EUVD-2025-23375

Malicious code in bioql PyPI...

EUVD-2021-9042

Malicious code in bioql PyPI...

EUVD-2022-49113

Malicious code in bioql PyPI...

EUVD-2025-23316

Malicious code in bioql PyPI...

EUVD-2025-23304

Malicious code in bioql PyPI...

EUVD-2024-18005

Malicious code in bioql PyPI...

EUVD-2022-45096

Malicious code in bioql PyPI...

SUSE CVE-2025-10924

GIMP FF File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a...

CVE-2025-8354

CVE-2025-8354 affects Autodesk Revit via a parsing-type confusion in RFA files. The vulnerability is triggered by a maliciously crafted RFA file, with exploitation described as leading to a crash, data corruption, or arbitrary code execution in the current process. CVSS 3.1 indicates a Local atta...

Heap Buffer Overflow

ImageMagick is vulnerable to Heap Buffer Overflow. The vulnerability is due to improper memory handling because crafted TIFF files can trigger a buffer overflow and cause the application to crash...

GHSA-36RR-WW3J-VRJV The Keras `Model.load_model` method **silently** ignores `safe_mode=True` and allows arbitrary code execution when a `.h5`/`.hdf5` file is loaded.

Note: This report has already been discussed with the Google OSS VRP team, who recommended that I reach out directly to the Keras team. I’ve chosen to do so privately rather than opening a public issue, due to the potential security implications. I also attempted to use the email address listed i...

Ashlar-Vellum Cobalt 缓冲区错误漏洞

Ashlar-Vellum Cobalt is a 3D modeling software developed by Ashlar Vellum, which supports Windows and Mac systems, and is mainly used for 3D modeling and CAD drawing in industrial product design, architectural design and other fields. Ashlar-Vellum Cobalt suffers from an out-of-bounds read...

Ashlar-Vellum Graphite 安全漏洞

Ashlar-Vellum Graphite is a CAD modeling software from Ashlar-Vellum. A security vulnerability exists in Ashlar-Vellum Graphite that stems from memory not being properly initialized when parsing VC6 files, which could lead to remote code execution...

CVE-2025-57775 Heap-based Buffer Overflow when parsing a DSB file with Digilent DASYLab

There is a heap-based Buffer Overflow vulnerability due to improper bounds checking when parsing a DSB file with Digilent DASYLab. This vulnerability may result in arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted DSB file. The...

Linux Distros Unpatched Vulnerability : CVE-2025-54481

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A...

CVE-2025-9809

Out-of-bounds write in cdfsopencuetrack in libretro libretro-common latest on all platforms allows remote attackers to execute arbitrary code via a crafted .cue file with a file path exceeding PATHMAXLENGTH that is copied using memcpy into a fixed-size buffer...

CVE-2025-54481

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

CVE-2025-54491

A stack-based buffer overflow vulnerability exists in the MFER parsing functionality of The Biosig Project libbiosig 3.9.0 and Master Branch 35a819fa. A specially crafted MFER file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.This...

Linux Distros Unpatched Vulnerability : CVE-2025-47256

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Libxmp through 4.6.2 has a stack-based buffer overflow in depackpha in loaders/prowizard/pha.c via a malformed Pha format tracker module in a .mod file...

[SECURITY] Fedora 42 Update: libtiff-4.7.0-8.fc42

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...