CVE-2025-5643

A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this vulnerability is the function consstackload in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. An attack has to be approached locally. The...

UBUNTU-CVE-2025-5641

A vulnerability was found in Radare2 5.9.9. It has been rated as problematic. This issue affects the function rconsisbreaked in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. It is possible to launch the attack on the local...

UBUNTU-CVE-2025-5642

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...

CVE-2025-5643 Radare2 radiff2 cons.c cons_stack_load memory corruption

A vulnerability classified as problematic was found in Radare2 5.9.9. Affected by this vulnerability is the function consstackload in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. An attack has to be approached locally. The...

CVE-2025-5643

Radare2 5.9.9 is affected by CVE-2025-5643 through the cons_stack_load function in libr/cons/cons.c. The vulnerability arises from manipulating the -T argument, causing memory corruption. Exploitation is local with high attack complexity; exploits have been disclosed but the real existence is dou...

CVE-2025-5642 Radare2 radiff2 pal.c r_cons_pal_init memory corruption

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...

CVE-2025-5642 Radare2 radiff2 pal.c r_cons_pal_init memory corruption

A vulnerability classified as problematic has been found in Radare2 5.9.9. Affected is the function rconspalinit in the library /libr/cons/pal.c of the component radiff2. The manipulation leads to memory corruption. The attack needs to be approached locally. The complexity of an attack is rather...

CVE-2025-5642

Radare2 5.9.9 contains a memory corruption flaw in function r_cons_pal_init (libr/cons/pal.c) within the radiff2 component. Exploitation requires local access; attack complexity is high and exploitability is low to moderate according to sources. The issue is tied to manipulation of the -T argumen...

CVE-2025-5641 Radare2 radiff2 cons.c r_cons_is_breaked memory corruption

A vulnerability was found in Radare2 5.9.9. It has been rated as problematic. This issue affects the function rconsisbreaked in the library /libr/cons/cons.c of the component radiff2. The manipulation of the argument -T leads to memory corruption. It is possible to launch the attack on the local...

CVE-2025-20259 Cisco ThousandEyes Endpoint Agent for Windows Arbitrary File Write Vulnerability

Multiple vulnerabilities in the update process of Cisco ThousandEyes Endpoint Agent for Windows could allow an authenticated, local attacker to delete arbitrary files on an affected device. These vulnerabilities are due to improper access controls on files that are in the local file system. An...

CVE-2025-20993

Out-of-bounds write in libsecimaging.camera.samsung.so prior to SMR Jun-2025 Release 1 allows local attackers to write out-of-bounds memory...

CVE-2025-20989

Improper logging in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to get a hmackey...

CVE-2025-20994

CVE-2025-20994 : The issue involves Samsung Internet prior to version 28.0.0.59 on non-Samsung devices, where the SyncClientProvider mishandles permissions, allowing a local attacker to read and write arbitrary files. The vulnerability description and related sources consistently indicate impact ...

CVE-2025-20994

Improper handling of insufficient permission in SyncClientProvider in Samsung Internet installed on non-Samsung Device prior to version 28.0.0.59 allows local attackers to access read and write arbitrary files...

CVE-2025-20992

Out-of-bound read in libsecimaging.camera.samsung.so prior to SMR Feb-2025 Release 1 allows local attackers to read out-of-bounds memory...

CVE-2025-20991

Improper export of Android application components in Bluetooth prior to SMR Jun-2025 Release 1 allows local attackers to make devices discoverable...

CVE-2025-20988

Out-of-bounds read in fingerprint trustlet prior to SMR May-2025 Release 1 allows local privileged attackers to read out-of-bounds memory...

CVE-2025-20986

Improper access control in ScreenCapture for Galaxy Watch prior to SMR Jun-2025 Release 1 allows local attackers to take screenshots...

CVE-2025-20981

Improper access control in AudioService prior to SMR Jun-2025 Release 1 allows local attackers to access sensitive information...

PT-2025-23751

Name of the Vulnerable Software and Affected Versions Fingerprint trustlet versions prior to SMR May-2025 Release 1 Description The issue is related to improper logging in the fingerprint trustlet, allowing local privileged attackers to obtain a hmac key. This can be exploited by attackers with...