170437 matches found
CVE-2025-71323
CVE-2025-71323 affects picklescan prior to 0.0.33, where failure to block the ctypes module enables remote code execution via crafted pickle files that use ctypes.WinDLL to load kernel32.dll and execute arbitrary commands, bypassing sandbox protections and gadget-chain detection. Exploitation sta...
EUVD-2025-210270
picklescan before 0.0.33 fails to block the ctypes module, allowing attackers to achieve remote code execution by invoking direct syscalls and accessing raw memory. Attackers can craft malicious pickle files using ctypes.WinDLL to load kernel32.dll and execute arbitrary commands, bypassing sandbo...
CGA-882R-HQJW-9H3H
Bulletin has no description...
CGA-F35H-8PFG-F7F3
Bulletin has no description...
CGA-X73X-RM46-Q27F
Bulletin has no description...
ECHO-C24C-41A0-9A74
Bulletin has no description...
ECHO-9838-E255-038E
Bulletin has no description...
ROOT-APP-MAVEN-CVE-2025-66516 CVE-2025-66516 in io.root.org.apache.tika:tika-parser-pdf-module - Patched by Root
Root has patched CVE-2025-66516 in the io.root.org.apache.tika:tika-parser-pdf-module package for Root:Maven. Multiple fixed versions available...
CGA-V5GQ-2XCC-J4CH
Bulletin has no description...
MINI-VQVH-6CCH-24V8
Bulletin has no description...
CGA-FVCF-QJHP-6HWG
Bulletin has no description...
CGA-6WM4-684P-3CQ5
Bulletin has no description...
MINI-WQ6W-WJ7H-36PQ
Bulletin has no description...
UBUNTU-CVE-2026-49268
A remote attacker can inject LDAP special characters into the Distinguished Name DN construction in DefaultLdapRealm class. User-supplied username input is directly concatenated into the LDAP DN template without any escaping of RFC 2253 special characters. This allows an attacker to manipulate th...
MINI-J8W6-3FP3-JR35
Bulletin has no description...
ROOT-APP-MAVEN-CVE-2026-43869 CVE-2026-43869 in io.root.org.apache.thrift:libthrift - Patched by Root
Root has patched CVE-2026-43869 in the io.root.org.apache.thrift:libthrift package for Root:Maven. Multiple fixed versions available...
MINI-6WWC-2J74-987W
Bulletin has no description...
MINI-9HRR-R285-FPJ6
Bulletin has no description...
CGA-97MH-PWWC-CR8W
Bulletin has no description...
GHSA-HGG8-FQQC-VFMW vLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via Anthropic router
vLLM: incomplete CVE-2026-22778 fix leaks PIL repr addresses via the Anthropic API router Researcher: Kai Aizen — SnailSploit @SnailSploit, Adversarial & Offensive Security Research Severity: CVSS 3.1 5.3 Medium AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Target: https://github.com/vllm-project/vllm ---...