Lucene search
K

4504 matches found

CNNVD
CNNVD
added 2025/12/23 12:0 a.m.2 views

GIMP 输入验证错误漏洞

GIMP is an open source bitmap image editor from the GIMP team. GIMP suffers from an input validation error vulnerability that stems from a lack of proper validation of user-supplied data when parsing PNM files, which could lead to an integer overflow and remote code execution...

7.8CVSS7.9AI score0.00508EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/23 12:0 a.m.5 views

NSF Unidata NetCDF-C 输入验证错误漏洞

NSF Unidata NetCDF-C is a tool for processing NetCDF files from NSF Unidata, USA. An input validation error vulnerability exists in NSF Unidata NetCDF-C that stems from a lack of validation of user-supplied data when parsing NC variables, which could lead to an integer overflow and remote code...

7.8CVSS8AI score0.0031EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/19 12:0 a.m.4 views

Restajet Online Food Delivery System 输入验证错误漏洞

Restajet Online Food Delivery System is an online food ordering and delivery system from Restajet Turkey. An input validation error vulnerability exists in Restajet Online Food Delivery System version 19122025 and prior versions, which originates from URL redirection to an untrusted site and can...

5.4CVSS6.7AI score0.00147EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when processing large packets, which could result in a denial of service...

7.8CVSS6.7AI score0.00079EPSS
Exploits0References1
CNVD
CNVD
added 2025/12/15 12:0 a.m.4 views

Adobe DNG Software Development Kit (SDK) Input Validation Error Vulnerability

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. An input validation error vulnerability exists in Adobe DNG Software Development Kit SDK, which can be exploited by an attacker to execute arbitrary code on a system or cause an applicati...

7.8CVSS6.3AI score0.00172EPSS
Exploits4References1
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.8 views

WordPress plugin Fox LMS – WordPress LMS Plugin 输入验证错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. WordPress...

9.8CVSS6.5AI score0.05821EPSS
Exploits1References3
CNNVD
CNNVD
added 2025/12/13 12:0 a.m.6 views

WordPress plugin TI WooCommerce Wishlist 输入验证错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. An input...

5.3CVSS6.7AI score0.00373EPSS
Exploits0References5
CNVD
CNVD
added 2025/12/12 12:0 a.m.8 views

Microsoft Exchange Server Input Validation Error Vulnerability (CNVD-2025-3057284)

Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides e-mail access, storage, forwarding, voice mail, e-mail filtering and screening. A security vulnerability exists in Microsoft Exchange Server. An attacker could exploit the...

7.5CVSS6.7AI score0.00983EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/11 7:35 p.m.27 views

CVE-2025-36932

In tracepointmsghandler of cpm/google/lib/tracepoint/tracepointipc.c, there is a possible memory overwrite due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

0.00084EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.5 views

glib 输入验证错误漏洞

glib is a general-purpose, portable utility library from the GNOME project. It provides many useful data types, macros, type conversions, string utilities, file utilities, main loop abstractions, and more. An input validation error vulnerability exists in glib, which stems from an integer overflo...

6.5CVSS6.8AI score0.00504EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.3 views

glib 输入验证错误漏洞

glib is a general-purpose, portable utility library from the GNOME project. Many useful data types, macros, type conversions, string utilities, file utilities, main loop abstractions, etc. are provided. An input validation error vulnerability exists in glib, which stems from a GVariant parser...

9.8CVSS7.2AI score0.00754EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.4 views

Adobe ColdFusion 输入验证错误漏洞

Adobe ColdFusion is a suite of rapid application development platforms from the American company Audobee Adobe. The platform includes an integrated development environment and a scripting language. An input validation error vulnerability exists in Adobe ColdFusion versions 2025.4, 2023.16, 2021.2...

9.1CVSS6AI score0.00564EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.5 views

Siemens SINEC Security Monitor 输入验证错误漏洞

Siemens SINEC Security Monitor is an industrial security monitor from Siemens Germany. An input validation error vulnerability exists in Siemens SINEC Security Monitor versions prior to V4.10.0, which stems from a lack of input validation for the date parameter in the report generation function,...

7.1CVSS8.9AI score0.00326EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Siemens RUGGEDCOM 输入验证错误漏洞

Siemens RUGGEDCOM is a communications device from Siemens Germany. It provides fast and reliable communications for power, transportation, oil and gas, and other industries. Siemens RUGGEDCOM suffers from an input validation error vulnerability that stems from insufficient input validation during...

5.3CVSS9AI score0.00217EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Adobe DNG SDK 输入验证错误漏洞

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. An input validation error vulnerability exists in Adobe DNG Software Development Kit SDK, which can be exploited by an attacker to execute arbitrary code on a system or cause an applicati...

7.8CVSS6.2AI score0.00172EPSS
Exploits4References1
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.3 views

Microsoft Message Queuing 输入验证错误漏洞

Microsoft Message Queuing is a Microsoft Corporation USA solution for implementing asynchronous and synchronous scenarios that require high performance. An input validation error vulnerability exists in Microsoft Message Queuing. An attacker could exploit the vulnerability to elevate privileges...

7.8CVSS6.3AI score0.0046EPSS
Exploits0References1
NVD
NVD
added 2025/12/08 5:16 p.m.5 views

CVE-2025-48594

In onUidImportance of DisassociationProcessor.java, there is a possible way to retain companion application privileges after disassociation due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed...

7.8CVSS0.00078EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/08 12:0 a.m.4 views

Google Android 输入验证错误漏洞

Google Android is a Linux-based open source operating system from Google, Inc. in the United States. Google Android suffers from an input validation error vulnerability that stems from improper input validation and could lead to local elevation of privilege...

7.8CVSS6.1AI score0.00095EPSS
Exploits0References3
Redos
Redos
added 2025/12/03 12:0 a.m.18 views

ROS-20251203-10

Vulnerability of parse.ParseUnverified function of golang-jwt web token library of Go programming language is related to uncontrolled resource consumption. Go programming language is related to uncontrolled resource consumption. Exploitation of the vulnerability allows an attacker acting remotely...

9.1CVSS7.2AI score0.03092EPSS
Exploits4
NVD
NVD
added 2025/12/01 8:15 a.m.3 views

CVE-2025-61617

In nr modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service with no additional execution privileges needed...

7.5CVSS0.00232EPSS
Exploits0References1
Rows per page
Query Builder