691 matches found
CVE-2025-7916
creationtimestamp| type| source ---|---|--- 2025-07-21 06:36:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3luhet3cx4e2j...
CVE-2025-7339
A header modification flaw has been discovered in the on-headers npm library. In specific cases, response headers may be inadvertently modified when an array is passed to response.writeHead. Mitigation Users may work around this issue by passing an object rather than an array to the...
CVE-2025-53840
Icinga DB Web provides a graphical interface for Icinga monitoring. Starting in version 1.2.0 and prior to version 1.2.2, users with access to Icinga Dependency Views, are allowed to see hosts and services that they weren't meant to on the dependency map. However, the name of an object will not b...
CVE-2025-30753
...
CVE-2025-49699
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
CVE-2025-38342
In the Linux kernel, the following vulnerability has been resolved: software node: Correct a OOB check in softwarenodegetreferenceargs softwarenodegetreferenceargs wants to get @index-th element, so the property value requires at least 'index + 1 sizeofref' bytes but that can not be guaranteed by...
CVE-2025-6395
A NULL pointer dereference flaw was found in the GnuTLS software in gnutlsfigurecommonciphersuite. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability...
CVE-2025-38319 drm/amd/pp: Fix potential NULL pointer dereference in atomctrl_initialize_mc_reg_table
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...
CVE-2025-49668
creationtimestamp| type| source ---|---|--- 2025-07-08 15:56:31+00:00| seen| https://www.thezdi.com/blog/2025/7/8/the-july-2025-security-update-review...
CVE-2025-27061
CVE-2025-27061 is a Qualcomm vulnerability in the Video subsystem: memory corruption/out-of-bounds write while parsing video packets from the video firmware during subsystem-failure memory handling. Affected: Qualcomm Video (closed- or firmware components) within the device’s video pipeline. Impa...
CVE-2025-38237
In the Linux kernel, the following vulnerability has been resolved: media: platform: exynos4-is: Add hardware sync wait to fimcishwchangemode In fimcishwchangemode, the function changes camera modes without waiting for hardware completion, risking corrupted data or system hangs if subsequent...
CVE-2025-20321
creationtimestamp| type| source ---|---|--- 2025-07-07 19:29:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltfjhpn36s2o...
CVE-2025-7107
creationtimestamp| type| source ---|---|--- 2025-07-07 07:56:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ltecrhqeeo2m...
Important: Red Hat Security Advisory: pam security update
An update for pam is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as havin...
PT-2025-28067 · Undefined · Undefined
CVE-2025-3524 Rejected reason https://t.co/84OHVwvauQ...
CVE-2025-6783
creationtimestamp| type| source ---|---|--- 2025-07-04 07:16:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt4p4fx6nm2l...
CVE-2025-38098
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Don't treat wb connector as physical in createvalidatestreamforsink Don't try to operate on a drmwbconnector as an amdgpudmconnector. While dereferencing aconnector-base will "work" it's wrong and might lead to...
CVE-2025-38136
In the Linux kernel, the following vulnerability has been resolved: usb: renesasusbhs: Reorder clock handling and power management in probe Reorder the initialization sequence in usbhsprobe to enable runtime PM before accessing registers, preventing potential crashes due to uninitialized clocks...
CVE-2025-52559
creationtimestamp| type| source ---|---|--- 2025-07-02 21:36:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsz6aa4nlq2m...
CVE-2025-24769 WordPress Zenny theme <= 1.7.5 - Local File Inclusion Vulnerability
Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in BZOTheme Zenny bw-zenny allows PHP Local File Inclusion.This issue affects Zenny: from n/a through = 1.7.5...