CVE-2025-66647 RIOT OS has buffer overflow in gnrc_ipv6_ext_frag_reass

RIOT is an open-source microcontroller operating system, designed to match the requirements of Internet of Things IoT devices and other embedded devices. A vulnerability was discovered in the IPv6 fragmentation reassembly implementation of RIOT OS v2025.07. When copying the contents of the first...

CVE-2025-8872

On affected platforms running Arista EOS with OSPFv3 configured, a specially crafted packet can cause the OSFPv3 process to have high CPU utilization which may result in the OSFPv3 process being restarted. This may cause disruption in the OSFPv3 routes on the switch. This issue was discovered...

CVE-2025-66646

CVE-2025-66646 affects RIOT OS, specifically in the IPv6 fragmentation reassembly (gnrc_ipv6_ext_frag). When a fragmented IPv6 packet with fragment offset 0 and an empty payload is processed, the payload pointer is set to NULL but the code still copies into the reassembly buffer, causing a NULL p...

EUVD-2025-203889

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's ar...

Security Bulletin: IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues

Summary IBM Watson Speech Services Cartridge is vulnerable to multiple Base OS issues. We have updated the base image used by our Speech Services and the following vulnerabilities have been addressed. Please read the details for remediation below. Vulnerability Details CVEID:CVE-2021-3572...

GHSA-CFPF-HRX2-8RV6 vulnerabilities

Vulnerabilities for packages: coredns, argo-rollouts, amazon-cloudwatch-agent, tempo, keda, argo-cd, aws-otel-collector, kargo, k3s, opentelemetry-collector, grafana-alloy, k8sgpt, nats, jaeger, kserve, datadog-agent, argo-workflows, splunk-otel-collector, k8sgateway, vale, kubeflow-pipelines,...

CVE-2025-14096

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's ar...

CVE-2025-14096 Credential Disclosure vulnerability in Radiometer Products

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's ar...

CVE-2025-14096 Credential Disclosure vulnerability in Radiometer Products

A vulnerability exists in multiple Radiometer products that allow an attacker with physical access to the analyzer possibility to extract credential information. The vulnerability is due to a weakness in the design and insufficient credential protection in operating system. Other related CVE's ar...

CVE-2025-14096

CVE-2025-14096 describes a vulnerability in multiple Radiometer products where an attacker with physical access to the analyzer can potentially extract credential information due to a weakness in the operating system’s credential protection. The issue is rooted in design weaknesses within the OS ...

CVE-2025-59385

An authentication bypass by spoofing vulnerability has been reported to affect several QNAP operating system versions. The remote attackers can then exploit the vulnerability to access resources which are not otherwise accessible without proper authentication. We have already fixed the...

Adobe Photoshop Elements Installed (macOS)

Binary data adobephotoshopelementsmacosinstalled.nbin...

Radiometer Products 安全漏洞

Radiometer Products is a line of medical diagnostic instruments from the Danish company Radiometer. A security vulnerability exists in Radiometer Products that stems from inadequate operating system design and credential protection, which could allow a physical visitor to extract credential...

MSI Motherboards 安全漏洞

MSI Motherboards are a line of motherboards from Taiwan, China-based Micro-Star MSI. A security vulnerability exists in MSI Motherboards that stems from not properly enabling the IOMMU, which could allow an unauthenticated physical attacker to read or write arbitrary physical memory before the...

RIOT 代码问题漏洞

RIOT is RIOT's open source set of operating systems for applications in the Internet of Things IoT space. A code issue vulnerability exists in RIOT version v2025.07, which stems from a null pointer dereference in the IPv6 fragmentation reorganization implementation, which could lead to an operati...

Apple Safari和Apple macOS 安全漏洞

Apple Safari and Apple macOS are both products of Apple Inc. Apple Safari is a web browser that is the default browser shipped with the Mac OS X and iOS operating systems. apple macOS is a dedicated operating system developed for Mac computers. A security vulnerability exists in Apple macOS Tahoe...

PT-2025-51894

Name of the Vulnerable Software and Affected Versions RIOT versions prior to 2025.10 Description RIOT OS, designed for IoT and embedded devices, contains a flaw in its IPv6 fragmentation reassembly process. Specifically, the implementation lacks a size check when copying the first fragment offset...

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS prior to version 26.2 and Apple iPadOS prior to version 26.2, which stems fro...

Apple macOS 安全漏洞

Apple macOS is a suite of specialized operating systems developed for Mac computers by Apple Inc. in the United States. A security vulnerability exists in Apple macOS Tahoe versions prior to 26.2, which stems from an insufficient check resulting in a logic issue that could cause an application to...

Apple 安全漏洞

Apple iOS and others are products of Apple Inc.Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets.Apple iOS is an operating system developed for mobile...