CVE-2025-54245

Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54244 Substance3D - Viewer | Heap-based Buffer Overflow (CWE-122)

Substance3D - Viewer versions 0.25.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54244

The CVE-2025-54244 issue affects Substance3D Viewer, specifically versions 0.25.1 and earlier. A heap-based buffer overflow in the viewer could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (the user must open a malicious file). Public s...

CVE-2025-54243

CVE-2025-54243 affects Adobe Substance3D Viewer up to version 0.25.1. It is an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the current user’s context. Exploitation requires user interaction: the victim must open a crafted malicious file. Several sources corroborate ...

CVE-2025-54243 Substance3D - Viewer | Out-of-bounds Write (CWE-787)

Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-54245 Substance3D - Viewer | Out-of-bounds Write (CWE-787)

Substance3D - Viewer versions 0.25.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

UBUNTU-CVE-2025-2581

A vulnerability has been found in xmedcon 0.25.0 and classified as problematic. Affected by this vulnerability is the function malloc of the component DICOM File Handler. The manipulation leads to integer underflow. The attack can be launched remotely. Upgrading to version 0.25.1 is able to addre...

CVE-2024-32231

Stash up to v0.25.1 was discovered to contain a SQL injection vulnerability via the sort parameter...

PT-2024-24467 · Stash · Stash

Name of the Vulnerable Software and Affected Versions: Stash versions up to 0.25.1 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the sort parameter. Recommendations: For versions up to 0.25.1, as a temporary workaround, consider...

Stash 安全漏洞

Stash is an open source self-hosted web application written in Go by stashapp. A security vulnerability exists in Stash version v0.25.1, which stems from an SQL injection vulnerability in the sort parameter...

CVE-2023-4535 affecting package opensc for versions less than 0.25.1-3

CVE-2023-4535 affecting package opensc for versions less than 0.25.1-3. An upgraded version of the package is available that resolves this issue...

AZL-35074 CVE-2023-40660 affecting package opensc for versions less than 0.25.1-3

A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by one process, it can perform cryptographic operations in other processes when an empty zero-length pin is passed. This issue poses a security risk, particularly for OS logon/screen unlock a...

PT-2021-18262 · Evm · Evm

Name of the Vulnerable Software and Affected Versions: evm versions prior to 0.21.1 evm versions prior to 0.23.1 evm versions prior to 0.24.1 evm versions prior to 0.25.1 evm versions prior to 0.26.1 Description: The issue is related to the execution of specific EVM opcodes that use evm...