CVE-2026-41325

Kirby is an open-source content management system. Kirby's user permissions control which user role is allowed to perform specific actions to content models in the CMS. These permissions are defined for each role in the user blueprint site/blueprints/users/.... It is also possible to customize th...

EUVD-2025-41325

Malicious code in citra-lepet20-miaww npm...

CVE-2023-41325

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.20 and prior to version 3.22, shdrverifysignature can make a double free. shdrverifysignature used to verify a TA...

VLC < 3.0.18 Multiple Vulnerabilities

The version of VLC media player installed on the remote host is prior to 3.0.18. It is, therefore, affected by multiple vulnerabilities: - VideoLAN VLC prior to version 3.0.18 contains a potential buffer overflow that allows attackers, by tricking a user into opening a crafted playlist or...

CVE-2023-41325

creationtimestamp| type| source ---|---|--- 2023-09-16 00:25:49+00:00| seen| https://t.me/cibsecurity/70616...

CVE-2023-41325

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.20 and prior to version 3.22, shdrverifysignature can make a double free. shdrverifysignature used to verify a TA...

CVE-2023-41325

OP-TEE (Trusted Execution Environment) has a double-free condition in shdr_verify_signature across versions 3.20–3.21, triggered during RSA key memory allocation in sw_crypto_acipher_alloc_rsa_public_key when verifying a TA binary signature. The bug can free memory twice (e) due to non-atomic all...

openSUSE 15 Security Update : vlc (openSUSE-SU-2022:10252-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2022:10252-1 advisory. - In FLACbitreaderreadricesignedblock of bitreader.c, there is a possible out of bounds read due to a heap buffer overflow. This could lea...

Debian DSA-5297-1 : vlc - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-5297 advisory. - An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to...

CVE-2022-41325

An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions...

DEBIAN-CVE-2022-41325

An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions...

CVE-2022-41325

An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions...

CVE-2022-41325

An integer overflow in the VNC module in VideoLAN VLC Media Player through 3.0.17.4 allows attackers, by tricking a user into opening a crafted playlist or connecting to a rogue VNC server, to crash VLC or execute code under some conditions...

CVE-2022-41325

The CVE-2022-41325 entry concerns a vulnerability in VideoLAN VLC Media Player’s VNC module up to version 3.0.17.4, caused by an integer overflow that can be triggered by opening a crafted playlist or connecting to a rogue VNC server. Impact stated: crash or potential code execution under certain...

CVE-2021-41325

creationtimestamp| type| source ---|---|--- 2021-09-30 22:13:45+00:00| seen| https://t.me/cibsecurity/29755...

CVE-2021-41325

CVE-2021-41325 affects Pydio Cells 2.2.9. It has broken access control allowing remote anonymous users to create standard accounts via the profile parameter, and can grant admin permissions via the Roles parameter. This enables unauthorized account creation and potential privilege elevation. Reme...