CVE-2025-67706

ArcGIS Server versions 11.5 and earlier on Windows and Linux do not sufficiently validate uploaded files, enabling a remote unauthenticated attacker to upload arbitrary files to the server’s designated upload directories. However, the server’s architecture enforces controls that restrict uploaded...

CVE-2021-47742 Epic Games Psyonix Rocket League <=1.95 Elevation of Privileges via Insecure Permissions

Epic Games Psyonix Rocket League =1.95 contains an insecure permissions vulnerability that allows authenticated users to modify executable files with full access permissions. Attackers can leverage the 'F' Full flag for the 'Authenticated Users' group to change executable files and potentially...

CVE-2021-47742 Epic Games Psyonix Rocket League <=1.95 Elevation of Privileges via Insecure Permissions

Epic Games Psyonix Rocket League =1.95 contains an insecure permissions vulnerability that allows authenticated users to modify executable files with full access permissions. Attackers can leverage the 'F' Full flag for the 'Authenticated Users' group to change executable files and potentially...

CVE-2025-66866

A flaw was found in BinUtils. An attacker can exploit a vulnerability in the dabitags function within the cp-demangle.c file by providing a specially crafted Portable Executable PE file. This can lead to a Denial of Service DoS, making the affected application unavailable to legitimate users...

CVE-2025-66863

A flaw was found in BinUtils. Attackers can exploit this vulnerability by providing a specially crafted Portable Executable PE file. This can lead to a denial of service, making the affected application unavailable. Mitigation To reduce the risk of exploitation, users should avoid processing...

SUSE CVE-2025-66861

An issue was discovered in function dunqualifiedname in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file...

SUSE CVE-2025-66864

An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

SUSE CVE-2025-66865

An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CLSA-2025-1767090011 binutils: Fix of CVE-2025-11083

CVE-2025-11083: fix corrupt ELF section header handling...

CVE-2025-66864

A flaw was found in binutils. Processing a specially crafted PE file with cxxfilt can trigger a NULL pointer dereference in the dprintcompinner function in the cp-demangle.c file, causing a crash and resulting in a denial of service. Mitigation Mitigation for this issue is either not available or...

CVE-2025-66865

A flaw was found in binutils. Processing a specially crafted PE file with cxxfilt can trigger a stack overflow in the dprintcompinner function in the cp-demangle.c file, causing a crash and resulting in a denial of service. Mitigation Mitigation for this issue is either not available or the...

EUVD-2025-205618

An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

EUVD-2025-205616

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

EUVD-2025-205615

An issue was discovered in function dabitags in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

EUVD-2025-205617

An issue was discovered in function dunqualifiedname in file cp-demangle.c in BinUtils 2.26 allowing attackers to cause a denial of service via crafted PE file...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the dprintcompinner function in the cp-demangle.c file. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted PE file. Remediation There is no fixed version...

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow via the gnuspecial function in the cplus-dem.c file. An attacker can cause a crash or disrupt service by supplying a specially crafted PE file. Remediation There is no fixed version for binutils. References - POC -...

CVE-2025-66865

An issue was discovered in function dprintcompinner in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66863

An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

CVE-2025-66862

A buffer overflow vulnerability in function gnuspecial in file cplus-dem.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...