CVE-2025-11842 Shazwazza Smidge Bundle path traversal

A security vulnerability has been detected in Shazwazza Smidge up to 4.5.1. The impacted element is an unknown function of the component Bundle Handler. The manipulation of the argument Version leads to path traversal. Remote exploitation of the attack is possible. Upgrading to version 4.6.0 is...

CVE-2025-11842

The CVE-2025-11842 entry concerns Smidge (up to 4.5.1) with a path traversal vulnerability in the Bundle Handler that abuses the Version argument. This enables remote access to files outside the intended directory. A fix is available: upgrade Smidge Core to version 4.6.0 or higher. Connected sour...

CVE-2025-11842 Shazwazza Smidge Bundle path traversal

A security vulnerability has been detected in Shazwazza Smidge up to 4.5.1. The impacted element is an unknown function of the component Bundle Handler. The manipulation of the argument Version leads to path traversal. Remote exploitation of the attack is possible. Upgrading to version 4.6.0 is...

Smidge 路径遍历漏洞

Smidge is a file compression, composition, compression, and management library from the individual developer Shannon Deminick. A path traversal vulnerability exists in Smidge 4.5.1 and earlier versions, which stems from the incorrect manipulation of the parameter Version in the Bundle Handler...

CVE-2025-61910

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A BPv7 bundle with a malformed extension block causes uncontrolled memory allocation inside ION-DTN 4.1.3s, leading to receiver thread termination and a Denial-of-Service DoS. The...

EUVD-2025-32887

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A BPv7 bundle with a malformed extension block causes uncontrolled memory allocation inside ION-DTN 4.1.3s, leading to receiver thread termination and a Denial-of-Service DoS. The...

CVE-2025-61910 NASA ION-DTN BPv7 4.1.3s Uncontrolled Memory Allocation that leads to Denial-of-Service

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A BPv7 bundle with a malformed extension block causes uncontrolled memory allocation inside ION-DTN 4.1.3s, leading to receiver thread termination and a Denial-of-Service DoS. The...

EUVD-2015-3758

Malware in sbrugna...

EUVD-2007-6687

Malware in sbrugna...

EUVD-2007-6685

Malware in sbrugna...

EUVD-2013-6497

Malware in sbrugna...

EUVD-2019-13376

Malware in sbrugna...

EUVD-2015-3761

Malware in sbrugna...

EUVD-2018-11820

Malware in sbrugna...

EUVD-2015-3751

Malware in sbrugna...

EUVD-2021-1845

Malware in sbrugna...

PT-2025-41176

Name of the Vulnerable Software and Affected Versions NASA’s Interplanetary Overlay Network ION version 4.1.3 Description A specially crafted BPv7 bundle with a malformed extension block can lead to a Denial-of-Service DoS condition in ION-DTN. The issue stems from uncontrolled memory allocation...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986791)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986791 advisory. In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxrpcpeer leak in rxrpclookupbundle Need to call rxrpcputpeer for bundle candidate...

EUVD-2024-52393

Malicious code in bioql PyPI...

EUVD-2024-0338

Malicious code in bioql PyPI...