VMware Spring AI 安全漏洞

VMware Spring AI is a development framework by the American company VMware, which integrates artificial intelligence and large language model capabilities into the Spring ecosystem. Versions 1.0.0 to 1.0.5, as well as 1.1.0 to 1.1.4 of VMware Spring AI, have security vulnerabilities. These...

CVE-2025-67794

An issue was discovered in DriveLock 24.1 through 24.1., 24.2 before 24.2.8, and 25.1 before 25.1.6. Directories and files created by the agent are created with overly permissive ACLs, allowing local users without administrator rights to trigger actions or destabilize the agent...

PT-2025-52339

Name of the Vulnerable Software and Affected Versions BullWall Ransomware Containment versions 4.6.0.0 through 4.6.1.4 Description BullWall Ransomware Containment does not monitor certain file paths, such as $recycle.bin. An attacker with file write permissions could bypass detection by renaming ...

UBUNTU-CVE-2024-9401

Memory safety bugs present in Firefox 130, Firefox ESR 115.15, Firefox ESR 128.2, and Thunderbird 128.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox...

Tenda AC9 缓冲区错误漏洞

Tenda AC9 is a wireless router from Tenda China. A security vulnerability exists in Tenda AC9 V1.0 V15.03.02.196318 and AC9 V3.0 V15.03.06.42multi versions, which originates from a buffer overflow issue in the web server httpd. When setting up a virtual service, the httpd program will crash and...

Remote Command Execution Vulnerability in Some Versions of Purple Firewall

Taking into account the development trend of the global information industry and the characteristics of its own advantageous business, ZiGuang focuses its corporate strategy on the field of IT services, and is committed to building a complete and powerful "cloud-network-terminal" industry chain,...