CVE-2025-0797 MicroWorld eScan Antivirus Quarantine Microworld default permission

A vulnerability was found in MicroWorld eScan Antivirus 7.0.32 on Linux. It has been declared as problematic. This vulnerability affects unknown code of the file /var/Microworld/ of the component Quarantine Handler. The manipulation leads to incorrect default permissions. The attack needs to be...

PT-2025-4056 · Microworld · Escan Antivirus

Name of the Vulnerable Software and Affected Versions: MicroWorld eScan Antivirus version 7.0.32 Description: The issue affects the Quarantine Handler component, specifically the file /var/Microworld/, leading to incorrect default permissions. This can be exploited locally, and the exploit has be...

PT-2025-2590 · Google · Android Wificonfigurationutil

Name of the Vulnerable Software and Affected Versions: Android WifiConfigurationUtil affected versions not specified Description: A logic error in the code of WifiConfigurationUtil.java, specifically in the validateSsid function, could lead to a local denial of service due to a possible overflow ...

PT-2025-4024 · Discord · Discord

Name of the Vulnerable Software and Affected Versions: Discord versions up to 1.0.9177 Description: A problem has been found in Discord that affects some unknown functionality in the profapi.dll library, leading to an untrusted search path. The attack must be approached locally and has a rather...

PT-2025-4020 · Microworld · Escan Antivirus

Name of the Vulnerable Software and Affected Versions: Microword eScan Antivirus version 7.0.32 Description: A problematic issue has been found, affecting the function removeExtraSlashes of the file /opt/MicroWorld/sbin/rtscanner in the component Folder Watch List Handler. This issue leads to a...

SUSE CVE-2024-57360

https://www.gnu.org/software/binutils/ nm =2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: nm --without-symbol-version function...

UBUNTU-CVE-2024-57360

https://www.gnu.org/software/binutils/ nm =2.43 is affected by: Incorrect Access Control. The type of exploitation is: local. The component is: nm --without-symbol-version function...

Google Android 安全漏洞

Google Android is a Linux-based operating system from the American company Google. Google Android suffers from an elevation of privilege vulnerability that stems from a lack of privilege checking and can be exploited to bypass the read permission of a content provider. An attacker can exploit the...

CVE-2025-0529

A vulnerability, which was classified as critical, was found in code-projects Train Ticket Reservation System 1.0. This affects an unknown part of the component Login Form. The manipulation of the argument username leads to stack-based buffer overflow. Attacking locally is a requirement. The...

CVE-2025-21101

Dell Display Manager, versions prior to 2.3.2.20, contain a race condition vulnerability. A local malicious user could potentially exploit this vulnerability during installation, leading to arbitrary folder or file deletion...

CVE-2025-21101

Dell Display Manager (Windows) prior to version 2.3.2.20 contains a race condition vulnerability during installation. A local attacker could potentially exploit this to delete arbitrary folders or files. Root cause: insufficient synchronization of shared resources during installation. Affected pr...

PT-2025-2280 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: The issue is related to a possible out of bounds write due to an incorrect bounds check in Modem. This could lead to local escalation of privilege if a malicious actor has already obtained th...

CVE-2025-0221

A vulnerability has been found in IOBit Protected Folder up to 1.3.0 and classified as problematic. This vulnerability affects the function 0x22200c in the library pffilter.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference. The attack needs to be approached...

CVE-2025-0221 IOBit Protected Folder IOCTL pffilter.sys 0x22200c null pointer dereference

A vulnerability has been found in IOBit Protected Folder up to 1.3.0 and classified as problematic. This vulnerability affects the function 0x22200c in the library pffilter.sys of the component IOCTL Handler. The manipulation leads to null pointer dereference. The attack needs to be approached...

PT-2025-32538 · Unknown +1 · Nasm Netwide Assembler +1

Name of the Vulnerable Software and Affected Versions: NASM Netwide Assembler version 2.17rc0 Description: A flaw exists in the parse smacro template function within the preproc.c file. This issue leads to a null pointer dereference. Local access is required for exploitation. An exploit has been...

PT-2025-32541 · Unknown +1 · Nasm Netwide Assembler +1

Name of the Vulnerable Software and Affected Versions: NASM Netwide Assembler version 2.17rc0 Description: A stack-based buffer overflow exists in the parse line function within the parser.c file. The issue is locally exploitable and has been publicly disclosed. Recommendations: At the moment,...

PT-2025-35217 · Appneta +1 · Tcpreplay +1

Name of the Vulnerable Software and Affected Versions: appneta tcpreplay version 4.5.1 Description: A security issue has been identified in the calc sleep time function within the send packets.c file. Manipulation of this function can lead to a divide by zero error. Exploitation requires local...

PT-2025-32536 · Unknown +1 · Nasm Netwide Assember +1

Name of the Vulnerable Software and Affected Versions: NASM Netwide Assember version 2.17rc0 Description: A use after free issue exists in the do directive function within the preproc.c file. Exploitation requires local access. An exploit for this issue has been publicly disclosed and may be used...

PT-2025-32407 · Gnu +1 · Gnu Cflow +1

Name of the Vulnerable Software and Affected Versions: GNU cflow versions up to 1.8 Description: A critical vulnerability exists in GNU cflow up to version 1.8. The issue is located in the yylex function within the c.c file of the Lexer component and leads to a buffer overflow. Local access is...

CVE-2024-12786

The CVE-2024-12786 entry concerns X1a0He Adobe Downloader (macOS) up to version 1.3.1. The issue is in the shouldAcceptNewConnection function of the com.x1a0he.macOS.Adobe-Downloader.helper XPC Service, causing improper privilege management. Exploitation requires local access, and the exploit has...