerable application...

CVE-2022-25943

The installer of WPS Office for Windows versions prior to v11.2.0.10258 fails to configure properly the ACL for the directory where the service program is installed...

CVE-2022-25943

The CVE-2022-25943 issue affects WPS Office for Windows prior to v11.2.0.10258. The installer fails to configure ACLs correctly for the installation directory of the service program, enabling a local-privilege escalation path as described in multiple sources. Affected software is the WPS Office W...

CVE-2022-25943

creationtimestamp| type| source ---|---|--- 2022-03-08 13:45:31+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/1624 2022-04-22 08:36:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/2010...

101 (>=0.2.0 <=1.6.2), 101-es6 (=0.8.0) +306 more potentially affected by CVE-2021-25943 via 101 (>=1.2.0 <=1.6.3)

101 NPM version =1.2.0, =0.2.0, =0.1.0, =0.0.0, =0.0.2, =2.13.1, =0.0.1, =0.0.2, =0.1.0, =1.0.0, =1.1.2, =0.0.1, =1.0.0, =0.0.48, =0.0.62 and more Source cves: CVE-2021-25943 Source advisory: OSV:GHSA-CWCX-RXGC-CMW3...

CVE-2021-25943

The CVE-2021-25943 entry concerns a prototype pollution flaw in the 101 package, affecting versions 1.0.0 through 1.6.3. The root cause is improper object manipulation that allows prototype pollution, enabling a denial of service and potentially remote code execution. Publicly documented referenc...

CVE-2021-25943

Prototype pollution vulnerability in '101' versions 1.0.0 through 1.6.3 allows an attacker to cause a denial of service and may lead to remote code execution...