CVE-2025-10217

CVE-2025-10217 involves Hitachi Energy Asset Suite where an authenticated user can manipulate performance-related log data or inject crafted data into logfiles, potentially enabling further malicious activity. The vulnerability affects the Asset Suite’s logging/logfile handling and is described w...

PT-2025-39263

Name of the Vulnerable Software and Affected Versions NVIDIA Megatron-LM affected versions not specified Description The software contains a flaw in the ensemble classifer script that could allow an attacker to inject malicious data. Successful exploitation of this issue may result in code...

PT-2025-34804 · Nvidia · Nvidia Nemo Framework

Name of the Vulnerable Software and Affected Versions: NVIDIA NeMo Framework affected versions not specified Description: The NVIDIA NeMo Framework contains an issue in the NLP component that could allow an attacker to inject code through maliciously crafted data. A successful exploit may lead to...

The vulnerability of the software for programmable logic controllers DIAScreen, related to data type mixing errors, allows a perpetrator to inject specially created data into the application and execute arbitrary code.

The vulnerability of the DIAScreen programmable logic controller software is related to errors in data type mixing. Exploiting this vulnerability allows a malicious actor to send specially crafted data to the application and execute arbitrary code...

Design/Logic Flaw

A remote, unauthenticated attacker may be able to execute code by exploiting a use-after-free defect found in older versions of PHP through injection of crafted data via specific PHP URLs within the context of the J-Web process. Affected releases are Juniper Networks Junos OS: 12.1X46 versions...