Lucene search
K

4835 matches found

OSV
OSV
added 2025/08/08 5:15 p.m.6 views

UBUNTU-CVE-2025-8732

A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a requirement. The exploit has been disclosed to...

4.8CVSS4.6AI score0.00135EPSS
Exploits0References5
CVE
CVE
added 2025/08/08 4:32 p.m.75 views

CVE-2025-8732

CVE-2025-8732 affects libxml2 up to 2.14.5, with a vulnerability in xmlParseSGMLCatalog that can trigger uncontrolled recursion during SGML catalog processing. Local attackers are required, and exploit details have circulated publicly; the real-world impact remains debated in some sources. Severa...

4.8CVSS4AI score0.00135EPSS
Exploits0References7
OSV
OSV
added 2025/08/08 11:16 a.m.5 views

OESA-2025-1978 libtiff security update

This provides support for the Tag Image File Format TIFF, a widely used format for storing image data. The latest version of the TIFF specification is available on-line in several different formats.And contains command-line programs for manipulating TIFF format image files using the libtiff...

2.5CVSS5.9AI score0.00179EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/08/08 4:27 a.m.7 views

CVE-2025-21010

Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privileged attackers to deactivate Samsung account...

6CVSS6.1AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/08 4:27 a.m.10 views

CVE-2025-21022

Improper access control in Galaxy Wearable prior to version 2.2.63.25042861 allows local attackers to access sensitive information...

3.3CVSS6.1AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/08 1:24 a.m.7 views

CVE-2025-8635

Kenwood DMX958XR Firmware Update Command Injection Vulnerability. This vulnerability allows physically present attackers to execute arbitrary code on affected installations of Kenwood DMX958XR devices. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

6.8CVSS6.9AI score0.00954EPSS
Exploits0References1
NVD
NVD
added 2025/08/07 9:15 p.m.5 views

CVE-2025-8698

A vulnerability was found in Open5GS up to 2.7.5. It has been classified as problematic. Affected is the function amfnsmfpdusessionhandlereleasesmcontext of the file src/amf/nsmf-handler.c of the component AMF Service. The manipulation leads to reachable assertion. Attacking locally is a...

4.8CVSS0.0018EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/08/07 8:32 p.m.4 views

CVE-2025-8698 Open5GS AMF Service nsmf-handler.c amf_nsmf_pdusession_handle_release_sm_context assertion

A vulnerability was found in Open5GS up to 2.7.5. It has been classified as problematic. Affected is the function amfnsmfpdusessionhandlereleasesmcontext of the file src/amf/nsmf-handler.c of the component AMF Service. The manipulation leads to reachable assertion. Attacking locally is a...

4.8CVSS3.8AI score0.0018EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/08/07 5:32 p.m.10 views

CVE-2025-8585

A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...

5.3CVSS5.1AI score0.00202EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-16911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The vhcihcd driver in the Linux Kernel before version 4.14.8 and 4.4.114 allows allows local attackers to disclose kernel memory addresses. Successful...

4.7CVSS6.2AI score0.00399EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/06 8:37 p.m.5 views

CVE-2025-8524

A vulnerability was found in Boquan DotWallet App 2.15.2 on Android and classified as problematic. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.boquanhash.dotwallet. The manipulation leads to improper export of android application...

5.3CVSS5AI score0.00118EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 8:15 p.m.5 views

CVE-2025-38747

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to Elevation of Privileges...

7.8CVSS0.00133EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/06 7:48 p.m.6 views

CVE-2025-38747

Dell SupportAssist OS Recovery, versions prior to 5.5.14.0, contain a Creation of Temporary File With Insecure Permissions vulnerability. A local authenticated attacker could potentially exploit this vulnerability, leading to Elevation of Privileges...

7.8CVSS0.00133EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 5:15 a.m.6 views

CVE-2025-21017

Out-of-bounds write in detaching crypto box in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory...

6.7CVSS0.00139EPSS
Exploits0References1
NVD
NVD
added 2025/08/06 5:15 a.m.7 views

CVE-2025-21010

Improper privilege management in SamsungAccount prior to SMR Aug-2025 Release 1 allows local privileged attackers to deactivate Samsung account...

6CVSS0.00121EPSS
Exploits0References1
CVE
CVE
added 2025/08/06 4:23 a.m.24 views

CVE-2025-21021

Summary: CVE-2025-21021 describes an out-of-bounds write in the drawing pinpad of Samsung’s Blockchain Keystore. Affected component: Blockchain Keystore (drawing pinpad) prior to version 1.3.17.2. Root cause / vulnerability: out-of-bounds memory write, enabling a local privileged attacker to writ...

6.7CVSS6.3AI score0.0012EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/08/06 4:23 a.m.4 views

CVE-2025-21020

Out-of-bounds write in creating bitmap images in Blockchain Keystore prior to version 1.3.17.2 allows local privileged attackers to write out-of-bounds memory...

5.7CVSS6.3AI score0.0012EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/06 4:23 a.m.4 views

CVE-2025-21019

Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability...

5.5CVSS6.2AI score0.00126EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/06 4:23 a.m.9 views

CVE-2025-21019

Improper authorization in Samsung Health prior to version 6.30.1.003 allows local attackers to access data in Samsung Health. User interaction is required for triggering this vulnerability...

5.5CVSS0.00126EPSS
Exploits0References1
CVE
CVE
added 2025/08/06 4:23 a.m.24 views

CVE-2025-21018

The CVE-2025-21018 issue affects Samsung Blockchain Keystore, with an out-of-bounds read in versions prior to 1.3.17.2. The vulnerability allows a local privileged attacker to read out-of-bounds memory, resulting in confidentiality impact. The root cause is an out-of-bounds read in Blockchain Key...

4.4CVSS6.2AI score0.00137EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder