CVE-2025-10715 APEUni PTE Exam Practice App com.ape_edication AndroidManifest.xml improper export of android application components

A security flaw has been discovered in APEUni PTE Exam Practice App up to 10.8.0 on Android. The impacted element is an unknown function of the file AndroidManifest.xml of the component com.apeedication. The manipulation results in improper export of android application components. The attack...

PT-2025-38537

Name of the Vulnerable Software and Affected Versions APEUni PTE Exam Practice App versions up to 10.8.0 Description A security flaw has been discovered in APEUni PTE Exam Practice App on Android. The issue involves improper export of android application components due to an unknown function with...

PT-2025-38587

Name of the Vulnerable Software and Affected Versions Webull Investing & Trading App version 11.2.5.63 Description A vulnerability exists in Webull Investing & Trading App that causes improper export of Android application components due to manipulation of unknown code within the...

PT-2025-39749

Name of the Vulnerable Software and Affected Versions GNU Binutils versions prior to 2.46 Description A flaw exists in GNU Binutils impacting the bfd elf parse eh frame function within the bfd/elf-eh-frame.c file of the Linker component. This can lead to a heap-based buffer overflow, with...

PT-2025-39750

Name of the Vulnerable Software and Affected Versions GNU Binutils versions prior to 2.46 Description A flaw exists in the Linker component of GNU Binutils. Specifically, the issue resides within the elf swap shdr function located in the bfd/elfcode.h library. This can lead to a heap-based buffer...

CVE-2025-10672

CVE-2025-10672 affects whuan132 AIBattery up to 1.0.9, with a local authentication bypass in AIBatteryHelper/XPC/BatteryXPCService.swift of the com.collweb.AIBatteryHelper component. The vulnerability allows a local attacker to bypass authentication and potentially compromise confidentiality, int...

CVE-2025-10672 whuan132 AIBattery com.collweb.AIBatteryHelper BatteryXPCService.swift missing authentication

A vulnerability was found in whuan132 AIBattery up to 1.0.9. The affected element is an unknown function of the file AIBatteryHelper/XPC/BatteryXPCService.swift of the component com.collweb.AIBatteryHelper. The manipulation results in missing authentication. The attack requires a local approach...

CVE-2025-10672 whuan132 AIBattery com.collweb.AIBatteryHelper BatteryXPCService.swift missing authentication

A vulnerability was found in whuan132 AIBattery up to 1.0.9. The affected element is an unknown function of the file AIBatteryHelper/XPC/BatteryXPCService.swift of the component com.collweb.AIBatteryHelper. The manipulation results in missing authentication. The attack requires a local approach...

Avira Prime Link Following Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Avira Prime. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Avira Spotlight...

CVE-2025-10475 SpyShelter IOCTL SpyShelter.sys denial of service

A weakness has been identified in SpyShelter up to 15.4.0.1015. Affected is an unknown function in the library SpyShelter.sys of the component IOCTL Handler. This manipulation causes denial of service. The attack needs to be launched locally. The exploit has been made available to the public and...

CVE-2025-10475

CVE-2025-10475 affects SpyShelter up to v15.4.0.1015, specifically an unknown function in the library SpyShelter.sys within the IOCTL Handler. This flaw enables a local denial-of-service condition. The attack requires local access; public exploits are indicated, and the issue is addressable by up...

CVE-2025-3025 CCleaner Link Following Local Privilege Escalation Vulnerability

Elevation of Privileges in the cleaning feature of Gen Digital CCleaner version 6.33.11465 on Windows allows a local user to gain SYSTEM privileges via exploiting insecure file delete operations. Reported in CCleaner v. 6.33.11465. This issue affects CCleaner: before 6.36.11508...

Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2025-1176)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1176 advisory. A flaw has been found in LibTIFF 4.7.0. This affects the function TIFFmallocExt/TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulatio...

OESA-2025-2275 binutils security update

Binutils is a collection of binary utilities, including ar for creating, modifying and extracting from archives, as a family of GNU assemblers, gprof for displaying call graph profile data, ld the GNU linker, nm for listing symbols from object files, objcopy for copying and translating object...

EulerOS 2.0 SP10 : binutils (EulerOS-SA-2025-2090)

According to the versions of the binutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in GNU Binutils up to 2.44. It has been rated as critical. Affected by this issue is the function elfgcsweep of the fil...

Linux Distros Unpatched Vulnerability : CVE-2017-0509

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An elevation of privilege vulnerability in the Broadcom Wi-Fi driver could enable a local malicious application to execute arbitrary code within the context of...

Windows Kernel Elevation of Privilege Vulnerability

Integer overflow or wraparound in Windows Kernel allows an authorized attacker to elevate privileges locally...

PT-2025-36834

Name of the Vulnerable Software and Affected Versions: Windows Hyper-V affected versions not specified Description: An integer overflow or wraparound in Windows Hyper-V can allow a locally authorized attacker to elevate privileges. This issue allows attackers to affect the system. Recommendations...

Google Android Denial of Service Vulnerability

Google Android is a free and open source mobile operating system based on the Linux kernel, developed by Google Inc. and the Open Handset Alliance, and is mainly used for smartphones, tablets and other devices. Google Android suffers from a denial-of-service vulnerability that stems from resource...

OESA-2025-2179 assimp security update

Assimp is a library to load and process geometric scenes from various data formats. Assimp aims to provide a full asset conversion pipeline for use in game engines and real-time rendering systems of any kind, but is not limited to this purpose. Security Fixes: A vulnerability has been found in Op...