4835 matches found
CVE-2025-6516 HDF5 H5Fint.c H5F_addr_decode_len heap-based overflow
A vulnerability has been found in HDF5 up to 1.14.6 and classified as critical. This vulnerability affects the function H5Faddrdecodelen of the file /hdf5/src/H5Fint.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to...
CVE-2025-6516
CVE-2025-6516 is a heap-based overflow vulnerability in HDF5 up to 1.14.6 affecting the function H5F_addr_decode_len in H5Fint.c. Exploitation requires local access, and public disclosures describe a local attack path. The vulnerability is part of a broader set of reports for HDF5 1.14.6 with mul...
CVE-2025-49156
A link following vulnerability in the Trend Micro Apex One scan engine could allow a local attacker to escalation privileges on affected installations. Please note: an attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability...
AZL-64314 CVE-2025-6498 affecting package tidy 5.8.0-6
A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...
AZL-64320 CVE-2025-6498 affecting package tidy 5.8.0-6
A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...
CVE-2025-6498
The CVE-2025-6498 entry concerns HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc in src/alloc.c, with the manipulation causing a memory leak. The vulnerability is described as exploitable on the local host, and the exploit has been disclosed publicly. The available connected sources...
CVE-2025-6498 HTACG tidy-html5 alloc.c defaultAlloc memory leak
A vulnerability classified as problematic has been found in HTACG tidy-html5 5.8.0. Affected is the function defaultAlloc of the file src/alloc.c. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be...
DEBIAN-CVE-2025-6497
A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...
CVE-2025-6497 HTACG tidy-html5 parser.c prvTidyParseNamespace assertion
A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...
CVE-2025-6497
A vulnerability was found in HTACG tidy-html5 5.8.0. It has been rated as problematic. This issue affects the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to reachable assertion. Attacking locally is a requirement. The exploit has been disclosed to the public an...
CVE-2025-6497
CVE-2025-6497 affects HTACG tidy-html5 5.8.0. The vulnerability targets the function prvTidyParseNamespace in src/parser.c , with manipulation leading to a reachable assertion. Reports indicate a local attack vector and that the exploit has been disclosed publicly. Some sources classify exploit m...
PT-2025-26577 · Vstakhov · Libucl
Name of the Vulnerable Software and Affected Versions: vstakhov libucl versions up to 0.9.2 Description: A problematic vulnerability was found in the vstakhov libucl, affecting the function ucl parse multiline string of the file src/ucl parser.c. This vulnerability leads to a heap-based buffer...
PT-2025-26623 · Hdf5 +1 · Hdf5 +1
Name of the Vulnerable Software and Affected Versions: HDF5 versions up to 1.14.6 Description: A critical vulnerability has been found in HDF5, affecting the function H5F addr decode len of the file /hdf5/src/H5Fint.c. The manipulation leads to a heap-based buffer overflow. An attack must be...
PT-2025-26574 · Htacg +1 · Tidy-Html5 +1
Name of the Vulnerable Software and Affected Versions: HTACG tidy-html5 version 5.8.0 Description: A vulnerability was found in HTACG tidy-html5, affecting the function prvTidyParseNamespace of the file src/parser.c. The manipulation leads to a reachable assertion. Attacking locally is a...
CVE-2025-6494
A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833. It has been classified as problematic. This affects the function hashmapgetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be...
CVE-2025-6494
A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833. It has been classified as problematic. This affects the function hashmapgetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be...
CVE-2025-6494
The CVE-2025-6494 entry concerns sparklemotion nokogiri (commit c29c9209…) with a heap-based buffer overflow in hashmap_get_with_hash (gumbo-parser/src/hashmap.c). The vulnerability is described as local-priority, with the exploit disclosed publicly, and a patch named ada4708e5a67114402cd3feb70a4...
CVE-2025-6490
A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...
CVE-2025-6490 sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow
A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...
CVE-2025-6490 sparklemotion nokogiri hashmap.c hashmap_set_with_hash heap-based overflow
A vulnerability was found in sparklemotion nokogiri c29c920907366cb74af13b4dc2230e9c9e23b833 and classified as problematic. This issue affects the function hashmapsetwithhash of the file gumbo-parser/src/hashmap.c. The manipulation leads to heap-based buffer overflow. An attack has to be approach...