Exploit for Out-of-bounds Write in Apple Ipados

CVE-2025-43300: iOS/macOS DNG Image Processing Memory Corrupti...

OSV-2025-797 Heap-buffer-overflow in ProcessRows

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=447845730 Crash type: Heap-buffer-overflow WRITE Crash state: ProcessRows DecodeImageData VP8LDecodeImage...

CVE-2025-21482

Cryptographic issue while performing RSA PKCS padding decoding...

CVE-2025-21488

Information disclosure while decoding this RTP packet headers received by UE from the network when the padding bit is set...

CVE-2025-21482

Cryptographic issue while performing RSA PKCS padding decoding...

CVE-2025-21484

CVE-2025-21484 is an information-disclosure issue described as a buffer over-read in the Qualcomm data-network stack, triggered when a User Equipment (UE) decodes and reassembles RTP fragments received over the network. Public descriptions consistently state that the vulnerability causes informat...

CVE-2025-21482 Cryptographic Issues in Core

Cryptographic issue while performing RSA PKCS padding decoding...

CVE-2025-21482 Cryptographic Issues in Core

Cryptographic issue while performing RSA PKCS padding decoding...

CVE-2025-21482

CVE-2025-21482 describes a cryptographic issue in Qualcomm closed‑source components related to RSA PKCS padding decoding. The CVE is listed as High severity with Local attack vector, Low attack complexity, Low privileges required, and no user interaction, with impacts on Confidentiality and Integ...

Qualcomm Chipsets 加密问题漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A cryptographic issue vulnerability exists in Qualcomm Chipsets that stems from a cryptographic issue when performing RSA PKCS padding decoding...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from not properly handling padding bits when decoding RTP packet headers, which could lead to information disclosure...

PT-2025-39268

Name of the Vulnerable Software and Affected Versions UE affected versions not specified Description An information disclosure issue exists when a User Equipment UE receives an Real-time Transport Protocol RTP packet from the network and attempts to decode and reassemble fragments from that packe...

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from not properly handling payload length when decoding RTP packets, which could lead to information disclosure...

PT-2025-39267

Name of the Vulnerable Software and Affected Versions Affected versions not specified Description A cryptographic issue exists during RSA PKCS padding decoding. Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability...

PT-2025-39269

Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description An information disclosure issue exists while decoding an RTP packet received by a User Equipment UE from the network. This occurs when the payload length indicated in the packe...

OESA-2025-2306 python3 security update

Python combines remarkable power with very clear syntax. It has modules, classes, exceptions, very high level dynamic data types, and dynamic typing. There are interfaces to many system calls and libraries, as well as to various windowing systems. New built-in modules are easily written in C or C...

Denial Of Service (DoS)

Axios is vulnerable to Denial-of-Service. The vulnerability is due to improper handling of data: scheme URLs, where the Node.js HTTP adapter decodes the entire payload into memory and ignores size limits, allowing attackers to supply a very large data URI to cause unbounded memory allocation and...

Apple macOS Audio APAC Frame Decoding Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Apple macOS. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the decoding of audio...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly handle buffers when the lat architecture decodes errors, which could lead to null...

GO-2025-3922 Memory leaks when decoding a corrupted multiple LZMA archives in github.com/ulikunitz/xz

Memory leaks when decoding a corrupted multiple LZMA archives in github.com/ulikunitz/xz...