PT-2025-12829

Name of the Vulnerable Software and Affected Versions NASA cFS Core Flight System Aquila affected versions not specified Description The Memory Management Module of NASA cFS Core Flight System Aquila has insecure permissions, which can be exploited to gain remote code execution RCE on the platfor...

CVE-2025-25372

CVE-2025-25372 affects NASA cFS (Core Flight System) Aquila. A malicious telecommand can trigger a segmentation fault in the Memory Management Module, potentially causing memory corruption and availability impact. The NVD entry lists CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H (base 7.5, HIGH)....

CVE-2025-25373

The CVE-2025-25373 entry concerns the Memory Management Module of NASA cFS (Core Flight System) Aquila, which has insecure permissions that can be exploited to achieve remote code execution on the platform. The vulnerability impacts the Aquila component and its memory management functions as desc...

CVE-2025-25373

The Memory Management Module of NASA cFS Core Flight System Aquila has insecure permissions, which can be exploited to gain an RCE on the platform...

CVE-2025-25372

NASA cFS Core Flight System Aquila is vulnerable to segmentation fault via sending a malicious telecommand to the Memory Management Module...

AquilaCMS 安全漏洞

AquilaCMS is a complete multipurpose open source CMS from the AquilaCMS team. A security vulnerability exists in AquilaCMS that stems from insecure Memory Management Module permissions that could lead to remote code execution...

GHSA-4M5H-5V4Q-4XGQ aizuda snail-job Vulnerable to Deserialization via `nodeExpression` Argument

A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...

CVE-2025-2622 aizuda snail-job Workflow-Task Management Module check-node-expression getRuntime deserialization

A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...

CVE-2025-2622 aizuda snail-job Workflow-Task Management Module check-node-expression getRuntime deserialization

A vulnerability was found in aizuda snail-job 1.4.0. It has been classified as critical. Affected is the function getRuntime of the file /snail-job/workflow/check-node-expression of the component Workflow-Task Management Module. The manipulation of the argument nodeExpression leads to...

Huawei HarmonyOS process management module improper access rights vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. An improper access rights vulnerability exists in the Huawei HarmonyOS process management module, which can be exploited by an attacker to compromise...

Linux Distros Unpatched Vulnerability : CVE-2024-49969

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Fix index out of bounds in DCN30 color transformation This commit addresses a potential index out of bounds issue in the...

CVE-2025-27521

Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-27521

Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-27521

Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-27521

Huawei HarmonyOS has a vulnerability in the process management module involving improper access permissions that can affect confidentiality. The CVE-2025-27521 entry is supported by a PoC exploit for Huawei HarmonyOS available at GitHub (CVE-2025-27521_PoC), which demonstrates local exploitation ...

CVE-2022-24734

MyBB is a free and open source forum software. In affected versions the Admin CP's Settings management module does not validate setting types correctly on insertion and update, making it possible to add settings of supported type php with PHP code, executed on on Change Settings pages. This resul...

The vulnerability in the implementation of the Bluetooth Mesh technology in the net/bluetooth/mgmt.c module of Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information, or cause service failures.

The vulnerability of the runtimers function in the net/bluetooth/mgmt.c module of Linux operating systems is related to the use of memory after it is freed during the processing of the struct hcidev object. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

CVE-2024-56447

CVE-2024-56447 describes an improper permission control vulnerability in Huawei HarmonyOS' window management module. The flaw can affect service confidentiality, with CVSS data indicating impact high and local/remote considerations depending on the source. Concrete details in the connected docume...

CVE-2024-53208

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in setpoweredsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in setpoweredsync+0x3a/0xc0...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a reuse-after-release read in the setpoweredsync function in the Bluetooth:MGMT module...