Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of bounds checking and could lead to a buffer overflow...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14364)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the MDIR component command handler. No detailed vulnerability details are provided at this time...

Microsoft Word Code Execution Vulnerability (CNVD-2025-17472)

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which is caused due to improper boundary checking. An attacker could exploit the vulnerability to execute arbitrary code on the system...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14363)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the DEBUG component command handler. No detailed vulnerability details are provided at this time...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: enable basic endpoint checking Syzkaller reports that he encountered a common issue during the URB submission phase, where a wrong USB endpoint type was used. This triggered a warning as follows: For now,...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: net: ppp: Added bound checking for skb data in pppsynctxmung. We ensure that we have enough data in the linear buffer from the skb before accessing the initial bytes. This prevents potential out-of-bounds accesses when processing...

Microsoft Word 安全漏洞

Microsoft Word is a word processing software in the Office suite of the U.S. company Microsoft Microsoft. A code execution vulnerability exists in Microsoft Word, which is caused due to improper boundary checking. An attacker could exploit the vulnerability to execute arbitrary code on the system...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14379)

FreeFloat FTP Server is a FTP Server software developed by FreeFloat Inc. FreeFloat FTP Server suffers from a BINARY command buffer overflow vulnerability. The vulnerability is caused due to incorrect boundary checking in the component BINARY command handler, and no detailed vulnerability details...

WordPress plugin Art Theme 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

Incentivizing Collaborative Breach Detection

Decoy passwords, or "honeywords," alert a site to its breach if they are ever entered in a login attempt on that site. However, an attacker can identify a user-chosen password from among the decoys, without risk of alerting the site to its breach, by performing credential stuffing, i.e., entering...

SAMSUNG Exynos 2400和SAMSUNG Exynos 1480 安全漏洞

SAMSUNG Exynos 2400 and SAMSUNG Exynos 1480 are both cell phone chip processors from Samsung South Korea. A security vulnerability exists in SAMSUNG Exynos 2400 and SAMSUNG Exynos 1480, which stems from a lack of length checking leading to out-of-bounds writes...

UNISOC Chipsets 安全漏洞

UNISOC Chipsets is a chipset from China's Purple Spreadtrum UNISOC. A security vulnerability exists in UNISOC Chipsets that stems from a lack of boundary checking, which could lead to out-of-bounds writes and local denial of service...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from a lack of privilege checking, which could lead to remote elevation of privilege...

MediaTek Chipsets 安全漏洞

MediaTek Chipsets is a series of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets that stems from incorrect boundary checking, which could lead to local elevation of privilege...

CVE-2025-5323

A vulnerability, which was classified as problematic, has been found in fossasia open-event-server 1.19.1. This issue affects the function sendemailchangeuseremail of the file /fossasia/open-event-server/blob/development/app/api/helpers/mail.py of the component Mail Verification Handler. The...

GNU PSPP Heap Buffer Overflow Vulnerability

GNU PSPP is an application for data sampling, statistics and analysis from the American GNU community. GNU PSPP suffers from a heap buffer overflow vulnerability. The vulnerability stems from the failure of the inflateread function called indirectly by spvreadxmlmember in zip-reader.c to properly...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14384)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the component LS command handler. No detailed vulnerability details are provided at this time...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14387)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the component STATUS command handler. No detailed vulnerability details are provided at this time...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14386)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the component VERBOSE command handler. No detailed vulnerability details are provided at this time...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14385)

FreeFloat FTP Server is an FTP service from FreeFloat. FreeFloat FTP Server suffers from a buffer overflow vulnerability that is caused by incorrect boundary checking in the component TYPE command handler. No detailed vulnerability details are provided at this time...