CVE-2025-23271

CVE-2025-23271 affects NVIDIA CUDA Toolkit nvdisasm. A malformed ELF file passed to nvdisasm can trigger an out-of-bounds read, with the documented impact of partial denial of service. The connected Nessus/NASL advisories list this CVE among several CUDA toolkit issues, but none of the sources pr...

CVE-2025-23248

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the nvdisasm binary where a user may cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability may lead to a partial denial of service...

Google Gemini CLI Installed (Linux/UNIX)

Binary data googlegeminiclinixinstalled.nbin...

Google Gemini CLI Installed (macOS)

Binary data googlegeminiclimacosinstalled.nbin...

WhatsApp Desktop Installed (MacOS)

Binary data macosxwhatsappinstalled.nbin...

Google Gemini CLI Installed (Windows)

Binary data googlegeminicliwininstalled.nbin...

CVE-2025-54081

Sunshine is a self-hosted game stream host for Moonlight. Prior to version 2025.923.33222, the Windows service SunshineService is installed with an unquoted executable path. If Sunshine is installed in a directory whose name includes a space, the Service Control Manager SCM interprets the path...

CVE-2025-54081 SunshineService Has Unquoted Service Path That Allows Local SYSTEM Code Execution

Sunshine is a self-hosted game stream host for Moonlight. Prior to version 2025.923.33222, the Windows service SunshineService is installed with an unquoted executable path. If Sunshine is installed in a directory whose name includes a space, the Service Control Manager SCM interprets the path...

nightmare

This repository is an introduction to binary exploitation and reverse engineering course based on CTF challenges, called "Nightmare". It contains a large amount of content, with over 90 challenges, laid out in a linear fashion, and well-documented write-ups explaining how to go from being handed...

D-Link DIR-823X 命令注入漏洞

The D-Link DIR-823X is a wireless router from China's AUO D-Link. The D-Link DIR-823X suffers from a command injection vulnerability due to a flaw in the /usr/sbin/goahead file. An attacker can exploit this vulnerability to execute arbitrary commands on the system...

Microsoft Visual Studio Tools for Applications Installed (Windows)

Binary data microsoftvisualstudiotoolsforapplicationswininstalled.nbin...

Dell PowerScale Hardware Detection

Binary data dellpowerscaledevicedetect.nbin...

Dell PowerScale OneFS OS Detection

Binary data dellpowerscaleonefsdetect.nbin...

CVE-2025-51006

Within tcpreplay's tcprewrite, a double free vulnerability has been identified in the dltlinuxsll2cleanup function in plugins/dltlinuxsll2/linuxsll2.c. This vulnerability is triggered when tcpeditdltcleanup indirectly invokes the cleanup routine multiple times on the same memory region. By...

Yum Package Manager Persistence

This module will run a payload when the package manager is used. This module modifies a yum plugin to launch a binary of choice. grep -F 'enabled=1' /etc/yum/pluginconf.d/ will show what plugins are currently enabled on the system. root persmissions are likely required. Verified on Centos 7.1...

Greenshot Installed (Windows)

Binary data greenshotwininstalled.nbin...

Microsoft OfficePLUS Installed (Windows)

Binary data microsoftofficepluswininstalled.nbin...

Google Go 安全漏洞

Google Go is a static strongly typed, compiled, concatenated, and garbage-collected programming language from Google, Inc. A security vulnerability exists in Google Go, which stems from the fact that passing a specific string to LookPath when the PATH environment variable contains the path to an...

Access Control Bypass

Overview nvidia-pytriton is a PyTriton - Flask/FastAPI-like interface to simplify Triton's deployment in Python environments. Affected versions of this package are vulnerable to Access Control Bypass via SharedMemoryManager::RegisterSystemSharedMemory. An attacker could cause memory corruption by...

CVE-2025-59050

Greenshot is an open source Windows screenshot utility. Greenshot 1.3.300 and earlier deserializes attacker-controlled data received in a WMCOPYDATA message using BinaryFormatter.Deserialize without prior validation or authentication, allowing a local process at the same integrity level to trigge...