EUVD-2026-15421

Nanoleaf Lines 12.3.2 does not authenticate firmware file uploads. A remote, unauthenticated attacker can upload firmware files on the device and consume storage resources. Fixed in 12.3.6...

Acute Systems TransMac 缓冲区错误漏洞

Acute Systems TransMac is a tool software developed by Acute Systems that allows access and management of Mac disks and file systems on Windows systems. Version 12.3 of Acute Systems TransMac contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the volume name...

Tendenci security vulnerabilities

Tendenci is a membership management software developed by Tendenci Inc. in the United States, primarily used by non-profit organizations and associations. This software supports functions such as member management, content management, event management, and online donation management. Version 12.3...

UBUNTU-CVE-2026-22693

HarfBuzz is a text shaping engine. Prior to version 12.3.0, a null pointer dereference vulnerability exists in the SubtableUnicodesCache::create function located in src/hb-ot-cmap-table.hh. The function fails to check if hbmalloc returns NULL before using placement new to construct an object at t...

Libav 资源管理错误漏洞

Libav is a cross-platform audio and video recording and conversion solution from the Libav team that includes a libavcodec encoder. A resource management error vulnerability exists in libav 12.3 and earlier versions, which stems from a double release of function main in file /avtools/avconv.c in...

VMware Tools Security Vulnerability

VMware Tools is an enhancement tool that comes with VMware's VMWare virtual machines. It is a driver provided by VMware to enhance the performance of virtual graphics cards and hard disks, as well as to synchronize the clocks of the virtual machine with the host computer. A security vulnerability...

CVE-2023-29305

Adobe Connect versions 12.3 and earlier are affected by a reflected Cross-Site Scripting XSS vulnerability. If an attacker is able to convince a victim to visit a URL referencing a vulnerable page, malicious JavaScript content may be executed within the context of the victim's browser...

Vulnerabilities fixed in Zoho ManageEngine Password Manager pro

Zoho has fixed vulnerabilities in ManageEngine Password Manager pro. An authenticated malicious person could exploit them to bypass a security measure, manipulate data manipulate data for which the malicious party is not authorized, and gain access to sensitive data. No CVE ID has been disclosed...

CVE-2022-33752

CA Automic Automation 12.2 and 12.3 contain an insufficient input validation vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary code...

CVE-2022-33754

CA Automic Automation 12.2 and 12.3 contain an insufficient input validation vulnerability in the Automic agent that could allow a remote attacker to potentially execute arbitrary code...

PT-2022-21866 · Ca · Ca Automic Automation

Name of the Vulnerable Software and Affected Versions: CA Automic Automation versions 12.2 through 12.3 Description: The issue is related to insecure input handling in the Automic Agent, which could allow a remote attacker to potentially enumerate users. Recommendations: For CA Automic Automation...

Broadcom CA Automic Automation 授权问题漏洞

Broadcom CA Automic Automation is an automation product from Broadcom, Inc. It provides a service orchestration and automation platform to automate complex applications, platforms, and technology environments. A security vulnerability exists in Broadcom CA Automic Automation versions 12.2 and 12....

Broadcom CA Automic Automation 安全特征问题漏洞

Broadcom CA Automic Automation is an automation product from Broadcom, Inc. It provides a service orchestration and automation platform to automate complex applications, platforms, and technology environments. A security vulnerability exists in Broadcom CA Automic Automation versions 12.2 and 12....

Apple macOS Monterey 后置链接漏洞

Apple macOS Monterey is the 18th major release of Apple's macOS for the Macintosh desktop operating system. A security vulnerability exists in Apple macOS Monterey version 12.3. An attacker has exploited the vulnerability to modify the contents of system files...

PT-2021-10244 · Libav · Libav

Name of the Vulnerable Software and Affected Versions: Libav version 12.3 Description: The issue is a heap-based buffer over-read in the vc1 decode p mb intfi function in vc1 block.c, which can be exploited by an attacker to cause a denial-of-service via a crafted file. Recommendations: For Libav...

CVE-2021-1098

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager vGPU plugin, where it doesn't release some resources during driver unload requests from guests. This flaw allows a malicious guest to perform operations by reusing those resources, which may lead to information disclosure,...

SolarWinds N-Central Authorization Issues Vulnerability

SolarWinds N-Central is an IT device management platform from SolarWinds Singapore. The platform provides proactive monitoring of everything on a customer's network, not just servers and workstations, and rapid troubleshooting using features such as MFA, antivirus, integrated endpoint detection a...

SolarWinds N-Central Security Vulnerability

SolarWinds N-Central is an IT device management platform from SolarWinds Singapore. The platform provides proactive monitoring of everything on a customer's network, not just servers and workstations, and rapid troubleshooting using features such as MFA, antivirus, integrated endpoint detection a...

CVE-2020-14064

IceWarp Email Server 12.3.0.1 has Incorrect Access Control for user accounts...

Libav Buffer Overflow Vulnerability (CNVD-2019-35776)

Libav is Libav team's set of cross-platform audio and video can be recorded, converted solution, which includes a libavcodec encoder. A buffer overflow vulnerability exists in the subtitle decoder in Libav version 12.3, which can be exploited by an attacker to cause, among other things, a buffer...