The vulnerability of the Simple Certificate Enrollment Protocol (SCEP) implementation in the PAN-OS operating system allows a perpetrator to trigger a service failure.

The vulnerability of the Simple Certificate Enrollment Protocol SCEP implementation in the PAN-OS operating system is related to insufficient checking of unusual or exceptional states. Exploiting this vulnerability allows a malicious actor to cause service failures by sending a specially crafted...

PT-2025-17424 · Gobgp +4 · Gobgp +4

Name of the Vulnerable Software and Affected Versions: GoBGP versions prior to 3.35.0 Description: The issue arises from improper input length checking in the pkg/packet/mrt/mrt.go file, specifically failing to ensure the presence of 12 bytes or 36 bytes depending on the address family...

CVE-2022-47111

7-Zip 22.01 does not report an error for certain invalid xz files, involving block flags and reserved bits. Some later versions are unaffected...

SAP NetWeaver Server ABAP Authorization Issues Vulnerability

SAP NetWeaver Server ABAP is an application server from SAP, Germany. SAP NetWeaver Server ABAP suffers from an authorization issue vulnerability that stems from a lack of authorization checking in the virus scanning interface, which could be exploited by an attacker to access sensitive data...

CVE-2025-31200

A memory corruption issue was addressed with improved bounds checking. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a repor...

CVE-2025-31200

A memory corruption issue was addressed with improved bounds checking. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a repor...

CVE-2025-31200

A memory corruption issue was addressed with improved bounds checking. This issue is fixed in iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1, tvOS 18.4.1, visionOS 2.4.1, watchOS 11.5. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware ...

CVE-2025-31200

CVE-2025-31200 affects Apple’s CoreAudio, specifically the AudioConverterService AAC decoder, where a memory corruption issue can lead to code execution when processing a malicious audio stream. Affected products include iOS, iPadOS, macOS, and related OSes prior to the patch, with fixes implemen...

CVE-2025-22116

In the Linux kernel, the following vulnerability has been resolved: idpf: check error for registernetdev on init Current init logic ignores the error code from registernetdev, which will cause WARNON on attempt to unregister it, if there was one, and there is no info for the user that the creatio...

CVE-2025-31200

A memory corruption issue was addressed with improved bounds checking. This issue is fixed in tvOS 18.4.1, visionOS 2.4.1, iOS iOS 18.4.1 and iPadOS 18.4.1, macOS Sequoia 15.4.1. Processing an audio stream in a maliciously crafted media file may result in code execution. Apple is aware of a repor...

Apple iOS和Apple iPadOS 安全漏洞

Apple iOS and Apple iPadOS are products of Apple Inc. Apple iOS is an operating system developed for mobile devices, and Apple iPadOS is an operating system for iPad tablets. A security vulnerability exists in Apple iOS version 18.4.1 and Apple iPadOS version 18.4.1, which stems from insufficient...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of bounds checking for persistent handle contexts...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of ACPI device pointer checking in the int340x thermal management module, which could lead to null...

Buffer Overflow

bigint-bufferr is vulnerable to Buffer Overflow. The vulnerability is due to improper bounds checking in the toBigIntLE function, which allows attackers to cause a buffer overflow and potentially crash the application...

CVE-2025-2631

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW in InitCPUInformation that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects NI...

Adobe Framemaker heap buffer overflow (CNVD-2025-09271)

Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. Adobe Framemaker suffers from a heap buffer overflow vulnerability that stems from insufficient bounds checking,...

CVE-2025-2632 Out of Bounds Write Vulnerability in NI LabVIEW reading CPU info from cache

Out of bounds write vulnerability due to improper bounds checking in NI LabVIEW reading CPU info from cache that may result in information disclosure or arbitrary code execution. Successful exploitation requires an attacker to get a user to open a specially crafted VI. This vulnerability affects ...

NI LabVIEW（National Instruments LabVIEW） 安全漏洞

NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW National Instruments LabVIEW version 2025 Q1 and earlier, which stems from improper boundary checking and could lead to information...

Juniper Networks Junos OS MX 代码问题漏洞

Juniper Networks Junos OS MX is a Juniper Networks, Inc. network operating system dedicated to the company's hardware devices. The operating system provides a secure programming interface and the Junos SDK. A code issue vulnerability exists in Juniper Networks Junos OS MX that stems from improper...

NI LabVIEW（National Instruments LabVIEW） 安全漏洞

NI LabVIEW National Instruments LabVIEW is a graphical program compilation platform from National Instruments NI. A security vulnerability exists in NI LabVIEW National Instruments LabVIEW version 2025 Q1 and earlier, which stems from improper boundary checking and could lead to information...