CVE-2025-12204

CVE-2025-12204 affects Kamailio 5.5. The vulnerable element is the function rve_destroy in the file src/core/rvalue.c of the Configuration File Handler, with a reported heap-based buffer overflow as the underlying issue. The attack is described as local, and public disclosures exist; however, som...

CVE-2025-12204

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

CVE-2025-12204 Kamailio Configuration File rvalue.c rve_destroy heap-based overflow

A security vulnerability has been detected in Kamailio 5.5. Impacted is the function rvedestroy of the file src/core/rvalue.c of the component Configuration File Handler. The manipulation leads to heap-based buffer overflow. The attack must be carried out locally. The exploit has been disclosed...

EUVD-2025-36059

A vulnerability was determined in dnsmasq up to 2.73rc6. Affected by this issue is the function parsedhcpopt of the file src/option.c of the component Config File Handler. This manipulation of the argument m causes null pointer dereference. The attack can only be executed locally. The exploit has...

CVE-2025-12200

Removed by vendor...

CVE-2025-12200

CVE-2025-12200 is a withdrawn candidate. Connected sources describe dnsmasq parsing failures in parse_dhcp_opt (option.c) prior to 2.73rc6 causing a local null pointer dereference. Exploitation is local; remediation is to upgrade to a version newer than 2.73rc6. Several vendors reference this iss...

CVE-2025-12200

...

CVE-2025-12200

...

CVE-2025-12199

Removed by vendor...

EUVD-2025-36060

A vulnerability was found in dnsmasq up to 2.73rc6. Affected by this vulnerability is the function checkservers of the file src/network.c of the component Config File Handler. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit has been mad...

CVE-2025-12199

...

PT-2025-43758

Name of the Vulnerable Software and Affected Versions dnsmasq versions prior to 2.73rc6 Description A flaw exists in dnsmasq related to the parse dhcp opt function within the Config File Handler component, specifically in the file src/option.c. Manipulation of the argument m can lead to a null...

PT-2025-43756

Name of the Vulnerable Software and Affected Versions dnsmasq versions up to 2.73rc6 Description A flaw exists in dnsmasq that involves a heap-based buffer overflow. This issue is located within the Config File Handler component, specifically in the parse hex function of the src/util.c file. The...

Linux Distros Unpatched Vulnerability : CVE-2025-11840

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A weakness has been identified in GNU Binutils 2.45. The affected element is the function vfinfo of the file ldmisc.c. Executing a manipulation can lead to...

BIT-DOTNET-SDK-2025-55247 .NET Elevation of Privilege Vulnerability

Improper link resolution before file access 'link following' in .NET allows an authorized attacker to elevate privileges locally...

EulerOS 2.0 SP13 : libtiff (EulerOS-SA-2025-2268)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function...

PT-2025-43474

In multiple functions of ProfilingService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

PT-2025-43476

In multiple functions of ProfilingService.java, there is a possible persistent denial of service due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

Linux Distros Unpatched Vulnerability : CVE-2025-11414

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability was determined in GNU Binutils 2.45. Affected by this vulnerability is the function getlinkhashentry of the file bfd/elflink.c of the component...

SUSE CVE-2022-4981

A vulnerability was detected in DCMTK up to 3.6.7. The impacted element is the function DcmQueryRetrieveConfig::readPeerList of the file /dcmqrcnf.cc of the component dcmqrscp. The manipulation results in null pointer dereference. The attack needs to be approached locally. The exploit is now publ...