ASB-A-459479964

In multiple functions of memprotect.c, there is a possible way to execute arbitrary code due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

USN-8024-1 libwebsockets vulnerabilities

Raffaele Bova discovered that Libwebsockets incorrectly handled memory when the upgrade header is not valid in the WebSocket server. An attacker could possibly use this issue to cause a denial of service. CVE-2025-11677 Raffaele Bova discovered that Libwebsockets did not properly check the size o...

CVE-2026-25584

iccDEV provides a set of libraries and tools that allow for the interaction, manipulation, and application of ICC color management profiles. Prior to version 2.3.1.3, there is a stack-buffer-overflow vulnerability in CIccTagFloatNum::GetValues. This is triggered when processing a malformed ICC...

CVE-2025-33190

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware where an attacker could cause an out-of-bound write. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, or escalation of privileges...

OESA-2025-2489 openssl security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

The vulnerability of the `ets_unpack_flash_code_legacy` and `UartRxString` functions in single-Cortex microcontrollers ESP32-S2, ESP32-S2F, allows a hacker to execute arbitrary code.

The vulnerability of the etsunpackflashcodelegacy and UartRxString functions in single-Cortex-Microcontroller ESP32-S2 and ESP32-S2F is related to an exposed surface whose quantitative measurement exceeds the desired maximum. Exploiting this vulnerability can allow a attacker to execute arbitrary...

[SECURITY] [DSA 5910-1] firefox-esr security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5910-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 30, 2025 https://www.debian.org/security/faq -...

SQL Injection

Overview llama-index-packs-finchat is a llama-index packs implementation of a hierarchical agent for finance chat. Affected versions of this package are vulnerable to SQL Injection via the runsqlquery function in the database agent. An attacker can inject raw PostgreSQL statements into a prompt a...

The vulnerability of the “as_wazuh_object” function in the Wazuh intrusion detection and prevention system allows a perpetrator to execute arbitrary code.

The vulnerability of the “aswazuhobject” function in the Wazuh intrusion detection and prevention system is related to deficiencies in the deserialization mechanism of parameters from DistributedAPI. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending a...

jquery: Untrusted code execution via <option> tag in HTML passed to DOM manipulation methods

A flaw was found in jQuery. HTML containing \ elements from untrusted sources are passed, even after sanitizing, to one of jQuery's DOM manipulation methods, which may execute untrusted code. The highest threat from this vulnerability is to data confidentiality and integrity...

CVE-2024-26314

CVE-2024-26314 describes an ** Improper Privilege Management CWE-269** in Jungo WinDriver versions 6.0.0 through 16.1.0. The vulnerability allows a local attacker to escalate privileges and execute arbitrary code on affected systems. The root cause, as documented across multiple sources, is a pri...

The vulnerability of the set_encoder_id() function (/fftools/ffmpeg_enc.c) in the multimedia library FFmpeg allows a hacker to execute arbitrary code.

The vulnerability of the setencoderid function /fftools/ffmpegenc.c in the multimedia library FFmpeg is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code using specially created data...

UBUNTU-CVE-2024-29159

HDF5 through 1.14.3 contains a buffer overflow in H5Zfilterscaleoffset, resulting in the corruption of the instruction pointer and causing denial of service or potential code execution...

CVE-2024-23234

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5. An app may be able to execute arbitrary code with kernel privileges...

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : NPM IP vulnerability (USN-6643-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has a package installed that is affected by a vulnerability as referenced in the USN-6643-1 advisory. Emre Durmaz discovered that NPM IP package incorrectly distinguished between private and public IP addresses. A remote attacker...

UBUNTU-CVE-2023-37419

Multiple out-of-bounds write vulnerabilities exist in the VCD parsevaluechange portdump functionality of GTKWave 3.3.115. A specially crafted .vcd file can lead to arbitrary code execution. A victim would need to open a malicious file to trigger these vulnerabilities.This vulnerability concerns t...

postgresql: schema_element defeats protective search_path changes

A flaw was found in PostgreSQL. Certain database calls could permit an attacker with elevated database-level privileges to execute arbitrary code...

The vulnerability of the tiff_planar_adobe function in the ImageGear image processing library allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the tiffplanaradobe function in the ImageGear image processing library is related to writing beyond the buffer limit. Exploiting this vulnerability can allow an attacker to execute arbitrary code or cause a service failure using a specially created file with corrupted format...

PYSEC-2023-194

langchainexperimental 0.0.14 allows an attacker to bypass the CVE-2023-36258 fix and execute arbitrary code via the PALChain in the python exec method...

[SECURITY] [DLA 3551-1] otrs2 security update

Debian LTS Advisory DLA-3551-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin August 31, 2023 https://wiki.debian.org/LTS Package : otrs2 Version : 6.0.16-2+deb10u1 CVE ID : CVE-2019-11358 CVE-2019-12248 CVE-2019-12497 CVE-2019-12746 CVE-2019-13458 CVE-2019-16375...