PT-2025-6512 · Zettlr · Zettler 130.8005 Tcp/Ip Gateway

Name of the Vulnerable Software and Affected Versions: Zettler 130.8005 TCP/IP Gateway version 12h Description: A buffer over-read issue was discovered, affecting the web server and allowing information disclosure. This can be triggered by leveraging a memory leak, enabling a remote unauthenticat...

The vulnerability of the ASP TCP component on MacOs allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ASP TCP component on MacOs systems is related to reading beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the System Settings component in MacOS operating systems allows a hacker to overwrite arbitrary files.

The vulnerability of the System Settings component in MacOS operating systems is related to reading beyond the buffer in memory. Exploiting this vulnerability could allow an attacker to overwrite arbitrary files...

The vulnerability of the Vim text editor, related to reading beyond the buffer in memory, allows a hacker to trigger a service failure.

The vulnerability of the Vim text editor is related to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

CVE-2025-0908

PDF-XChange Editor U3D File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target...

CVE-2025-0901

PDF-XChange Editor Doc Object Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a...

Astra Linux – Vulnerability in krb5

The vulnerability of the getmechset function in the spnegomech.c component of the Kerberos authentication protocol is related to reading data from within a permissible buffer size. Exploiting this vulnerability allows an attacker to cause service failures...

Astra Linux - уязвимость в hdf5

HDF5 Library through 1.14.3 contains a heap-based buffer over-read in H5Faddrdecodelen in H5Fint.c, resulting in the corruption of the instruction pointer...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Wifi: iwlwifi: mvm – Do not read beyond the mfuart notification. In the event that the firmware sends a notification claiming to have more data than it actually does, we will read beyond the allocated space for the notification. ...

The vulnerability of JavaScript script handlers in Google Chrome browsers allows attackers to partially compromise the accessibility of protected information.

The vulnerability of JavaScript script handlers in Google Chrome browsers relates to reading beyond the buffer boundary. Exploiting this vulnerability allows a malicious actor to partially compromise the accessibility of protected information through a specially crafted HTML page...

Azure Linux 3.0 Security Update: php (CVE-2024-11233)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11233 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, due to an error in...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / openssl (CVE-2024-5535)

The version of cloud-hypervisor-cvm / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-5535 advisory. - Issue summary: Calling the OpenSSL API function SSLselectnextproto with an empty...

Vulnerability of the Server component: Security: Privileges of the Oracle MySQL Server database management system, allowing attackers to gain read access to data, modify data, or obtain privileged access.

The vulnerability of the Server component, specifically Security: Privileges of the Oracle MySQL Server database management system, relates to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker, operating remotely, to gain read access to data, modify...

K000149654: PHP vulnerabilities CVE-2024-11233, CVE-2024-11234

Security Advisory Description CVE-2024-11233 In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, due to an error in convert.quoted-printable-decode filter certain data can lead to buffer overread by one byte, which can in certain circumstances lead to crashes or disclose...

CVE-2024-22040

A vulnerability has been identified in Cerberus PRO EN Engineering Tool All versions, Cerberus PRO EN Fire Panel FC72x IP6 All versions, Cerberus PRO EN Fire Panel FC72x IP7 All versions, Cerberus PRO EN Fire Panel FC72x IP8 All versions IP8 SR4, Cerberus PRO EN X200 Cloud Distribution IP7 All...

Security update for Mesa

This update for Mesa fixes the following issues: CVE-2023-45913: Fixed NULL pointer dereference via dri2GetGlxDrawableFromXDrawableId bsc1222040. CVE-2023-45919: Fixed buffer over-read in glXQueryServerString bsc1222041. CVE-2023-45922: Fixed segmentation violation in glXGetDrawableAttribute...

The vulnerability in Firefox and Firefox ESR web browsers, as well as in the Thunderbird email client, relates to reading data beyond the allowed buffer limits, allowing an attacker to cause a service failure.

The vulnerabilities in web browsers Firefox and Firefox ESR, as well as the Thunderbird email client, are related to reading data from buffer areas beyond the allowed limits. Exploiting these vulnerabilities can allow a remote attacker to cause service interruptions...

The vulnerability of the qdrawhelper_p.h component of the cross-platform development framework for Qt software, which allows a hacker to trigger a service failure.

The vulnerability of the qdrawhelperp.h component of the cross-platform framework for developing Qt software relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause a system failure...

The vulnerability of the QOutlineMapper::convertPath function in the cross-platform framework for Qt software development allows a attacker to cause a service failure.

The vulnerability of the QOutlineMapper::convertPath function in the cross-platform framework for Qt software development is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures...

The vulnerability in the module/loaders/loader_ico.c component of the Imlib2 image processing library allows a attacker to cause a service failure.

The vulnerability in the modules/loaders/loaderico.c component of the Imlib2 image processing library is related to reading data beyond the allowable buffer size. Exploiting this vulnerability could allow a remote attacker to cause a service failure...