CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/12/10 10:4 p.m.•28 views

CVE-2025-66628 ImageMagick is vulnerable to an Integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

7.5CVSS0.00047EPSS

SUSE CVE•added 2025/12/10 12:35 a.m.•1 views

SUSE CVE-2023-53812

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: fix decoder disable pm crash Can't call pmruntimedisable when the architecture support sub device for 'dev-pm.dev' is NUll, or will get below crash log. 10.771551 pc : rawspinlockirq+0x4c/0xa0 10.771556 l...

6.6AI score0.00028EPSS

IBM Security Bulletins•added 2025/12/09 4:54 a.m.•6 views

Security Bulletin: Netty Affected by Decompression Flaw Where BrotliDecoder Allocates Unlimited Buffers, Enabling DoS, affects watsonx.data

Summary Netty is an asynchronous event-driven network application framework for rapid development of maintainable high performance protocol servers & clients. In netty-codec-compression versions 4.1.124.Final and below, and netty-codec versions 4.2.4.Final and below, when supplied with specially...

7.5CVSS6.5AI score0.00063EPSS

Exploits1Affected Software1

EUVD•added 2025/12/09 3:31 a.m.•2 views

EUVD-2023-60094

6AI score0.00028EPSS

Exploits0References5

NVD•added 2025/12/09 1:16 a.m.•3 views

CVE-2023-53812

0.00028EPSS

OSV•added 2025/12/09 1:16 a.m.•2 views

DEBIAN-CVE-2023-53812

5.2AI score0.00028EPSS

Exploits0References1

OSV•added 2025/12/09 1:16 a.m.•0 views

UBUNTU-CVE-2023-53812

5.7AI score0.00028EPSS

Exploits0References7

SUSE CVE•added 2025/12/09 12:29 a.m.•2 views

SUSE CVE-2023-53748

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix potential array out-of-bounds in decoder queuesetup variable nplanes is provided by user via system call argument. The possible value of qdata-fmt-numplanes is 1-3, while the value of nplanes can be...

5.5CVSS6.5AI score0.00024EPSS

CVE•added 2025/12/09 12:1 a.m.•9 views

CVE-2023-53812

CVE-2023-53812 affects the Linux kernel media: mediatek: vcodec path where pm_runtime_disable is called while the architecture support sub-device for dev->pm.dev is NULL, causing a crash (kernel stack trace shown). The issue is resolved in the kernel (per multiple sources) and a patch/update i...

6.2AI score0.00028EPSS

Debian CVE•added 2025/12/09 12:1 a.m.•3 views

CVE-2023-53812

5.2AI score0.00028EPSS

Exploits0

OSV•added 2025/12/09 12:1 a.m.•2 views

CVE-2023-53812 media: mediatek: vcodec: fix decoder disable pm crash

6.4AI score0.00028EPSS

Exploits0References7

EUVD•added 2025/12/08 6:30 p.m.•1 views

EUVD-2025-201764

In initDecoder of C2SoftDav1dDec.cpp, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

7.5CVSS6AI score0.00057EPSS

NVD•added 2025/12/08 5:16 p.m.•3 views

CVE-2025-48592

7.5CVSS0.00057EPSS

Cvelist•added 2025/12/08 4:57 p.m.•15 views

CVE-2025-48592

0.00057EPSS

EUVD•added 2025/12/08 3:31 a.m.•4 views

EUVD-2023-60080

6AI score0.00024EPSS

NVD•added 2025/12/08 2:15 a.m.•7 views

CVE-2023-53748

0.00024EPSS

OSV•added 2025/12/08 2:15 a.m.•3 views

DEBIAN-CVE-2023-53748

5.2AI score0.00024EPSS

Exploits0References1

CVE•added 2025/12/08 1:19 a.m.•11 views

CVE-2023-53748

The CVE-2023-53748 entry concerns a Linux kernel issue in media: mediatek: vcodec where an array bounds check was missing in decoder queue_setup. The vulnerability arises because *nplanes is user-provided and can range up to 8, while q_data->fmt->num_planes is 1–3; an index i could access b...

6.2AI score0.00024EPSS