4292 matches found
CVE-2025-24057
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-21180
Heap-based buffer overflow in Windows exFAT File System allows an unauthorized attacker to execute code locally...
CVE-2025-26630
CVE-2025-26630 is a use-after-free vulnerability in Microsoft Office Access that can allow a local attacker to execute arbitrary code. The issue affects Microsoft Access/Office components and is rated CVSS v3.1 base score 7.8 (High) with Local attack vector, Privileges None, User Interaction requ...
CVE-2025-24993
CVE-2025-24993 is a Windows NTFS heap-based buffer overflow that allows a locally authenticated attacker to execute arbitrary code. Affected component is NTFS on Windows; root cause is a heap-based overflow in NTFS handling. CVSS v3.1 indicates local attack vector, no privileges required, user in...
CVE-2025-24081
CVE-2025-24081 is a Microsoft Excel/Office vulnerability described as a use-after-free in Excel that enables local arbitrary code execution. The CVSS v3.1 vector indicates a high-severity, local-execution flaw (AV: Local, AC: Low, PR: None, UI: Required, S: Unchanged, C/I/A: High). The vulnerabil...
CVE-2025-24079
CVE-2025-24079 is a use-after-free vulnerability in Microsoft Word (Office) that allows a local attacker to execute code on a vulnerable system. The issue affects Word components and is triggered by a crafted input/application behavior, with CVSS 3.1 scoring a base 7.8 (High) and an attack vector...
VulnCheck KEV: CVE-2025-24993
Microsoft Windows New Technology File System NTFS contains a heap-based buffer overflow vulnerability that allows an unauthorized attacker to execute code locally...
VulnCheck KEV: CVE-2025-24985
Microsoft Windows Fast FAT File System Driver contains an integer overflow or wraparound vulnerability that allows an unauthorized attacker to execute code locally...
PT-2025-10795 · Microsoft · Windows Exfat File System +1
Name of the Vulnerable Software and Affected Versions: Windows exFAT File System affected versions not specified Description: A heap-based buffer overflow in the Windows exFAT File System allows an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no...
KLA81545 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, gain privileges, execute arbitrary code, bypass security restrictions, spoof user interface, cause denial of service. Below is a complete list of...
CVE-2025-20931
Out-of-bounds write in parsing bmp image in Samsung Notes prior to version 4.4.26.71 allows local attackers to execute arbitrary code...
CVE-2025-20931
Out-of-bounds write in parsing bmp image in Samsung Notes prior to version 4.4.26.71 allows local attackers to execute arbitrary code...
CVE-2025-20929
Out-of-bounds write in parsing jpeg image in Samsung Notes prior to version 4.4.26.71 allows local attackers to execute arbitrary code...
Linux Distros Unpatched Vulnerability : CVE-2024-7539
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - oFono CUSD Stack-based Buffer Overflow Code Execution Vulnerability. This vulnerability allows local attackers to execute arbitrary code on affected installatio...
Linux Distros Unpatched Vulnerability : CVE-2025-25723
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in GPAC version 2.5 allows a local attacker to execute arbitrary code. CVE-2025-25723 Note that Nessus relies on the presence of t...
CVE-2025-23414
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios...
CVE-2025-24301
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios...
CVE-2025-23240
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios...
CVE-2025-22835
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through out-of-bounds write. This vulnerability can be exploited only in restricted scenarios...
CVE-2025-21084
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through through NULL pointer dereference.. This vulnerability can be exploited only in restricted scenarios...