Lucene search
K

203 matches found

CVE
CVE
added 2025/08/26 12:23 p.m.12 views

CVE-2025-8700

Invoice Ninja on macOS is affected by a local privilege-escalation issue due to the presence of the entitlement com.apple.security.get-task-allow. This allows unprivileged local attackers (e.g., via a malicious app) to attach a debugger, read/modify process memory, and inject code within the app’...

4.8CVSS6.1AI score0.00127EPSS
Exploits0References2
CVE
CVE
added 2025/08/26 12:23 p.m.25 views

CVE-2025-8597

CVE-2025-8597 affects MacVim on macOS due to the presence of the entitlement com.apple.security.get-task-allow . This allows local unprivileged attackers (e.g., via a malicious application) to attach a debugger, read/modify the process memory, and inject code into the app’s context, even when sig...

4.8CVSS6.1AI score0.00127EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/08/26 12:23 p.m.10 views

CVE-2025-8597 Privilege Escalation via get-task-allow entitlement in MacVim.app

MacVim's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access e.g. via a malicious application to attach a debugger, read or modify the process memory, inject code in the application's context despite...

4.8CVSS0.00127EPSS
Exploits0References2
NVD
NVD
added 2025/08/12 9:15 p.m.7 views

CVE-2025-54189

Substance3D - Painter versions 11.0.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

5.5CVSS0.00189EPSS
Exploits0References1
CVE
CVE
added 2025/08/12 8:36 p.m.18 views

CVE-2025-54186

Substance3D Modeler, up to version 1.22.0 and earlier, is affected by an out-of-bounds read vulnerability that could disclose sensitive memory. Exploitation requires user interaction (the victim must open a malicious file). Affected product/versions are confirmed in multiple sources; remediation ...

5.5CVSS6.4AI score0.00189EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.5 views

Adobe FrameMaker 2020 < 16.0.9 (2020.0.9) / Adobe FrameMaker 2022 < 17.0.7 (2022.0.7) Multiple Vulnerabilities (APSB25-83)

The version of Adobe FrameMaker installed on the remote Windows host is prior to Adobe FrameMaker 2020 16.0.9 / Adobe FrameMaker 2022 17.0.7. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-83 advisory. - Use After Free CWE-416 potentially leading to Arbitrary...

7.8CVSS6.2AI score0.00215EPSS
Exploits0References6
GithubExploit
GithubExploit
added 2025/08/11 3:47 p.m.300 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

CVE-2025-5777 – Citrix NetScaler Memory Leak Updated PoC Th...

9.3CVSS8.1AI score0.99897EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.3 views

EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2025-1831)

According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap- based buffer under-read. To exploit thi...

7.5CVSS6.7AI score0.00527EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2025/07/08 12:49 p.m.3 views

CVE-2025-27055 Buffer Over-read in Camera

Memory corruption during the image encoding process...

7.8CVSS7.4AI score0.00087EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/06/24 11:25 p.m.2 views

SUSE CVE-2025-5318

A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftphandle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in...

5.4CVSS6.5AI score0.02394EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 4: aom (TSSA-2025:0148)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0148 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

7.5CVSS7.3AI score0.00617EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.5 views

EulerOS 2.0 SP11 : libsoup (EulerOS-SA-2025-1665)

According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in libsoup. A vulnerability in snifffeedorhtml and skipinsignificantspace functions may lead to a heap buffer...

9CVSS6.9AI score0.00832EPSS
Exploits1References11
RedhatCVE
RedhatCVE
added 2025/05/22 11:37 p.m.5 views

CVE-2022-40136

An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory...

4.4CVSS5.4AI score0.00196EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:36 p.m.3 views

CVE-2022-20563

In TBD of ufdtconvert, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...

6.7CVSS6.6AI score0.00173EPSS
Exploits0References1
OSV
OSV
added 2025/05/07 9:15 a.m.7 views

CVE-2025-20976

Out-of-bounds read in applying binary of text content in Samsung Notes prior to version 4.4.29.23 allows attackers to read out-of-bounds memory...

7.5CVSS5.8AI score0.00235EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/06 8:32 a.m.11 views

CVE-2025-21475 Buffer Over-read in Display

Memory corruption while processing escape code, when DisplayId is passed with large unsigned value...

7.8CVSS7.9AI score0.00089EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/07 10:16 a.m.16 views

CVE-2025-21438 Out-of-bounds Read in Windows WLAN Host

Memory corruption while IOCTL call is invoked from user-space to read board data...

7.8CVSS0.00093EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/07 2:35 a.m.24 views

CVE-2025-27534 arkcompiler_ets_runtime has an out-of-bounds read vulnerability

in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory...

3.3CVSS0.00128EPSS
Exploits0References1
OSV
OSV
added 2025/04/01 1:15 p.m.2 views

CVE-2025-3031

An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This vulnerability affects Firefox 137 and Thunderbird 137...

6.5CVSS6.8AI score0.00282EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/03/06 5:4 a.m.8 views

CVE-2025-20925

Out-of-bounds read in applying binary of text data in Samsung Notes prior to version 4.4.26.71 allows local attackers to potentially read memory...

5.5CVSS0.00139EPSS
Exploits0References1
Rows per page
Query Builder