4069 matches found
PT-2025-39632
Name of the Vulnerable Software and Affected Versions BehaviorTree versions prior to 4.7.0 Description A flaw exists in BehaviorTree due to a null pointer dereference in the JsonExporter::fromJson function located in /src/json export.cpp. Manipulation of the Source argument triggers this issue. T...
PT-2025-39633
Name of the Vulnerable Software and Affected Versions BehaviorTree versions prior to 4.7.0 Description A flaw exists in BehaviorTree that could lead to a stack-based buffer overflow. This issue is related to the manipulation of the error msgs buffer argument within the ParseScript function locate...
PT-2025-39483
Name of the Vulnerable Software and Affected Versions Open Babel versions prior to 3.1.2 Description A flaw exists in Open Babel that may lead to a null pointer dereference. This issue stems from the ChemKinFormat::ReadReactionQualifierLines function located in the /src/formats/chemkinformat.cpp...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
PT-2025-39481
Name of the Vulnerable Software and Affected Versions Open Babel versions through 3.1.1 Description A heap-based buffer overflow exists in Open Babel due to a flaw in the OBSmilesParser::ParseSmiles function located in the /src/formats/smilesformat.cpp file. Local exploitation of this issue is...
CVE-2025-10906
A flaw has been found in Magnetism Studios Endurance up to 3.3.0 on macOS. This affects the function loadModuleNamed:WithReply of the file /Applications/Endurance.app/Contents/Library/LaunchServices/com.MagnetismStudios.endurance.helper of the component NSXPC Interface. Executing manipulation can...
CVE-2025-10906
CVE-2025-10906 affects Magnetism Studios Endurance on macOS (versions up to 3.3.0). The vulnerability lies in the NSXPC Interface, specifically loadModuleNamed:WithReply in /Applications/Endurance.app/Contents/Library/LaunchServices/com.MagnetismStudios.endurance.helper, enabling local manipulati...
CVE-2025-10906 Magnetism Studios Endurance NSXPC com.MagnetismStudios.endurance.helper loadModuleNamed:WithReply missing authentication
A flaw has been found in Magnetism Studios Endurance up to 3.3.0 on macOS. This affects the function loadModuleNamed:WithReply of the file /Applications/Endurance.app/Contents/Library/LaunchServices/com.MagnetismStudios.endurance.helper of the component NSXPC Interface. Executing manipulation can...
PT-2025-39246
Name of the Vulnerable Software and Affected Versions Magnetism Studios Endurance versions up to 3.3.0 Description A security issue exists in Magnetism Studios Endurance on macOS. The loadModuleNamed:WithReply function within the file...
CVE-2025-10767
A vulnerability was detected in CosmodiumCS OnlyRAT up to 3.2. The affected element is the function connect/remoteupload/remotedownload of the file main.py of the component Configuration File Handler. The manipulation of the argument configuration"PASSWORD" results in os command injection. The...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
DEBIAN-CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10823
A vulnerability was found in axboe fio up to 3.41. This affects the function strbufferpatterncb of the file options.c. Performing manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been made public and could be used...
CVE-2025-10823
A vulnerability was found in axboe fio up to 3.41. This affects the function strbufferpatterncb of the file options.c. Performing manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been made public and could be used...
AZL-67664 CVE-2025-10823 affecting package fio for versions less than 3.30-3
A vulnerability was found in axboe fio up to 3.41. This affects the function strbufferpatterncb of the file options.c. Performing manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been made public and could be used...
CVE-2025-10824
CVE-2025-10824 affects the axboe fio package up to version 3.41. The vulnerability targets the function __parse_jobs_ini in init.c and is caused by a use-after-free condition. Exploitation requires local access, and a public exploit has been disclosed. The information across multiple sources cons...
CVE-2025-10824 axboe fio init.c __parse_jobs_ini use after free
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...
CVE-2025-10824
A vulnerability was determined in axboe fio up to 3.41. This impacts the function parsejobsini of the file init.c. Executing manipulation can lead to use after free. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized...