CVE-2025-34254

D-Link Nuclias Connect firmware versions = 1.3.1.4 contain an observable response discrepancy vulnerability. The application's 'Login' endpoint returns distinct JSON responses depending on whether the supplied username is associated with an existing account. Because the responses differ in the...

Inside the F5 Breach: What We Know and Recommended Actions

On October 15, 2025, F5 Networks disclosed a breach attributed to a sophisticated nation-state actor. In an SEC 8-K form also filed that same day, F5 confirmed unauthorized access to its internal development and knowledge-management systems dating back to August 9, 2025. Some source-code and...

.NET 9.0 security update

9.0.111-1.0.1 - Add support for Oracle Linux 9.0.111-1 - Update to .NET SDK 9.0.111 and Runtime 9.0.10 - Resolves: RHEL-116856...

Oracle Linux 9 : .NET / 8.0 (ELSA-2025-18149)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-18149 advisory. 8.0.121-1.0.1 - Add support for Oracle Linux 8.0.121-1 - Update to .NET SDK 8.0.121 and Runtime 8.0.21 - Resolves: RHEL-116866 Tenable has extracted t...

GHSA-W3Q9-FXM7-J8FQ Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability

Microsoft Security Advisory CVE-2025-55247 | .NET Denial of Service Vulnerability Executive summary Microsoft is releasing this security advisory to provide information about a vulnerability in .NET 8.0.xxx, .NET 9.0.xxx and .NET 10.0.xxx. This advisory also provides guidance on what developers c...

Security update for the Linux Kernel

This update provides the initial livepatch for this kernel update. This update does not contain any fixes and will be updated with livepatches later. Special Instructions and Notes: Please reboot the system after installing this update. Patch Instructions: To install this SUSE update use the SUSE...

Improper Access Control

Vite is vulnerable to Improper Access Control. The vulnerability is due to the dev and preview servers serving any HTML files on the machine regardless of the server.fs settings, which allows an attacker to access unintended files when the Vite server is exposed to the network, potentially leadin...

RHEL 8 : .NET 8.0 (RHSA-2025:18148)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:18148 advisory. .NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR...

Source SDK 安全漏洞

Source SDK is an open source computer game by Valve Software. A security vulnerability exists in Source SDK that stems from a stack-based buffer overflow in the ragdoll model parsing logic, which could lead to remote code execution...

PT-2025-42216

Valve's Source SDK source-sdk-2013's ragdoll model parsing logic contains a stack-based buffer overflow vulnerability.The tokenizer function nexttoken copies characters from an input string into a fixed-size stack buffer without performing bounds checks. When ParseKeyValue processes a collisionpa...

Important: .NET 8.0 security update

.NET is a managed-software framework. It implements a subset of the .NET framework APIs and several new APIs, and it includes a CLR implementation. New versions of .NET that address a security vulnerability are now available. The updated versions are .NET SDK 8.0.121 and .NET Runtime...

Huawei HarmonyOS development framework module buffer overflow vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A buffer overflow vulnerability exists in the Huawei HarmonyOS development framework module, which can be exploited by attackers to affect availability...

libtiff-devel-32bit-4.7.1-2.1 on GA media (moderate)

libtiff-devel-32bit-4.7.1-2.1 on GA media Announcement ID: openSUSE-SU-2025:15635-1 Rating: moderate Cross-References: CVE-2025-9900 CVSS scores: CVE-2025-9900 SUSE : 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-9900 SUSE : 8.5...

EUVD-2025-34458

Parse Javascript SDK vulnerable to prototype pollution in Parse.Object and internal APIs...

CVE-2025-58295

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability...

EUVD-2025-33833

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability...

CVE-2025-58295

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability...

CVE-2025-58295

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability...

CVE-2025-58295

Huawei HarmonyOS development framework module contains a buffer overflow vulnerability that may affect availability. Connected documents corroborate a buffer overflow in the development framework module and its impact on availability, without detailing affected versions, exploitation status, or a...

CVE-2025-58295

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability...