Lucene search
K

26 matches found

Github Security Blog
Github Security Blog
added 2026/05/13 3:33 p.m.11 views

Anchor: `InterfaceAccount` allows account substitution between unexpected types

Impact Any uses of InterfaceAccount allows another unexpected account type to be passed, after https://github.com/solana-foundation/anchor/pull/3837 disabled discriminator checking for this type. The bug was originally reported and fixed in https://github.com/solana-foundation/anchor/pull/4139, s...

5.8AI score
Exploits0References7Affected Software1
OSV
OSV
added 2026/05/13 3:33 p.m.12 views

GHSA-429Q-FHH4-R6HJ Anchor: `InterfaceAccount` allows account substitution between unexpected types

Impact Any uses of InterfaceAccount allows another unexpected account type to be passed, after https://github.com/solana-foundation/anchor/pull/3837 disabled discriminator checking for this type. The bug was originally reported and fixed in https://github.com/solana-foundation/anchor/pull/4139, s...

8.7CVSS5.8AI score
Exploits0References7
OSV
OSV
added 2026/05/02 1:12 a.m.7 views

CLSA-2026-1777541514 binutils: Fix of 3 CVEs

CVE-2025-66862: fix buffer overflow in gnuspecial cplus-dem.c - CVE-2025-66863: fix denial of service in ddiscriminator cp-demangle.c - CVE-2025-66865: fix denial of service in dprintcompinner cp-demangle.c...

7.5CVSS6AI score0.00323EPSS
Exploits3References1
OSV
OSV
added 2026/04/02 4:44 p.m.6 views

CLSA-2026-1775148284 binutils: Fix of 3 CVEs

CVE-2025-66862: fix heap-buffer-overflow in gnuspecial in cplus-dem.c - CVE-2025-66863: fix SEGV in ddiscriminator in cp-demangle.c - CVE-2025-66865: fix stack overflow in dprintcomp in cp-demangle.c...

7.5CVSS5.8AI score0.00323EPSS
Exploits3References1
SUSE CVE
SUSE CVE
added 2025/12/31 12:23 a.m.3 views

SUSE CVE-2025-66863

An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

7.5CVSS6.8AI score0.00323EPSS
Exploits1References3
Snyk
Snyk
added 2025/12/29 4:44 p.m.4 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the ddiscriminator function in the cp-demangle.c file. An attacker can cause the application to crash or become unresponsive by submitting a specially crafted PE file. Remediation There is no fixed version f...

7.5CVSS6.8AI score0.00323EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/12/29 12:0 a.m.3 views

GNU BinUtils 安全漏洞

GNU BinUtils is a collection of programming tools for working with binary files from the US GNU community. A security vulnerability exists in GNU BinUtils version 2.26, which stems from the mishandling of specially crafted PE files by the ddiscriminator function in the cp-demangle.c file, which...

7.5CVSS6AI score0.00323EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/12/29 12:0 a.m.1 views

CVE-2025-66863

An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

6.3AI score0.00323EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.9 views

PT-2025-53759

Name of the Vulnerable Software and Affected Versions BinUtils version 2.26 Description An issue exists in the d discriminator function within the cp-demangle.c file of BinUtils. This can lead to a denial of service when processing specially crafted PE files. Recommendations Update BinUtils to a...

7.5CVSS6.4AI score0.00323EPSS
Exploits1References8
Cvelist
Cvelist
added 2025/12/29 12:0 a.m.42 views

CVE-2025-66863

An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

0.00323EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2025/12/29 12:0 a.m.4 views

CVE-2025-66863

An issue was discovered in function ddiscriminator in file cp-demangle.c in BinUtils 2.26 allows attackers to cause a denial of service via crafted PE file...

7.5CVSS5.5AI score0.00323EPSS
Exploits1
Packet Storm News
Packet Storm News
added 2025/05/17 12:0 a.m.3 views

Facial Recognition Leveraging Generative Adversarial Networks

Face recognition performance based on deep learning heavily relies on large-scale training data, which is often difficult to acquire in practical applications. To address this challenge, this paper proposes a GAN-based data augmentation method with three key contributions: 1 a residual-embedded...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/21 12:0 a.m.2 views

Feature Selection Via GANs (GANFS): Enhancing Machine Learning Models for DDoS Mitigation

Distributed Denial of Service DDoS attacks represent a persistent and evolving threat to modern networked systems, capable of causing large-scale service disruptions. The complexity of such attacks, often hidden within high-dimensional and redundant network traffic data, necessitates robust and...

6.7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/17 12:0 a.m.5 views

ArtistAuditor: Auditing Artist Style Pirate in Text-To-Image Generation Models

Text-to-image models based on diffusion processes, such as DALL-E, Stable Diffusion, and Midjourney, are capable of transforming texts into detailed images and have widespread applications in art and design. As such, amateur users can easily imitate professional-level paintings by collecting an...

7AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/09/02 12:0 a.m.5 views

The vulnerability of the NTLMSSP discriver, an analyzer of computer network traffic by Wireshark, allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the NTLMSSP discriminator and the Wireshark traffic analyzer involves an issue where an operation is executed outside the buffer in memory, as a result of a pointer being reassigned when its validity period has expired. Exploiting this vulnerability allows a remote attacker t...

10CVSS6.8AI score0.00317EPSS
Exploits1References6Affected Software4
Veracode
Veracode
added 2024/07/09 6:16 a.m.19 views

SQL Injection

nhibernate is vulnerable to SQL injection. The vulnerability is due to the lack of proper validation/sanitization of some types implemented from ILiteralType.ObjectToSQLString, allowing attackers to exploit mappings with discriminator values, HQL queries referencing static fields, and the use of...

9.8CVSS7.6AI score0.00578EPSS
Exploits0References5Affected Software1
NVD
NVD
added 2024/07/08 3:15 p.m.39 views

CVE-2024-39677

NHibernate is an object-relational mapper for the .NET framework. A SQL injection vulnerability exists in some types implementing ILiteralType.ObjectToSQLString. Callers of these methods are exposed to the vulnerability, which includes mappings using inheritance with discriminator values; HQL...

9.8CVSS0.00578EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2024/07/08 2:52 p.m.30 views

CVE-2024-39677 NHibernate SQL injection vulnerability in discriminator mappings, static fields referenced in HQL, and some utilities

NHibernate is an object-relational mapper for the .NET framework. A SQL injection vulnerability exists in some types implementing ILiteralType.ObjectToSQLString. Callers of these methods are exposed to the vulnerability, which includes mappings using inheritance with discriminator values; HQL...

5.9CVSS7.7AI score0.00578EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/07/08 2:52 p.m.58 views

CVE-2024-39677 NHibernate SQL injection vulnerability in discriminator mappings, static fields referenced in HQL, and some utilities

NHibernate is an object-relational mapper for the .NET framework. A SQL injection vulnerability exists in some types implementing ILiteralType.ObjectToSQLString. Callers of these methods are exposed to the vulnerability, which includes mappings using inheritance with discriminator values; HQL...

5.9CVSS0.00578EPSS
Exploits0References5
OSV
OSV
added 2024/07/08 2:20 p.m.17 views

GHSA-FG4Q-CCQ8-3R5Q NHibernate SQL injection vulnerability in discriminator mappings, static fields referenced in HQL, and some utilities

Impact A SQL injection vulnerability exists in some types implementing ILiteralType.ObjectToSQLString. Callers of these methods are exposed to the vulnerability, which includes: - Mappings using inheritance with discriminator values: - The discriminator value could be written in the mapping in a...

8.2CVSS8AI score0.00578EPSS
Exploits0References7
Rows per page
Query Builder