CVE-2025-20907

Improper privilege management in Samsung Find prior to SMR Feb-2025 Release 1 allows local privileged attackers to disable Samsung Find...

CVE-2025-20905

Out-of-bounds read and write in mPOS TUI trustlet prior to SMR Feb-2025 Release 1 allows local privileged attackers to read and write out-of-bounds memory...

CVE-2025-20904

CVE-2025-20904 involves an out-of-bounds write in the mPOS TUI trustlet on Samsung Mobile devices, prior to SMR Feb-2025 Release 1, enabling local privileged attackers to cause memory corruption. Affected component: mPOS TUI trustlet; root cause: out-of-bounds write leading to memory corruption; ...

CVE-2025-0797

CVE-2025-0797 affects MicroWorld eScan Antivirus 7.0.32 on Linux, specifically the Quarantine Handler component and the /var/Microworld/ path. The root cause is incorrect default permissions on that file/directory, enabling a local attacker to exploit the weakness. The exploit has been disclosed ...

CVE-2025-0732

A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of...

CVE-2025-0733

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The...

CVE-2025-0733

CVE-2025-0733 pertains to Postman (Windows) up to version 11.20, affecting an unspecified part of profapi.dll. The issue enables an untrusted search path via local access, with attack complexity described as high and exploitability deemed difficult. Public documentation notes a denial of a confir...

CVE-2025-0733 Postman profapi.dll untrusted search path

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The...

CVE-2025-0733 Postman profapi.dll untrusted search path

A vulnerability, which was classified as problematic, was found in Postman up to 11.20 on Windows. This affects an unknown part in the library profapi.dll. The manipulation leads to untrusted search path. An attack has to be approached locally. The complexity of an attack is rather high. The...

CVE-2025-0732 Discord profapi.dll untrusted search path

A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of...

CVE-2025-0732 Discord profapi.dll untrusted search path

A vulnerability, which was classified as problematic, has been found in Discord up to 1.0.9177 on Windows. Affected by this issue is some unknown functionality in the library profapi.dll. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of...

CVE-2025-0732

CVE-2025-0732 affects Discord up to version 1.0.9177 on Windows. The issue concerns an unknown capability in the profapi.dll library that allows an untrusted search path to be exploited. Exploitation requires local access with high attack complexity and low privileges; user interaction is not req...

PT-2025-4025 · Postman · Postman

Name of the Vulnerable Software and Affected Versions: Postman versions up to 11.20 Description: A problematic issue has been found in Postman on Windows, affecting an unknown part of the library file profapi.dll. The manipulation leads to an untrusted search path. The attack must be approached...

CVE-2025-0720 Microword eScan Antivirus Folder Watch List rtscanner removeExtraSlashes stack-based overflow

A vulnerability was found in Microword eScan Antivirus 7.0.32 on Linux. It has been rated as problematic. Affected by this issue is the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner of the component Folder Watch List Handler. The manipulation leads to stack-based buffer...

CVE-2025-0707

A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as critical. This affects an unknown part in the library CRYPTBASE.dll of the component Startup. The manipulation leads to untrusted search path. The attack needs to be approached locally...

CVE-2025-0707 Rise Group Rise Mode Temp CPU Startup CRYPTBASE.dll untrusted search path

A vulnerability was found in Rise Group Rise Mode Temp CPU 2.1. It has been classified as critical. This affects an unknown part in the library CRYPTBASE.dll of the component Startup. The manipulation leads to untrusted search path. The attack needs to be approached locally...

CVE-2025-0707

Rise Group Rise Mode Temp CPU 2.1 is affected by a vulnerability in the CRYPTBASE.dll component within Startup that enables an untrusted search path when exploited locally. The issue is described across multiple sources (including PT-2025-4016 and Red Hat/NVD entries) as a critical, local attack ...

PT-2025-4016 · Rise · Rise Mode Temp Cpu

Name of the Vulnerable Software and Affected Versions: Rise Group Rise Mode Temp CPU version 2.1 Description: A critical issue has been found, affecting an unknown part of the CRYPTBASE.dll library in the Startup component. This leads to an untrusted search path, and the attack must be launched...

CVE-2024-55504

An issue in RAR Extractor - Unarchiver Free and Pro v.6.4.0 allows local attackers to inject arbitrary code potentially leading to remote control and unauthorized access to sensitive user data via the exploitcombined.dylib component on MacOS...

CVE-2024-13524

A vulnerability has been found in obsproject OBS Studio up to 30.0.2 on Windows and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to untrusted search path. The attack needs to be approached locally. The complexity of an attack is...