120950 matches found
Arbitrary Code Injection
Overview @happy-dom/server-renderer is an Use Happy DOM for server-side rendering SSR or as a static site generator SSG. Affected versions of this package are vulnerable to Arbitrary Code Injection due to default evaluation of code from strings. An attacker can execute arbitrary code on the host...
Arbitrary Code Injection
Overview happy-dom is a Happy DOM is a JavaScript implementation of a web browser without its graphical user interface. It includes many web standards from WHATWG DOM and HTML. Affected versions of this package are vulnerable to Arbitrary Code Injection due to default evaluation of code from...
[SECURITY] [DSA 6023-1] tiff security update
------------------------------------------------------------------------- Debian Security Advisory DSA-6023-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff October 10, 2025 https://www.debian.org/security/faq -...
Deserialization Of Untrusted Data
org.apache.iotdb:iotdb-confignode is vulnerable to Deserialization Of Untrusted Data. The vulnerability is due to insufficient validation of externally supplied serialized data, which allows an attacker to craft malicious serialized objects that can be deserialized to execute arbitrary code or...
CVE-2025-61864
A use after free vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61862
An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61863
An out-of-bounds read vulnerability exists in VS6ComFile!CSaveData::deletemem of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61859
An out-of-bounds write vulnerability exists in VS6ComFile!CItemDraw::ismotiontween of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61857
An out-of-bounds write vulnerability exists in VS6ComFile!CItemExChange::WinFontDynStrCheck of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61861
An out-of-bounds read vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61860
An out-of-bounds read vulnerability exists in VS6MemInIF!settemptypedefault of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61864
A use after free vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61864
CVE-2025-61864 is a use-after-free in VS6ComFile!load_link_inf of FUJI Electric V-SFT, affecting version 6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, ABEND, and arbitrary code execution. Affected product: V-SFT (FUJI Electric); vulnerable componen...
CVE-2025-61863
CVE-2025-61863 describes an out-of-bounds read vulnerability in the VS6ComFile component of Fuji Electric V-SFT, specifically in CSaveData::delete_mem. Affected versions are V-SFT up to 6.2.7.0 and earlier. The issue can cause information disclosure, abnormal termination (ABEND), and arbitrary co...
CVE-2025-61862
An out-of-bounds read vulnerability exists in VS6ComFile!getovlpelementsize of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
EUVD-2025-33718
An out-of-bounds read vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61861
An out-of-bounds read vulnerability exists in VS6ComFile!loadlinkinf of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61860
An out-of-bounds read vulnerability exists in VS6MemInIF!settemptypedefault of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
EUVD-2025-33696
An out-of-bounds write vulnerability exists in VS6ComFile!CItemExChange::WinFontDynStrCheck of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...
CVE-2025-61857
An out-of-bounds write vulnerability exists in VS6ComFile!CItemExChange::WinFontDynStrCheck of V-SFT v6.2.7.0 and earlier. Opening specially crafted V-SFT files may lead to information disclosure, affected system's abnormal end ABEND, and arbitrary code execution...