CVE-2025-20653

CVE-2025-20653 corresponds to a MediaTek chipset issue described as an out-of-bounds read caused by an integer overflow. The vulnerability could enable local information disclosure with a high impact on confidentiality, integrity, and availability, requiring physical access to the device and user...

Linux Distros Unpatched Vulnerability : CVE-2011-1677

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mount in util-linux 2.19 and earlier does not remove the /etc/mtab lock file after a failed attempt to add a mount entry, which has unspecified impact and local...

CVE-2025-1804

A vulnerability was found in Blizzard Battle.Net up to 2.39.0.15212 on Windows and classified as critical. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to uncontrolled search path. The attack needs to be approached locally. The complexity...

CVE-2025-1804

CVE-2025-1804 affects Blizzard Battle.Net (Windows) up to version 2.39.0.15212. The vulnerability resides in an unknown function of profapi.dll and causes an uncontrolled search path, enabling local exploitation. The initial descriptions indicate a locally approached attack with high complexity a...

CVE-2025-1788 rizinorg rizin utf8.c rz_utf8_encode heap-based overflow

A vulnerability, which was classified as critical, was found in rizinorg rizin up to 0.8.0. This affects the function rzutf8encode in the library /librz/util/utf8.c. The manipulation leads to heap-based buffer overflow. An attack has to be approached locally. The exploit has been disclosed to the...

CVE-2025-1788

CVE-2025-1788 affects rizin up to version 0.8.0, with the vulnerable code located in librz/util/utf8.c (rz_utf8_encode). The issue is a heap-based buffer overflow that requires local access to exploit. Publicly disclosed exploits exist; a patch/update is recommended to fix the vulnerability. Othe...

Updated radare2 packages fix security vulnerabilities

A vulnerability, which was classified as problematic, was found in radare2. Affected is an unknown function in the library /libr/main/rasm2.c of the component rasm2. The manipulation leads to memory corruption. An attack has to be approached locally. The exploit has been disclosed to the public a...

PT-2025-8988

Name of the Vulnerable Software and Affected Versions The product name cannot be determined. Description General information about the issue is not explicitly mentioned, but it is related to a security advisory from Lenovo. The estimated number of potentially affected devices worldwide is not...

SUSE CVE-2025-1632

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the publi...

UBUNTU-CVE-2025-1632

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the publi...

CVE-2025-1632

A vulnerability was found in libarchive up to 3.7.7. It has been classified as problematic. This affects the function list of the file bsdunzip.c. The manipulation leads to null pointer dereference. It is possible to launch the attack on the local host. The exploit has been disclosed to the publi...

CVE-2025-21106

Dell Recover Point for Virtual Machines 6.0.X contains a Weak file system permission vulnerability. A low privileged Local attacker could potentially exploit this vulnerability, leading to impacting only non-sensitive resources in the system...

CVE-2024-52541

Dell Client Platform BIOS contains a Weak Authentication vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Elevation of Privileges...

CVE-2025-1370

A vulnerability, which was classified as critical, has been found in MicroWorld eScan Antivirus 7.0.32 on Linux. Affected by this issue is the function sprintf of the file epsdaemon of the component Autoscan USB. The manipulation leads to os command injection. An attack has to be approached...

Google Android elevation of privilege vulnerability (CNVD-2025-03647)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability that is caused by a logic error in multiple locations. An attacker can exploit the vulnerability to cause a local privilege escalation...

Vim < 9.1.1097 memory corruption vulnerability

The version of Vim installed on the remote host is prior to 9.1.1097. It is, therefore, affected by a vulnerability as referenced in the 911097 advisory. - A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability affects unknown code of the file src/main.c. Th...

CVE-2024-57964

The CVE-2024-57964 entry concerns the HVAC Energy Saving Program, where insecure loading of Dynamic Link Libraries is the root cause. The vulnerability can allow a local attacker to disclose information or execute arbitrary code on affected systems, with a CVSS v3.1 base score of 7.3 ( HIGH ) and...

CVE-2024-57963 Insecure Loading of Dynamic Link Libraries in USB-CONVERTERCABLE DRIVER

Insecure Loading of Dynamic Link Libraries have been discovered in USB-CONVERTERCABLE DRIVER, which could allow local attackers to potentially disclose information or execute arbitray code on affected systems. This issue affects USB-CONVERTERCABLE DRIVER:...

SUSE CVE-2025-1371

A vulnerability has been found in GNU elfutils 0.192 and classified as problematic. This vulnerability affects the function handledynamicsymtab of the file readelf.c of the component eu-read. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The exploit has...

SUSE CVE-2025-1377

A vulnerability, which was classified as problematic, has been found in GNU elfutils 0.192. This issue affects the function gelfgetsymshndx of the file strip.c of the component eu-strip. The manipulation leads to denial of service. The attack needs to be approached locally. The exploit has been...