6 matches found
CVE-2025-24519
Buffer overflow for some IntelR QAT Windows software before version 2.6.0. within Ring 3: User Applications may allow an escalation of privilege. System software adversary with an authenticated user combined with a low complexity attack may enable data manipulation. This result may potentially...
CVE-2025-32088
Intel QAT Windows software before version 2.6.0 contains an improper condition check in Ring 3 user-space components, which may allow a locally authenticated low-complexity attacker to cause a denial of service (low availability impact). Affected product: Intel® QuickAssist Technology Windows sof...
CVE-2025-32636 WordPress Local Magic Plugin <= 2.6.0 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in matthewrubin Local Magic allows SQL Injection. This issue affects Local Magic: from n/a through 2.6.0...
CVE-2024-1603
paddlepaddle/paddle 2.6.0 allows arbitrary file read via paddle.vision.ops.readfile...
PYSEC-2021-274
TensorFlow is an end-to-end open source platform for machine learning. In affected versions the implementation for tf.rawops.BoostedTreesCreateEnsemble can result in a use after free error if an attacker supplies specially crafted arguments. The implementation uses a reference counted resource an...
PYSEC-2021-289
TensorFlow is an end-to-end open source platform for machine learning. In affected versions an attacker can cause undefined behavior via binding a reference to null pointer in tf.rawops.UnicodeEncode. The implementation reads the first dimension of the inputsplits tensor before validating that th...