Lucene search
K

4835 matches found

Vulnrichment
Vulnrichment
added 2025/06/23 5:0 p.m.4 views

CVE-2025-6516 HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow

A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5Faddrdecodelen of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to...

5.3CVSS7.3AI score0.00303EPSS
Exploits1References5
CVE
CVE
added 2025/06/23 5:0 p.m.50 views

CVE-2025-6516

CVE-2025-6516 is a heap-based overflow vulnerability in HDF5 up to 1.14.6 affecting the function H5F_addr_decode_len in H5Fint.c. Exploitation requires local access, and public disclosures describe a local attack path. The vulnerability is part of a broader set of reports for HDF5 1.14.6 with mul...

7.8CVSS5.4AI score0.00303EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/06/23 8:38 a.m.5 views

CVE-2025-49156

A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...

7CVSS7.5AI score0.00122EPSS
Exploits0References1
OSV
OSV
added 2025/06/23 2:15 a.m.7 views

AZL-64314 CVE-2025-6498 affecting package tidy 5.8.0-6

A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...

5.5CVSS4.5AI score0.00192EPSS
Exploits1References1
OSV
OSV
added 2025/06/23 2:15 a.m.6 views

AZL-64320 CVE-2025-6498 affecting package tidy 5.8.0-6

A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...

5.5CVSS4.7AI score0.00192EPSS
Exploits1References1
CVE
CVE
added 2025/06/23 1:31 a.m.32 views

CVE-2025-6498

The CVE-2025-6498 entry concerns HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc in src/alloc.c, with the manipulation causing a memory leak. The vulnerability is described as exploitable on the local host, and the exploit has been disclosed publicly. The available connected sources...

5.5CVSS4.1AI score0.00192EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/23 1:31 a.m.4 views

CVE-2025-6498 HTACG tidy-html5 alloc.c defaultAlloc memory leak

A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...

4.8CVSS3.8AI score0.00192EPSS
Exploits1References5
OSV
OSV
added 2025/06/23 1:15 a.m.4 views

DEBIAN-CVE-2025-6497

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...

4.8CVSS3.4AI score0.00134EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/23 12:31 a.m.13 views

CVE-2025-6497 HTACG tidy-html5 parser.c prvTidyParseNamespace assertion

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...

4.8CVSS0.00134EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/06/23 12:31 a.m.6 views

CVE-2025-6497

A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...

4.8CVSS3.4AI score0.00134EPSS
Exploits0
CVE
CVE
added 2025/06/23 12:31 a.m.34 views

CVE-2025-6497

CVE-2025-6497 affects HTACG tidy-html5 5.8.0. The vulnerability targets the function prvTidyParseNamespace in src/parser.c , with manipulation leading to a reachable assertion. Reports indicate a local attack vector and that the exploit has been disclosed publicly. Some sources classify exploit m...

4.8CVSS4AI score0.00134EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.5 views

PT-2025-26577 · Vstakhov · Libucl

Name of the Vulnerable Software and Affected Versions: vstakhov libucl versions up to 0.9.2 Description: A problematic vulnerability was found in the vstakhov libucl, affecting the function ucl parse multiline string of the file src/ucl parser.c. This vulnerability leads to a heap-based buffer...

4.8CVSS3.9AI score0.00213EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.3 views

PT-2025-26623 · Hdf5 +1 · Hdf5 +1

Name of the Vulnerable Software and Affected Versions: HDF5 versions up to 1.14.6 Description: A critical vulnerability has been found in HDF5, affecting the function H5F addr decode len of the file /hdf5/src/H5Fint.c. The manipulation leads to a heap-based buffer overflow. An attack must be...

7.8CVSS7.2AI score0.00303EPSS
Exploits1References18
Positive Technologies
Positive Technologies
added 2025/06/23 12:0 a.m.3 views

PT-2025-26574 · Htacg +1 · Tidy-Html5 +1

Name of the Vulnerable Software and Affected Versions: HTACG tidy-html5 version 5.8.0 Description: A vulnerability was found in HTACG tidy-html5, affecting the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to a reachable assertion. Attacking locally is a...

4.8CVSS6.8AI score0.00134EPSS
Exploits0References20
NVD
NVD
added 2025/06/22 11:15 p.m.4 views

CVE-2025-6494

A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833. It has been classified as problematic. This affects the function hashmapgetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be...

4.8CVSS0.00149EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2025/06/22 10:31 p.m.6 views

CVE-2025-6494

A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833. It has been classified as problematic. This affects the function hashmapgetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be...

4.8CVSS3.3AI score0.00149EPSS
Exploits0
CVE
CVE
added 2025/06/22 10:31 p.m.21 views

CVE-2025-6494

The CVE-2025-6494 entry concerns sparklemotion nokogiri (commit c29c9209…) with a heap-based buffer overflow in hashmap_get_with_hash (gumbo-parser/src/hashmap.c). The vulnerability is described as local-priority, with the exploit disclosed publicly, and a patch named ada4708e5a67114402cd3feb70a4...

4.8CVSS4AI score0.00149EPSS
Exploits0References7
OSV
OSV
added 2025/06/22 7:15 p.m.5 views

CVE-2025-6490

A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...

4.8CVSS7.4AI score
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/06/22 7:0 p.m.4 views

CVE-2025-6490 sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow

A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...

4.8CVSS4AI score0.00149EPSS
Exploits0References7
Cvelist
Cvelist
added 2025/06/22 7:0 p.m.11 views

CVE-2025-6490 sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow

A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...

4.8CVSS0.00149EPSS
Exploits0References7
Rows per page
Query Builder