427 matches found
EUVD-2023-55483
Malicious code in bioql PyPI...
EUVD-2024-22278
Malicious code in bioql PyPI...
EUVD-2023-45278
Malicious code in bioql PyPI...
EUVD-2023-34787
Malicious code in bioql PyPI...
EUVD-2024-31604
Malicious code in bioql PyPI...
Amazon Linux 2023 : cairo, cairo-devel, cairo-gobject (ALAS2023-2025-1172)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2025-1172 advisory. An issue was discovered in freedesktop poppler v25.04.0. The heap memory containing PDF stream objects is not cleared upon program exit, allowing attackers to obtain sensitive PDF content via a memory...
Medium: cairo
Issue Overview: An issue was discovered in freedesktop poppler v25.04.0. The heap memory containing PDF stream objects is not cleared upon program exit, allowing attackers to obtain sensitive PDF content via a memory dump. CVE-2025-50422 Affected Packages: cairo Note: This advisory is applicable ...
📄 GeoVision ASManager Windows Application 6.1.2.0 Credential Disclosure
GeoVision ASManager Windows Application version 6.1.2.0 suffers from a credential disclosure vulnerability. Exploit Title: GeoVision ASManager Windows Application 6.1.2.0 - Credentials Disclosure Date: 19-MAR-2025 Exploit Author: Giorgi Dograshvili DRAGOWN Vendor Homepage:...
Linux Distros Unpatched Vulnerability : CVE-2025-50422
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cairo through 1.18.4, as used in Poppler through 25.08.0, has an unscaled-face == NULL assertion failure for cairoftunscaledfontfini in cairo-ft-font.c...
Linux Distros Unpatched Vulnerability : CVE-2023-32784
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In KeePass 2.x before 2.54, it is possible to recover the cleartext master password from a memory dump, even when a workspace is locked or no longer running. Th...
Rockwell Automation ControlLogix Ethernet Modules
RISK EVALUATION Successful exploitation of this vulnerability could allow remote attackers to perform memory dumps, modify memory, and control execution flow. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability, such...
PT-2025-33275
Name of the Vulnerable Software and Affected Versions: Rockwell Automation ControlLogix Ethernet Modules versions prior to 12.001 Description: A security issue exists in Rockwell Automation ControlLogix Ethernet Modules due to the web-based debugger agent. Connecting to the WDB agent using a...
CVE-2025-50422
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled-face == NULL" assertion failure for cairoftunscaledfontfini in cairo-ft-font.c...
PT-2025-31829
Name of the Vulnerable Software and Affected Versions poppler version 25.04.0 Description The heap memory containing PDF stream objects is not cleared upon program exit, potentially allowing attackers to obtain sensitive PDF content via a memory dump. Recommendations At the moment, there is no...
CVE-2025-50422
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled-face == NULL" assertion failure for cairoftunscaledfontfini in cairo-ft-font.c...
CVE-2025-50422
Cairo through 1.18.4, as used in Poppler through 25.08.0, has an "unscaled-face == NULL" assertion failure for cairoftunscaledfontfini in cairo-ft-font.c...
Azure Linux 3.0 Security Update: kernel (CVE-2025-38152)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38152 advisory. - In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Clear tablesz when...
CVE-2024-24915
Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them...
CVE-2024-24915
Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them...
CVE-2024-24915 SmartConsole Sensitive Credential Exposure via Memory Dump
Credentials are not cleared from memory after being used. A user with Administrator permissions can execute memory dump for SmartConsole process and fetch them...