15 matches found
CVE-2025-29936
Improper input validation within the AMD Platform Management Framework PMF could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing privilege escalation resulting in loss of confidentiality...
CVE-2025-29937
The CVE-2025-29937 entry concerns an out-of-bounds read in the AMD Platform Management Framework (PMF) . The vulnerability could allow a local attacker to read an arbitrary memory location, potentially impacting availability and confidentiality. AMD PSIRT metrics indicate CVSSv4.0 base score 5.8 ...
CVE-2025-29937
An out of bounds read within the AMD Platform Management Framework PMF could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or confidentiality...
CVE-2025-58314
CVE-2025-58314 is an invalid-memory-access vulnerability in a Huawei HarmonyOS/EMUI component driver module. The issue stems from a driver module accessing invalid memory, with documented impact to availability and confidentiality. Affected platforms include Huawei HarmonyOS and EMUI. The CVE det...
Zenitel ICX500和Zenitel ICX510 安全漏洞
Zenitel ICX500 and Zenitel ICX510 are both communication and control platforms from Zenitel Norway. A security vulnerability exists in the Zenitel ICX500 and Zenitel ICX510 that originates from a malicious actor that can execute arbitrary commands, potentially compromising device availability,...
CVE-2025-54606
Status verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
CVE-2025-54606
CVE-2025-54606 affects Huawei HarmonyOS lock screen module. The vulnerability is a status verification flaw in the lock screen component that can be exploited locally, with attack complexity low and privileges not clearly required in some sources. Impact is described as affecting confidentiality ...
PT-2025-32013 · Unknown · Lock Screen Module
Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A status verification vulnerability exists in the lock screen module. Successful exploitation of this issue may affect availability and confidentiality. Recommendations: At the moment, there is no...
CVE-2025-24018 YesWiki Vulnerable to Authenticated Stored XSS
YesWiki is a wiki system written in PHP. In versions up to and including 4.4.5, it is possible for an authenticated user with rights to edit/create a page or comment to trigger a stored XSS which will be reflected on any page where the resource is loaded. The vulnerability makes use of the conten...
CVE-2023-52713
Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality...
expat: Integer overflow in function XML_GetBuffer
expat libexpat is susceptible to a software flaw that causes process interruption. When processing a large number of prefixed XML attributes on a single tag can libexpat can terminate unexpectedly due to integer overflow. The highest threat from this vulnerability is to availability,...
Oracle Java SE Remote Vulnerability (CNVD-2017-27296)
Oracle Java SE is the United States Oracle Oracle company's set of standard version of the Java platform for the development and deployment of desktop, server, and embedded devices and real-time environments in the Java application. A security vulnerability exists in the Java SE component of Orac...
Vulnerability of software platforms such as Flash Player and Flash Player for Linux, which allows attackers to compromise the integrity, accessibility, and confidentiality of information.
The vulnerabilities of the Flash Player and Flash Player for Linux are related to errors in the code. Exploiting these vulnerabilities can allow a malicious actor to compromise the integrity, accessibility, and confidentiality of information...
PT-2016-2252 · Adobe +3 · Flash Player +3
Name of the Vulnerable Software and Affected Versions: Adobe Flash Player versions 21.0.0.242 and earlier Description: The issue is related to unspecified errors in the code of Flash Player and Flash Player for Linux, which can be exploited by a remote attacker to impact the integrity,...
Vulnerability of the Java Platform software platform, which allows attackers to compromise the integrity, accessibility, and confidentiality of information.
The vulnerability of the Java Platform-related software platform is associated with errors in the code. Exploiting this vulnerability can allow a malicious actor, operating remotely, to compromise the integrity, accessibility, and confidentiality of information by affecting the libraries...