Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

29 matches found

EUVD
EUVDadded 2025/10/03 8:7 p.m.3 views

EUVD-2025-6772

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.002EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/03/15 7:8 a.m.17 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

9.8CVSS6.8AI score0.00162EPSS
Exploits1References1
NVD
NVDadded 2025/03/12 4:15 p.m.10 views

CVE-2025-25565

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NOTE: the Supplier disputes this because the behavior only allows a user to attack himself by typing a long string on a command line...

9.8CVSS0.002EPSS
Exploits1References2
NVD
NVDadded 2025/03/12 4:15 p.m.9 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

9.8CVSS0.00162EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2025/03/12 12:0 a.m.20 views

PT-2025-11089 · Unknown · Softether Vpn

Name of the Vulnerable Software and Affected Versions: SoftEther VPN version 5.02.5187 Description: The issue is related to a Buffer Overflow in the Command.c file, specifically via the PtMakeCert and PtMakeCert2048 functions. Recommendations: For SoftEther VPN version 5.02.5187, consider disabli...

9.8CVSS6.2AI score0.002EPSS
Exploits1References7
Cvelist
Cvelistadded 2025/03/12 12:0 a.m.9 views

CVE-2025-25565

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NOTE: the Supplier disputes this because the behavior only allows a user to attack himself by typing a long string on a command line...

0.002EPSS
Exploits1References2
CVE
CVEadded 2025/03/12 12:0 a.m.69 views

CVE-2025-25565

SoftEther VPN 5.02.5187 is affected by CVE-2025-25565 due to a Buffer Overflow in the Command.c file, exploitable via the PtMakeCert and PtMakeCert2048 functions. Records consistently describe a buffer overflow in these functions; the supplier disputes the claim (the provider notes the behavior c...

9.8CVSS6.5AI score0.002EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2025/03/12 12:0 a.m.9 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

0.00162EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2025/03/12 12:0 a.m.6 views

CVE-2025-25565

SoftEther VPN 5.02.5187 is vulnerable to Buffer Overflow in the Command.c file via the PtMakeCert and PtMakeCert2048 functions. NOTE: the Supplier disputes this because the behavior only allows a user to attack himself by typing a long string on a command line...

6.5AI score0.002EPSS
Exploits1References2
Rosalinux
Rosalinuxadded 2024/07/31 9:50 a.m.20 views

Advisory ROSA-SA-2024-2460

software: gnuplot 5.4.10 OS: ROSA-CHROME packageevrstring: gnuplot-5.4.10-1 CVE-ID: CVE-2020-25412 BDU-ID: None CVE-Crit: CRITICAL CVE-DESC.: comline in command.c in gnuplot causes writes outside the memory buffer from strncpy, which may lead to arbitrary code execution. CVE-STATUS: Fixed CVE-REV...

9.8CVSS7.5AI score0.00614EPSS
Exploits1
CNVD
CNVDadded 2020/09/17 12:0 a.m.2 views

gnuplot segmentation error vulnerability

gnuplot is a command line interactive tool that allows the user to convert datasets and data functions into easy-to-see planar or three-dimensional shapes by entering commands. A segmentation error vulnerability exists in gnuplot version 5.4. The vulnerability originates in the comline function o...

9.8CVSS7.9AI score0.00614EPSS
Exploits1References1
Prion
Prionadded 2020/09/16 2:15 p.m.20 views

Type confusion

comline in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy that may lead to arbitrary code execution...

7.5CVSS9.6AI score0.00614EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2020/09/16 1:53 p.m.17 views

CVE-2020-25412

comline in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy that may lead to arbitrary code execution...

9.7AI score0.00614EPSS
Exploits1References1
CVE
CVEadded 2020/09/16 1:53 p.m.76 views

CVE-2020-25412

CVE-2020-25412 affects gnuplot 5.4, where com_line() in command.c performs an out-of-bounds write via strncpy(), enabling arbitrary code execution. Impact is high (remote/vector: network; no user interaction). Several advisories reference this issue among other Gnuplot memory bugs and note that a...

9.8CVSS9.6AI score0.00614EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVEadded 2020/09/16 1:53 p.m.22 views

CVE-2020-25412

comline in command.c in gnuplot 5.4 leads to an out-of-bounds-write from strncpy that may lead to arbitrary code execution...

9.8CVSS8AI score0.00614EPSS
Exploits1
Positive Technologies
Positive Technologiesadded 2020/09/16 12:0 a.m.2 views

PT-2020-16080 · Gnu +4 · Gnuplot +4

Name of the Vulnerable Software and Affected Versions: gnuplot version 5.4 Description: The issue is related to the com line function in command.c which leads to an out-of-bounds write from strncpy, potentially resulting in arbitrary code execution. Recommendations: For gnuplot version 5.4,...

9.8CVSS7AI score0.00614EPSS
Exploits7References40
Mageia
Mageiaadded 2019/06/21 1:7 a.m.31 views

Updated git packages fix security vulnerability

Git before 2.19.2 on Linux and UNIX executes commands from the current working directory as if '.' were at the end of $PATH in certain cases involving the runcommand API and run-command.c, because there was a dangerous change from execvp to execv during 2017 CVE-2018-19486...

9.8CVSS2.1AI score0.00665EPSS
Exploits0References1
NVD
NVDadded 2018/11/23 8:29 a.m.17 views

CVE-2018-19486

Git before 2.19.2 on Linux and UNIX executes commands from the current working directory as if '.' were at the end of $PATH in certain cases involving the runcommand API and run-command.c, because there was a dangerous change from execvp to execv during 2017...

9.8CVSS9.5AI score0.00665EPSS
Exploits0References7
Prion
Prionadded 2018/11/23 8:29 a.m.15 views

Design/Logic Flaw

Git before 2.19.2 on Linux and UNIX executes commands from the current working directory as if '.' were at the end of $PATH in certain cases involving the runcommand API and run-command.c, because there was a dangerous change from execvp to execv during 2017...

7.5CVSS9.2AI score0.00665EPSS
Exploits0References7Affected Software2
Debian CVE
Debian CVEadded 2018/11/23 8:0 a.m.26 views

CVE-2018-19486

Git before 2.19.2 on Linux and UNIX executes commands from the current working directory as if '.' were at the end of $PATH in certain cases involving the runcommand API and run-command.c, because there was a dangerous change from execvp to execv during 2017...

9.8CVSS6.9AI score0.00665EPSS
Exploits0
Rows per page
Query Builder