64 matches found
@goodboydigital/fido-build (>=3.0.0 <=13.2.0), @olympeio-extensions/sustain (>=2.11.5 <=2.14.0) +15 more potentially affected by unknown CVE via bable-loader (=0.0.1-security)
bable-loader NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on bable-loader and may be impacted: - @goodboydigital/fido-build =3.0.0, =2.11.5, =0.0.6-dev, =0.0.2, =0.0.2, =2.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.0, =1.0.1...
CVE-2025-8399
The Mmm Unity Loader plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘attributes’ parameter in all versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2023-41708
References to the "app loader" functionality could contain redirects to unexpected locations. Attackers could forge app references that bypass existing safeguards to inject malicious script code. Please deploy the provided updates and patch releases. References to apps are now controlled more...
RLSA-2025:2867 Important: grub2 security update
The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. Security Fixes: grub2: net:...
Important: grub2 security update
The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular architecture. The packages support a variety of kernel formats, file systems, computer architectures, and hardware devices. Security Fixes: grub2: net:...
The vulnerability of the SINAMICS S200 servo-system loader, related to deficiencies in authentication procedures, allows a perpetrator to execute arbitrary code.
The vulnerability of the SINAMICS S200 servo drive system’s loader is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
Important: Red Hat Security Advisory: grub2 security update
An update for grub2 is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
The vulnerability of the Cisco IOS XR operating system’s loader allows a hacker to circumvent existing security restrictions.
The vulnerability of the Cisco IOS XR operating system’s loader is related to errors in verifying the cryptographic signature. Exploiting this vulnerability could allow a hacker to circumvent existing security restrictions...
The vulnerability of the loader for AMD Platform Security Processor processors allows a hacker to execute arbitrary code.
The vulnerability of the loader for AMD Platform Security Processor processors involves incorrect checking of the range in the object header. Exploiting this vulnerability could allow an attacker to execute arbitrary code...
Google Chrome 安全漏洞
Google Chrome is a web browser from Google, an American company. Google Chrome suffers from a code execution vulnerability that originates from memory reuse after release in Loader. An attacker can exploit this vulnerability to execute arbitrary code on the system...
The vulnerability of the environment loader for IoT application development, esp-idf, allows a attacker to bypass anti-rollback protection.
The vulnerability of the IoT application development environment loader espressif esp-idf is related to state management errors. Exploiting this vulnerability could allow an attacker to bypass anti-rollback protection mechanisms...
CVE-2023-45672 Frigate unsafe deserialization in `load_config_with_no_duplicates` of `frigate/util/builtin.py`
Frigate is an open source network video recorder. Prior to version 0.13.0 Beta 3, an unsafe deserialization vulnerability was identified in the endpoints used to save configurations for Frigate. This can lead to unauthenticated remote code execution. This can be performed through the UI at /confi...
UBUNTU-CVE-2022-28736
There's a use-after-free vulnerability in grubcmdchainloader function; The chainloader command is used to boot up operating systems that doesn't support multiboot and do not have direct support from GRUB2. When executing chainloader more than once a use-after-free vulnerability is triggered. If a...
The vulnerability of the software file loading function in OMICARD EDM ITPison allows a perpetrator to load any files they desire.
The vulnerability of the software file loading function in OMICARD EDM ITPison involves unlimited loading of dangerous types of files. Exploiting this vulnerability allows a remote attacker to load any files they desire...
PT-2025-25877 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A use-after-free issue has been identified in the Linux kernel's firmware loader. The problem occurs during the unregister process, where the device unregister call could result in the...
CVE-2022-41278
A vulnerability has been identified in JT2Go All versions V14.1.0.6, Teamcenter Visualization V13.2 All versions V13.2.0.12, Teamcenter Visualization V13.3 All versions V13.3.0.8, Teamcenter Visualization V14.0 All versions V14.0.0.4, Teamcenter Visualization V14.1 All versions V14.1.0.6. The...
The vulnerability of Cisco IOS operating system loaders, related to security mechanism deficiencies, allows attackers to trigger service failures.
The vulnerability of Cisco IOS operating system loaders is related to security mechanisms that are flawed. Exploiting this vulnerability can allow attackers to cause service failures...
The vulnerability of the Tiff_Loader.dll library, a tool for 3D JT JT2Go viewing and Teamcenter Visualization lifecycle management system, allows a hacker to trigger a service failure.
The vulnerability of the TiffLoader.dll library, used by 3D JT and JT2Go visualization tools, as well as the Teamcenter Visualization lifecycle management system, stems from a cycle that requires an unavailable exit condition during syntax analysis of TIFF files. Exploiting this vulnerability can...
Das U-Boot 缓冲区错误漏洞
Das U-Boot is a boot loader program mainly for embedded systems. The program supports many different computer system architectures such as PPC, ARM, AVR32, MIPS, x86, 68k, Nios and MicroBlaze. A security vulnerability exists in Das U-Boot 2022.01 and earlier versions, which stems from the...
The vulnerability of the Android operating system’s kernel loader, allowing a hacker to execute arbitrary code
The vulnerability of the Android operating system’s kernel loader is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...