Lucene search
K

1234 matches found

nessus
nessus
added 2025/12/14 12:0 a.m.6 views

FreeBSD : Roundcube -- Multiple vulnerabilities (3a59024c-d8cf-11f0-af8c-8447094a420f)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 3a59024c-d8cf-11f0-af8c-8447094a420f advisory. The Roundcube project reports: Cross-Site-Scripting vulnerability via SVGs animate tag Information...

5.6AI score
Exploits0References2
ptsecurity
ptsecurity
added 2025/12/13 12:0 a.m.8 views

PT-2025-51991

Name of the Vulnerable Software and Affected Versions Roundcube versions prior to 1.5.12 Roundcube versions prior to 1.6.12 Description Roundcube Webmail contains a Cross-Site Scripting XSS issue stemming from the use of the animate tag within SVG documents. This allows attackers to execute...

7.2CVSS5.7AI score0.19769EPSS
Exploits1References90
cnvd
cnvd
added 2025/10/21 12:0 a.m.5 views

Adobe Animate Out-of-Bounds Read Vulnerability (CNVD-2025-24423)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from an out-of-bounds read vulnerability that can be exploited by an attacker to cause a memory information leak...

5.5CVSS6.6AI score0.00203EPSS
Exploits0References1
cnvd
cnvd
added 2025/10/21 12:0 a.m.6 views

Adobe Animate Null Pointer Dereference Vulnerability (CNVD-2025-24422)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from a null pointer dereference vulnerability that can be exploited by an attacker to cause a memory information disclosure...

5.5CVSS6.6AI score0.00203EPSS
Exploits0References1
cnvd
cnvd
added 2025/10/21 12:0 a.m.3 views

Adobe Animate Memory Misreference Vulnerability (CNVD-2025-24424)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. A memory misreference vulnerability exists in Adobe Animate, which can be exploited by an attacker to cause arbitrary code to be executed in the current user environment...

7.8CVSS7.2AI score0.00236EPSS
Exploits0References1
cnvd
cnvd
added 2025/10/21 12:0 a.m.5 views

Adobe Animate heap buffer overflow vulnerability (CNVD-2025-24421)

Adobe Animate is a set of Flash animation software from the American company Audobee Adobe. Adobe Animate suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause arbitrary code execution in the current user environment...

7.8CVSS8.1AI score0.00249EPSS
Exploits0References1
snyk
snyk
added 2025/10/16 7:51 a.m.2 views

Malicious Package

Overview tailwind-icon-animate is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS6.8AI score
Exploits0References3
redhatcve
redhatcve
added 2025/10/16 12:40 a.m.12 views

CVE-2025-61804

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00249EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/10/16 12:40 a.m.12 views

CVE-2025-54269

Animate versions 23.0.13, 24.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.9AI score0.00203EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/10/16 12:40 a.m.9 views

CVE-2025-54279

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.7AI score0.00236EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/10/16 12:40 a.m.11 views

CVE-2025-54270

Animate versions 23.0.13, 24.0.10 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive memory information. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS6.3AI score0.00203EPSS
Exploits0References1
osv
osv
added 2025/10/15 1:15 a.m.5 views

CVE-2025-54269

Animate versions 23.0.13, 24.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

5.5CVSS5.7AI score0.00203EPSS
Exploits0References1
osv
osv
added 2025/10/15 1:15 a.m.5 views

CVE-2025-61804

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00249EPSS
Exploits0References1
osv
osv
added 2025/10/15 1:15 a.m.4 views

CVE-2025-54270

Animate versions 23.0.13, 24.0.10 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive memory information. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS5.7AI score0.00203EPSS
Exploits0References1
osv
osv
added 2025/10/15 1:15 a.m.3 views

CVE-2025-54279

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00236EPSS
Exploits0References1
nvd
nvd
added 2025/10/15 1:15 a.m.10 views

CVE-2025-54279

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00236EPSS
Exploits0References1
nvd
nvd
added 2025/10/15 1:15 a.m.7 views

CVE-2025-61804

Animate versions 23.0.13, 24.0.10 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00249EPSS
Exploits0References1
nvd
nvd
added 2025/10/15 1:15 a.m.35 views

CVE-2025-54270

Animate versions 23.0.13, 24.0.10 and earlier are affected by a NULL Pointer Dereference vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive memory information. Exploitation of this issue requires user interaction in that a victim...

5.5CVSS0.00203EPSS
Exploits0References1
nvd
nvd
added 2025/10/15 1:15 a.m.6 views

CVE-2025-54269

Animate versions 23.0.13, 24.0.10 and earlier are affected by an out-of-bounds read vulnerability that could lead to memory exposure. An attacker could leverage this vulnerability to disclose sensitive information stored in memory. Exploitation of this issue requires user interaction in that a...

5.5CVSS0.00203EPSS
Exploits0References1
cve
cve
added 2025/10/15 12:18 a.m.18 views

CVE-2025-61804

Adobe Animate is affected by a heap-based buffer overflow (CWE-122) in versions 23.0.13, 24.0.10 and earlier, enabling arbitrary code execution in the user’s context when a victim opens a malicious file. The issue requires user interaction. Remediation: update to fixed versions 23.0.15 or 24.0.12...

7.8CVSS7.4AI score0.00249EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder