CVE-2025-1215

A vulnerability classified as problematic was found in vim up to 9.1.1096. This vulnerability affects unknown code of the file src/main.c. The manipulation of the argument --log leads to memory corruption. It is possible to launch the attack on the local host. Upgrading to version 9.1.1097 is abl...

CVE-2025-1187

A vulnerability classified as critical was found in code-projects Police FIR Record Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Delete Record Handler. The manipulation leads to stack-based buffer overflow. Attacking locally is a requirement...

CVE-2024-51440

Nothing Tech Nothing OS 2.6 is affected by a local privilege escalation flaw in the NtBpfService component. The root cause is a vulnerability within NtBpfService that enables a local attacker to escalate privileges (CVSS v3.1: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H). The security entries consistentl...

CVE-2024-13813

Insufficient permissions in Ivanti Secure Access Client before version 22.8R1 allows a local authenticated attacker to delete arbitrary files...

CVE-2024-13842

A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to read sensitive data...

CVE-2024-13842

A hardcoded key in Ivanti Connect Secure before version 22.7R2.3 and Ivanti Policy Secure before version 22.7R1.3 allows a local authenticated attacker with admin privileges to read sensitive data...

CVE-2024-53977

A vulnerability has been identified in ModelSim All versions V2025.1, Questa All versions V2025.1. An example setup script contained in affected applications allows a specific executable file to be loaded from the current working directory. This could allow an authenticated local attacker to inje...

CVE-2025-1163

A vulnerability classified as critical was found in code-projects Vehicle Parking Management System 1.0. This vulnerability affects the function login of the component Authentication. The manipulation of the argument username leads to stack-based buffer overflow. An attack has to be approached...

VulnCheck KEV: CVE-2025-21418

Microsoft Windows Ancillary Function Driver for WinSock contains a heap-based buffer overflow vulnerability that allows for privilege escalation, enabling a local attacker to gain SYSTEM privileges...

CVE-2025-1163 code-projects Vehicle Parking Management System Authentication login stack-based overflow

A vulnerability classified as critical was found in code-projects Vehicle Parking Management System 1.0. This vulnerability affects the function login of the component Authentication. The manipulation of the argument username leads to stack-based buffer overflow. An attack has to be approached...

CVE-2025-1163

CVE-2025-1163 affects code-projects Vehicle Parking Management System 1.0, specifically the Authentication.login function. The root cause is manipulation of the username argument which leads to a stack-based buffer overflow . Exploitation is described as local, with public disclosure of the explo...

PT-2025-6105 · Code Projects · Code-Projects Police Fir Record Management System

Name of the Vulnerable Software and Affected Versions: code-projects Police FIR Record Management System version 1.0 Description: A critical vulnerability was found in the Delete Record Handler component of the code-projects Police FIR Record Management System. The manipulation of this...

EulerOS 2.0 SP11 : xorg-x11-server (EulerOS-SA-2025-1168)

According to the versions of the xorg-x11-server package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the X.org server. Due to improperly tracked allocation size in XkbSetCompatMap, a local attacker may be able to trigge...

CVE-2025-0302

in OpenHarmony v4.1.2 and prior versions allow a local attacker cause DOS through integer overflow...

CVE-2025-1115

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115 RT-Thread lwp_syscall.c sys_timer_settime information disclosure

A vulnerability classified as problematic was found in RT-Thread up to 5.1.0. Affected by this vulnerability is the function...

CVE-2025-1115

RT-Thread up to 5.1.0 is affected by a local-information-disclosure vulnerability in the lwp_syscall.c path (sys_device_close/sys_device_control/etc.). The issue stems from improper handling/manipulation of the argument arg[0], enabling information disclosure via local access. Exploit details are...

CVE-2025-20902

Improper access control in Media Controller prior to version 1.0.24.5282 allows local attacker to launch activities in MediaController's privilege...

CVE-2025-20890

Out-of-bounds write in decoding frame buffer in libsthmbc.so prior to SMR Jan-2025 Release 1 allows local attackers to execute arbitrary code with privilege. User interaction is required for triggering this vulnerability...