4835 matches found
EulerOS 2.0 SP11 : augeas (EulerOS-SA-2025-1946)
According to the versions of the augeas package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability has been found in Hercules Augeas 1.14.1 and classified as problematic. This vulnerability affects the function recaseexpand of the...
CVE-2025-8844
A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...
CVE-2025-8842
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function dodirective of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used...
SUSE CVE-2025-8842
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function dodirective of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used...
CVE-2025-53141
Null pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...
CVE-2025-50173
Weak authentication in Windows Installer allows an authorized attacker to elevate privileges locally...
PT-2025-32819 · Microsoft · Windows Ancillary Function Driver For Winsock +1
Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: A null pointer dereference exists in the Windows Ancillary Function Driver for WinSock. This issue allows an authorized attacker to elevate privileges...
PT-2025-32805 · Microsoft · Windows Ancillary Function Driver For Winsock +1
Name of the Vulnerable Software and Affected Versions: Windows Ancillary Function Driver for WinSock affected versions not specified Description: A use after free issue exists in the Windows Ancillary Function Driver for WinSock that could allow an authorized attacker to elevate privileges locall...
CVE-2025-8758
A vulnerability was found in TRENDnet TEW-822DRE FW103B02. It has been classified as problematic. This affects an unknown part of the component vsftpd. The manipulation leads to least privilege violation. Attacking locally is a requirement. The complexity of an attack is rather high. The...
DEBIAN-CVE-2025-8845
A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function assemblefile of the file nasm.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...
CVE-2025-8845
A vulnerability was identified in NASM Netwide Assember 2.17rc0. This issue affects the function assemblefile of the file nasm.c. The manipulation leads to stack-based buffer overflow. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...
AZL-66213 CVE-2025-8844 affecting package nasm 2.16-1
A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...
CVE-2025-8844 NASM Netwide Assember preproc.c parse_smacro_template null pointer dereference
A vulnerability was determined in NASM Netwide Assember 2.17rc0. This vulnerability affects the function parsesmacrotemplate of the file preproc.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has been disclosed to the public and may be used...
CVE-2025-8844
NASM Netwide Assembler 2.17rc0 contains a vulnerability in parse_smacro_template (preproc.c) that triggers a null pointer dereference. The issue requires local access to exploit, and the exploit has been disclosed publicly. Technical details regarding affected versions beyond 2.17rc0 or remediati...
AZL-66227 CVE-2025-8842 affecting package nasm 2.16.01-1
A vulnerability has been found in NASM Netwide Assember 2.17rc0. Affected by this issue is the function dodirective of the file preproc.c. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public and may be used...
AZL-66168 CVE-2025-8837 affecting package jasper for versions less than 4.2.1-3
A vulnerability was identified in JasPer up to 4.2.5. This affects the function jpcdecdump of the file src/libjasper/jpc/jpcdec.c of the component JPEG2000 File Handler. The manipulation leads to use after free. An attack has to be approached locally. The exploit has been disclosed to the public...
UBUNTU-CVE-2025-8836
A vulnerability was determined in JasPer up to 4.2.5. Affected by this issue is the function jpcfloorlog2 of the file src/libjasper/jpc/jpcenc.c of the component JPEG2000 Encoder. The manipulation leads to reachable assertion. The attack needs to be approached locally. The exploit has been...
CVE-2025-8837
CVE-2025-8837 affects JasPer up to 4.2.5, in the JPC decoder (jpc_dec_dump) of the JPEG2000 File Handler. The issue enables a use-after-free condition when processing malformed input, with local attack requirements and public exploit disclosure. Multiple connected advisories report a patch to upg...
CVE-2025-8835
A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jasimagechclrspc of the file src/libjasper/base/jasimage.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack...
UBUNTU-CVE-2025-8835
A vulnerability was found in JasPer up to 4.2.5. Affected by this vulnerability is the function jasimagechclrspc of the file src/libjasper/base/jasimage.c of the component Image Color Space Conversion Handler. The manipulation leads to null pointer dereference. It is possible to launch the attack...