203 matches found
CVE-2025-8700
Invoice Ninja on macOS is affected by a local privilege-escalation issue due to the presence of the entitlement com.apple.security.get-task-allow. This allows unprivileged local attackers (e.g., via a malicious app) to attach a debugger, read/modify process memory, and inject code within the app’...
CVE-2025-8597
CVE-2025-8597 affects MacVim on macOS due to the presence of the entitlement com.apple.security.get-task-allow . This allows local unprivileged attackers (e.g., via a malicious application) to attach a debugger, read/modify the process memory, and inject code into the app’s context, even when sig...
CVE-2025-8597 Privilege Escalation via get-task-allow entitlement in MacVim.app
MacVim's configuration on macOS, specifically the presence of entitlement "com.apple.security.get-task-allow", allows local attackers with unprivileged access e.g. via a malicious application to attach a debugger, read or modify the process memory, inject code in the application's context despite...
CVE-2025-54189
Substance3D - Painter versions 11.0.2 and earlier are affected by an out-of-bounds read vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-54186
Substance3D Modeler, up to version 1.22.0 and earlier, is affected by an out-of-bounds read vulnerability that could disclose sensitive memory. Exploitation requires user interaction (the victim must open a malicious file). Affected product/versions are confirmed in multiple sources; remediation ...
Adobe FrameMaker 2020 < 16.0.9 (2020.0.9) / Adobe FrameMaker 2022 < 17.0.7 (2022.0.7) Multiple Vulnerabilities (APSB25-83)
The version of Adobe FrameMaker installed on the remote Windows host is prior to Adobe FrameMaker 2020 16.0.9 / Adobe FrameMaker 2022 17.0.7. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-83 advisory. - Use After Free CWE-416 potentially leading to Arbitrary...
Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller
CVE-2025-5777 – Citrix NetScaler Memory Leak Updated PoC Th...
EulerOS 2.0 SP12 : libxml2 (EulerOS-SA-2025-1831)
According to the versions of the libxml2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap- based buffer under-read. To exploit thi...
CVE-2025-27055 Buffer Over-read in Camera
Memory corruption during the image encoding process...
SUSE CVE-2025-5318
A flaw was found in the libssh library in versions less than 0.11.2. An out-of-bounds read can be triggered in the sftphandle function due to an incorrect comparison check that permits the function to access memory beyond the valid handle list and to return an invalid pointer, which is used in...
TencentOS Server 4: aom (TSSA-2025:0148)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0148 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
EulerOS 2.0 SP11 : libsoup (EulerOS-SA-2025-1665)
According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in libsoup. A vulnerability in snifffeedorhtml and skipinsignificantspace functions may lead to a heap buffer...
CVE-2022-40136
An information leak vulnerability in SMI Handler used to configure platform settings over WMI in some Lenovo models may allow an attacker with local access and elevated privileges to read SMM memory...
CVE-2022-20563
In TBD of ufdtconvert, there is a possible out of bounds read due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID:...
CVE-2025-20976
Out-of-bounds read in applying binary of text content in Samsung Notes prior to version 4.4.29.23 allows attackers to read out-of-bounds memory...
CVE-2025-21475 Buffer Over-read in Display
Memory corruption while processing escape code, when DisplayId is passed with large unsigned value...
CVE-2025-21438 Out-of-bounds Read in Windows WLAN Host
Memory corruption while IOCTL call is invoked from user-space to read board data...
CVE-2025-27534 arkcompiler_ets_runtime has an out-of-bounds read vulnerability
in OpenHarmony v5.0.2 and prior versions allow a local attacker case DOS through missing release of memory...
CVE-2025-3031
An attacker could read 32 bits of values spilled onto the stack in a JIT compiled function. This vulnerability affects Firefox 137 and Thunderbird 137...
CVE-2025-20925
Out-of-bounds read in applying binary of text data in Samsung Notes prior to version 4.4.26.71 allows local attackers to potentially read memory...