Lucene search
K

4835 matches found

Cvelist
Cvelist
added 2025/08/06 4:23 a.m.11 views

CVE-2025-21012

Improper access control in fall detection for Galaxy Watch prior to SMR Aug-2025 Release 1 allows local attackers to modify fall detection configuration...

5.5CVSS0.00109EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-3196

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function...

5.5CVSS6.1AI score0.00265EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/08/05 11:32 p.m.3 views

CVE-2024-13978

A flaw was found in libtiff. The t2preadtiffinit function in the fax2ps component incorrectly handles TIFF files, leading to a null pointer dereference. A local attacker can trigger this condition by providing a specially crafted TIFF file. This can result in an application level denial of servic...

2.5CVSS3.1AI score0.00179EPSS
Exploits1References10
OSV
OSV
added 2025/08/05 6:15 p.m.2 views

UBUNTU-CVE-2025-8586

A vulnerability, which was classified as problematic, was found in libav up to 12.3. This affects the function ffseekframebinary of the file /libavformat/utils.c of the component MPEG File Parser. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local...

4.8CVSS4.8AI score0.00212EPSS
Exploits1References7
NVD
NVD
added 2025/08/05 5:15 p.m.6 views

CVE-2025-8585

A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...

5.3CVSS0.00202EPSS
Exploits1References5
OSV
OSV
added 2025/08/05 5:15 p.m.2 views

UBUNTU-CVE-2025-8585

A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...

5.3CVSS5.2AI score0.00202EPSS
Exploits1References7
Cvelist
Cvelist
added 2025/08/05 5:2 p.m.13 views

CVE-2025-8585 libav DSS File Demuxer avconv.c main double free

A vulnerability, which was classified as critical, has been found in libav up to 12.3. Affected by this issue is the function main of the file /avtools/avconv.c of the component DSS File Demuxer. The manipulation leads to double free. Attacking locally is a requirement. The exploit has been...

5.3CVSS0.00202EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/08/05 3:13 p.m.8 views

CVE-2025-8512

A vulnerability, which was classified as problematic, has been found in TVB Big Big Shop App 2.9.0 on Android. This issue affects some unknown processing of the file AndroidManifest.xml of the component hk.com.tvb.bigbigshop. The manipulation leads to improper export of android application...

5.3CVSS7AI score0.00118EPSS
Exploits0References1
OSV
OSV
added 2025/08/05 12:15 a.m.5 views

AZL-66078 CVE-2025-8534 affecting package libtiff for versions less than 4.6.0-7

A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity ...

2.5CVSS4.5AI score0.00174EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/08/04 11:32 p.m.11 views

CVE-2025-8534 libtiff tiff2ps tiff2ps.c PS_Lvl2page null pointer dereference

A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity ...

2.5CVSS0.00174EPSS
Exploits1References8
Debian CVE
Debian CVE
added 2025/08/04 11:32 p.m.5 views

CVE-2025-8534

A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The complexity ...

2.5CVSS3.9AI score0.00174EPSS
Exploits1
NVD
NVD
added 2025/08/04 8:15 p.m.4 views

CVE-2025-8524

A vulnerability was found in Boquan DotWallet App 2.15.2 on Android and classified as problematic. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.boquanhash.dotwallet. The manipulation leads to improper export of android application...

5.3CVSS0.00118EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/08/04 8:2 p.m.10 views

CVE-2025-8524 Boquan DotWallet App com.boquanhash.dotwallet AndroidManifest.xml improper export of android application components

A vulnerability was found in Boquan DotWallet App 2.15.2 on Android and classified as problematic. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.boquanhash.dotwallet. The manipulation leads to improper export of android application...

5.3CVSS0.00118EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/08/04 8:2 p.m.4 views

CVE-2025-8524 Boquan DotWallet App com.boquanhash.dotwallet AndroidManifest.xml improper export of android application components

A vulnerability was found in Boquan DotWallet App 2.15.2 on Android and classified as problematic. Affected by this issue is some unknown functionality of the file AndroidManifest.xml of the component com.boquanhash.dotwallet. The manipulation leads to improper export of android application...

5.3CVSS5.1AI score0.00118EPSS
Exploits0References4
NVD
NVD
added 2025/08/04 7:15 p.m.4 views

CVE-2025-53395

Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...

7.7CVSS0.00158EPSS
Exploits0References2
NVD
NVD
added 2025/08/04 6:15 p.m.7 views

CVE-2013-10052

ZPanel includes a helper binary named zsudo, intended to allow restricted privilege escalation for administrative tasks. However, when misconfigured in /etc/sudoers, zsudo can be invoked by low-privileged users to execute arbitrary commands as root. This flaw enables local attackers with shell...

8.5CVSS0.00254EPSS
Exploits0References4
CVE
CVE
added 2025/08/04 1:49 a.m.19 views

CVE-2025-20698

CVE-2025-20698 affects Power HAL and describes an out-of-bounds write caused by a missing bounds check. The impact is local escalation of privilege to System level without user interaction. The vulnerability details indicate the presence of a patch (ALPS09915400) and a tracked Issue ID (MSV-3793)...

6.7CVSS6.7AI score0.00088EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2025/08/04 1:49 a.m.17 views

CVE-2025-20697

CVE-2025-20697 : In Power HAL (MediaTek), an out-of-bounds write caused by a missing bounds check could enable local escalation of privilege if the attacker already has System privileges. Exploitation requires no user interaction. A patch is available: ALPS09915681 (MSV-3795). Multiple feeds corr...

6.7CVSS6.7AI score0.00088EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/08/04 12:0 a.m.3 views

zpanelx 安全漏洞

zpanelx is an open source web hosting control panel from The ZPanel Project. A security vulnerability exists in zpanelx that stems from a zsudo misconfiguration that could allow a local attacker to elevate privileges by writing a payload and executing it...

8.5CVSS6.4AI score0.00254EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/04 12:0 a.m.8 views

CVE-2025-53395

Paramount Macrium Reflect through 2025-06-26 allows local attackers to execute arbitrary code with administrator privileges via a crafted .mrimgx backup file and a malicious VSSSvr.dll located in the same directory. When a user with administrative privileges mounts a backup by opening the .mrimgx...

7.7CVSS0.00158EPSS
Exploits0References2
Rows per page
Query Builder