630 matches found
CVE-2025-54638
Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service...
CVE-2025-54638
Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service...
CVE-2025-54645
CVE-2025-54645 concerns Huawei HarmonyOS’ location service module, where an out-of-bounds array access occurs due to insufficient data verification. Affected component is the location service module; impact is potential unavailability. CVSS indicates local access with low attack complexity and no...
CVE-2025-54638
Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service...
CVE-2025-54638
CVE-2025-54638 involves an inconsistent read/write serialization issue in the ad module. Connected sources indicate potential impact on availability of the ad service; CVSS details point to a local attack with low privileges required and no user interaction. No concrete fix/version is stated in t...
PT-2025-32080 · Unknown · Aod Module
Name of the Vulnerable Software and Affected Versions: ad module affected versions not specified Description: An inconsistent read/write serialization issue exists in the ad module. Successful exploitation of this issue may affect the availability of the ad service. Recommendations: At the moment...
The vulnerability of the formSetWAN_Wizard51() function (/goform/formSetWAN_Wizard51) in the D-Link DIR-619L router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the formSetWANWizard51 function /goform/formSetWANWizard51 in the D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...
NewStart CGSL MAIN 7.02 : avahi Multiple Vulnerabilities (NS-SA-2025-0174)
The remote NewStart CGSL host, running version MAIN 7.02, has avahi packages installed that are affected by multiple vulnerabilities: - A vulnerability was found in Avahi. A reachable assertion exists in the avahialternativehostname function. CVE-2023-38473 - A flaw was found in avahi in versions...
Denial Of Service (DoS)
github.com/hashicorp/vault is vulnerable to Denial Of Service DoS. The vulnerability is due to uncontrolled cancellation during rekey and recovery key operations by a Vault operator, which allows an attacker to disrupt service availability...
The vulnerability of the iocg_pay_debt() function in the block/blk-iocost.c module, which supports the block-level kernel in the Linux operating system. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iocgpaydebt function in the block/blk-iocost.c module, which supports the block-level kernel in the Linux operating system, is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity...
TencentOS Server 4: avahi (TSSA-2025:0018)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0018 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip() function in the Tenda AC9 router’s microprogramming system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the HTTP POST Request Handler component of the fromadvsetlanip function in the Tenda AC9 router’s microprogramming system is related to buffer overflow in the stack during the processing of the lanMask parameter. Exploiting this vulnerability allows an attacker to compromise...
The vulnerability of the built-in boa server (/boafrm/formPortFw) of TOTOLINK EX1200T router microprogramming software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the built-in server boa /boafrm/formPortFw of TOTOLINK EX1200T router microprogramming software is related to the issue of writing operations outside the buffer in memory when processing the servicetype parameter. Exploiting this vulnerability allows a remote attacker to...
PT-2025-24027 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: The issue concerns a vulnerability in the auto startup service. Successful exploitation of this vulnerability may affect availability. Recommendations: At the moment, there is no information...
The vulnerability of the web_snmp_v3host_add_post() function in PLANET Technology’s microcontroller software allows a perpetrator to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the websnmpv3hostaddpost function in PLANET Technology’s microcontroller software stems from the issue of the operation exceeding the buffer boundaries in memory when processing the hostip parameter. Exploiting this vulnerability allows an attacker to compromise the...
CVE-2024-2965
A Denial-of-Service DoS vulnerability exists in the SitemapLoader class of the langchain-ai/langchain repository, affecting all versions. The parsesitemap method, responsible for parsing sitemaps and extracting URLs, lacks a mechanism to prevent infinite recursion when a sitemap URL refers to the...
CVE-2023-52367
Vulnerability of improper access control in the media library module.Successful exploitation of this vulnerability may affect service availability and integrity...
CVE-2023-3455
Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrity...
CVE-2022-44547
The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability...
May 23, 2025—KB5061906 (OS Build 20348.3695) Out-of-band
May 23, 2025—KB5061906 OS Build 20348.3695 Out-of-band For information about Windows update terminology, see types of Windows updates and the monthly quality update types. To find an overview of Windows Server 2022, see its update history page.Be sure to follow @WindowsUpdate to find out when new...