PT-2025-32077 · Huawei +1 · Harmonyos

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The issue involves returning released pointers in the distributed notification service. Successful exploitation could affect availability. Recommendations: At...

CVE-2025-36594

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Authentication Bypass by Spoofing vulnerability. An...

CVE-2025-36594

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Authentication Bypass by Spoofing vulnerability. An...

CVE-2025-36594

Dell PowerProtect Data Domain with Data Domain Operating System DD OS of Feature Release versions 7.7.1.0 through 8.3.0.15, LTS2024 release Versions 7.13.1.0 through 7.13.1.25, LTS 2023 release versions 7.10.1.0 through 7.10.1.60, contain an Authentication Bypass by Spoofing vulnerability. An...

The vulnerability of the ELMED MIS platform, due to deficiencies in access control mechanisms, allows unauthorized access by attackers, thereby compromising the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ELMED MIS platform is related to deficiencies in access control mechanisms. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information and compromise its confidentiality, integrity, and accessibility...

The vulnerability of the formSetWAN_Wizard51() function (/goform/formSetWAN_Wizard51) in the D-Link DIR-619L router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetWANWizard51 function /goform/formSetWANWizard51 in the D-Link DIR-619L router microprogramming software is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to compromise the...

ROS-20250804-04

Vulnerability of the vsockremovesock function of the net/vmwvsock/afvsock.c module of the Linux kernel network functions implementation of Linux operating system is related to reuse of previously freed memory. Exploitation exploitation of the vulnerability could allow an intruder to affect the...

OPENSUSE-SU-2025:15406-1 kubeshark-cli-52.8.0-1.1 on GA media

These are all security issues fixed in the kubeshark-cli-52.8.0-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15409-1 python313-3.13.5-4.1 on GA media

These are all security issues fixed in the python313-3.13.5-4.1 package on the GA media of openSUSE Tumbleweed...

CVE-2025-8510 Portabilis i-Educar educar_matricula_lst.php Gerar cross site scripting

A vulnerability classified as problematic has been found in Portabilis i-Educar 2.10. This affects the function Gerar of the file ieducar/intranet/educarmatriculalst.php. The manipulation of the argument refcodaluno leads to cross site scripting. It is possible to initiate the attack remotely. Th...

OPENSUSE-SU-2025:15401-1 liblua5_5-5-5.5.0~beta1-1.1 on GA media

These are all security issues fixed in the liblua55-5-5.5.0beta1-1.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15400-1 grub2-2.12-56.1 on GA media

These are all security issues fixed in the grub2-2.12-56.1 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2025:15404-1 python39-3.9.23-4.1 on GA media

These are all security issues fixed in the python39-3.9.23-4.1 package on the GA media of openSUSE Tumbleweed...

OESA-2025-1933 firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. %if 0 %global mozdebugprefix /lib/debug %global mozdebugdir /lib/debug/ %global unamem %uname -m %global symbolsfilename -.en-US.-%uname.crashreporter-symbols.zip %global symbolsfilepath...

OESA-2025-1931 libxslt security update

Libxslt is the XSLT C library developed for the GNOME project Security Fixes: A vulnerability classified as problematic was found in libxslt the affected version is unknown.The manipulation of the argument psvi with an unknown input leads to a unknown weakness. The CWE definition for the...

The vulnerability of the centralized system for managing user identities in FreeIPA, related to improper access control, allows a perpetrator to elevate their privileges to the level of domain administrator and affect the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the centralized system for managing user identities in FreeIPA is related to improper access control. Exploiting this vulnerability could allow a malicious actor, operating remotely, to elevate their privileges to the level of domain administrator and affect the...

The vulnerability of the WebContentFilter filter in macOS operating systems allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the WebContentFilter filter in macOS operating systems is related to insufficient protection of service data. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the device management platform for systems related to heating, ventilation, and air conditioning, lighting, and energy consumption within the Niagara Framework, as well as the Niagara Enterprise Security tools for access control and security, stems from the absence of necessary encryption steps. This allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the device management platform for systems for heating, ventilation, and air conditioning, lighting, and energy consumption, as well as the Niagara Framework and the access control and security measures, is related to the absence of the necessary encryption step. Exploiting...

ROS-20250801-02

Vulnerability of vfiopcidevindenylist function of Linux kernel is related to uncontrolled resource consumption. resource consumption. Exploitation of the vulnerability could allow an attacker to affect the integrity and availability of protected information...

CVE-2025-48072

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Version 3.3.2 is vulnerable to a heap-based buffer overflow during a read operation due to bad pointer math when decompressing DWAA-packed scan-line EXR...