Code-Projects Train Ticket Reservation System 安全漏洞

Code-Projects Train Ticket Reservation System is an open source train ticket reservation system from Code-Projects. A security vulnerability exists in Code-Projects Train Ticket Reservation System version 1.0, which stems from a stack buffer overflow due to an incorrect manipulation of the...

Code-Projects ATM Banking 安全漏洞

Code-Projects ATM Banking is an atm management system from Code-Projects open source. A security vulnerability exists in Code-Projects ATM Banking version 1.0, which stems from a business logic error in the moneyDeposit and moneyWithdraw functions that could lead to a local attack...

PT-2025-28381 · Unknown · Audio Service

Name of the Vulnerable Software and Affected Versions: LeAudioService versions prior to SMR Jul-2025 Release 1 Description: The issue is related to improper access control in LeAudioService, which allows local attackers to manipulate broadcasting Auracast. Recommendations: For versions prior to S...

PT-2025-17700 · I Pro Co. · I-Pro Configuration Tool

Name of the Vulnerable Software and Affected Versions: i-PRO Configuration Tool affected versions not specified Description: The issue concerns the use of a hard-coded cryptographic key in the i-PRO Configuration Tool, which affects the network system of i-PRO Co., Ltd. surveillance cameras and...

CVE-2025-2769

Bdrive NetDrive Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Bdrive NetDrive. An attacker must first obtain the ability to execute low-privileged code on the target system i...

CVE-2025-2769

CVE-2025-2769 affects Bdrive NetDrive. The issue is an Uncontrolled Search Path Element leading to Local Privilege Escalation. The root cause is the OpenSSL configuration being loaded from an unsecured location, enabling an attacker who can run low-privileged code to escalate to SYSTEM and execut...

(0Day) Cato Networks Cato Client for macOS Helper Service Time-Of-Check Time-Of-Use Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Cato Networks Cato Client for macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

CVE-2025-27087

The CVE-2025-27087 entry concerns the kernel of the Cray Operating System (COS). The connected documents identify the affected component as the COS kernel and describe a local Denial of Service (DoS) impact. The NVD/Metrics indicate a local attack with low prerequisites and a high availability im...

PT-2025-17381 · Jinja2 +1 · Jinja2 +2

Name of the Vulnerable Software and Affected Versions: thautwarm vscode-diana version 0.0.1 Description: A critical vulnerability has been found in the Jinja2 Template Handler component of thautwarm vscode-diana. The issue affects an unknown function of the file Gen.py and leads to injection. Loc...

CVE-2025-3791

A vulnerability classified as critical was found in symisc UnQLite up to 957c377cb691a4f617db9aba5cc46d90425071e2. This vulnerability affects the function jx9MemObjStore of the file /data/src/benchmarks/unqlite/unqlite.c. The manipulation leads to heap-based buffer overflow. It is possible to...

CVE-2025-3791

CVE-2025-3791 affects symisc UnQLite, specifically the jx9MemObjStore function in /data/src/benchmarks/unqlite/unqlite.c. Reports describe a heap-based buffer overflow that enables a local attacker to trigger exploitation on the host. The vulnerability is confirmed across multiple feeds and linke...

OESA-2025-1428 augeas security update

Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes are made by manipulating this tree and saving it back into native config files. Security Fixes: A vulnerability has been found in Hercules Augeas...

SUSE CVE-2025-3549

A vulnerability, which was classified as critical, was found in Open Asset Import Library Assimp 5.4.3. Affected is the function Assimp::MD3Importer::ValidateSurfaceHeaderOffsets of the file code/AssetLib/MD3/MD3Loader.cpp of the component File Handler. The manipulation leads to heap-based buffer...

PyTorch Improper Resource Shutdown or Release vulnerability

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctcloss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed ...

CVE-2025-3730

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctcloss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed ...

UBUNTU-CVE-2025-3730

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctcloss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed ...

CVE-2025-3730 PyTorch LossCTC.cpp torch.nn.functional.ctc_loss denial of service

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctcloss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed ...

CVE-2025-3730

CVE-2025-3730 affects PyTorch 2.6.0 in multiple IBM advisories and related deployments, notably the torch.nn.functional.ctc_loss path in LossCTC.cpp, which can cause local-denial-of-service. IBM docs consistently reference the same patching signal (46fc5d8e360127361211cb237d5f9eef0223e567) and pr...

CVE-2025-3730

A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctcloss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An attack has to be approached locally. The exploit has been disclosed ...

CVE-2025-3728

CVE-2025-3728 affects SourceCodester Simple Hotel Booking System v1.0, where the Login function’s uname parameter can be manipulated to cause a buffer overflow. The local-host attack surface is indicated, with exploitation disclosed publicly. Impact is described as high (confidentiality, integrit...