Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4739 matches found

EUVD
EUVDadded 2025/10/06 9:30 p.m.3 views

EUVD-2025-32586

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS6.4AI score0.00093EPSS
Exploits0References5
OSV
OSVadded 2025/10/06 8:15 p.m.2 views

CVE-2025-11346

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

9.8CVSS7AI score
Exploits0References5
NVD
NVDadded 2025/10/06 8:15 p.m.4 views

CVE-2025-11346

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

9.8CVSS0.00093EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/10/06 7:32 p.m.6 views

CVE-2025-11346 ILIAS Base64 Decoding unserialize deserialization

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS0.00093EPSS
Exploits0References4
CVE
CVEadded 2025/10/06 7:32 p.m.9 views

CVE-2025-11346

The CVE concerns ILIAS up to versions 8.23/9.13/10.1 where the Base64 Decoding Handler’s unserialize function is exploitable by manipulating the f_settings argument, enabling deserialization and a remote attack. The issue’s root cause is improper handling of f_settings in the unserialize flow. Im...

9.8CVSS6.7AI score0.00093EPSS
Exploits0References5Affected Software1
Vulnrichment
Vulnrichmentadded 2025/10/06 7:32 p.m.3 views

CVE-2025-11346 ILIAS Base64 Decoding unserialize deserialization

A vulnerability has been found in ILIAS up to 8.23/9.13/10.1. This affects the function unserialize of the component Base64 Decoding Handler. Such manipulation of the argument fsettings leads to deserialization. It is possible to launch the attack remotely. Upgrading to version 8.24, 9.14 and 10....

6.5CVSS6.7AI score0.00093EPSS
Exploits0References4
Snyk
Snykadded 2025/10/06 8:44 a.m.2 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write in the dwauncompress function when decoding OpenEXR files with DWAA or DWAB compression due to insufficient validation of the raw length of run-length-encoded data. An attacker can cause memory corruption or...

7.3CVSS6AI score0.00019EPSS
Exploits0References2
OSV
OSVadded 2025/10/06 8:15 a.m.1 views

DEBIAN-CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS7AI score0.00019EPSS
Exploits0References1
NVD
NVDadded 2025/10/06 8:15 a.m.5 views

CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS0.00019EPSS
Exploits0References1
NVD
NVDadded 2025/10/06 8:15 a.m.4 views

CVE-2025-59730

When decoding a frame for a SANM file ANIM v0 variant, the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution width x height. A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame...

5.7CVSS0.00019EPSS
Exploits0References1
NVD
NVDadded 2025/10/06 8:15 a.m.2 views

CVE-2025-59731

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rlerawsize from the input file at 0, we decompress and decode into the buffer td-rlerawdata of size rlerawsize a...

6.9CVSS0.00019EPSS
Exploits0References1
OSV
OSVadded 2025/10/06 8:15 a.m.2 views

UBUNTU-CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS6AI score0.00019EPSS
Exploits0References3
AlpineLinux
AlpineLinuxadded 2025/10/06 8:9 a.m.4 views

CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS7.1AI score0.00019EPSS
Exploits0
Debian CVE
Debian CVEadded 2025/10/06 8:9 a.m.2 views

CVE-2025-59734

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS5.7AI score0.00019EPSS
Exploits0
EUVD
EUVDadded 2025/10/06 8:9 a.m.2 views

EUVD-2025-32513

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS6.5AI score0.00019EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/10/06 8:9 a.m.1 views

CVE-2025-59734 Heap-buffer-overflow write in FFmpeg SANM process_ftch

It is possible to cause an use-after-free write in SANM decoding with a carefully crafted animation using subversion storedframe. Stored frames can later be referenced by FTCH chunks. For files using subversion storedframe. Leaving ctx-hasdimensions set to false. A subsequent chunk with type...

8.7CVSS6.6AI score0.00019EPSS
Exploits0References1
CVE
CVEadded 2025/10/06 8:9 a.m.25 views

CVE-2025-59734

CVE-2025-59734 affects FFmpeg SANM decoding. A use-after-free read can occur when processing SANM frames via STOR/FOBJ/FTCH chunks for subversion stored_frame with an invalid state, and later reallocation that frees the old buffer while GetByteContext gb is still referenced. This can enable a rea...

8.7CVSS6.6AI score0.00019EPSS
Exploits0References1
Debian CVE
Debian CVEadded 2025/10/06 8:9 a.m.4 views

CVE-2025-59731

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rlerawsize from the input file at 0, we decompress and decode into the buffer td-rlerawdata of size rlerawsize a...

6.9CVSS5.8AI score0.00019EPSS
Exploits0
CVE
CVEadded 2025/10/06 8:9 a.m.15 views

CVE-2025-59730

CVE-2025-59730 affects SANM/ANIM v0 frames decoded by the old_codec48 path in FFmpeg. The issue: when decoding a frame, the run-length encoded data can exceed the allocated buffer because there are no bounds checks for decoded frame size, causing a heap-buffer-overflow. Affected component/functio...

5.7CVSS6.6AI score0.00019EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/10/06 8:9 a.m.2 views

CVE-2025-59730 Heap-buffer-overflow write in FFmpeg SANM decoding due to lack of bounds-checking in old_codec48

When decoding a frame for a SANM file ANIM v0 variant, the decoded data can be larger than the buffer allocated for it. Frames encoded with codec 48 can specify their resolution width x height. A buffer of appropriate size is allocated depending on the resolution. This codec can encode the frame...

5.7CVSS6.6AI score0.00019EPSS
Exploits0References1
Rows per page
Query Builder