Huawei HarmonyOS distributed notification service memory misreference vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A memory misreference vulnerability exists in the Huawei HarmonyOS distributed notification service, which can be exploited by an attacker to cause an...

Malicious code in minitest-distributed (npm)

The package minitest-distributed was found to contain malicious code...

MAL-2025-26440 Malicious code in minitest-distributed (npm)

The package minitest-distributed was found to contain malicious code...

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

NVIDIA Megatron-LM 代码注入漏洞

NVIDIA Megatron-LM is a PyTorch-based distributed training framework from NVIDIA that specializes in training large Transformer language models. NVIDIA Megatron-LM suffers from a code injection vulnerability that originates in a tool component and can be exploited by an attacker to modify the...

Wazuh server remote code execution caused by an unsafe deserialization vulnerability.

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 4.4.0 and prior to version 4.9.1, an unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. DistributedAPI parameters are serialized as JSON and...

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

CVE-2025-50166

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

CVE-2025-50166 Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability

...

CVE-2025-50166 Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability

...

CVE-2025-50166

CVE-2025-50166 affects Windows Distributed Transaction Coordinator (MSDTC). The issue is an integer overflow/wraparound in MSDTC that can lead to information disclosure over the network when exploited by an attacker with low privileges and no user interaction. The CVSS vector (AV:N/AC:L/PR:L/UI:N...

Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability

Integer overflow or wraparound in Windows Distributed Transaction Coordinator allows an authorized attacker to disclose information over a network...

📄 Wazuh Server Remote Code Execution

Wazuh is a free and open source platform used for threat prevention, detection, and response. Starting in version 4.4.0 and prior to version 4.9.1, an unsafe deserialization vulnerability allows for remote code execution on Wazuh servers. DistributedAPI parameters are serialized as JSON and...

PT-2025-32789 · Microsoft · Windows Distributed Transaction Coordinator +1

Name of the Vulnerable Software and Affected Versions: Windows Distributed Transaction Coordinator affected versions not specified Description: An integer overflow or wraparound issue exists in Windows Distributed Transaction Coordinator, potentially allowing an authorized attacker to disclose...

Microsoft Windows 输入验证错误漏洞

Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. An input validation error vulnerability exists in Microsoft Windows Distributed Transaction Coordinator. An attacker could exploit the vulnerability to obtain sensitive information. The...

Developing a Transferable Federated Network Intrusion Detection System

Intrusion Detection Systems IDS are a vital part of a network-connected device. In this paper, we develop a deep learning based intrusion detection system that is deployed in a distributed setup across devices connected to a network. Our aim is to better equip deep learning models against unknown...

CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability...

Apache Seata 安全漏洞

Apache Seata is an open source project from the Apache USA Foundation that provides high-performance and easy-to-use distributed transactional services in a microservices architecture. A security vulnerability exists in Apache Seata version 2.4.0, which stems from deserializing untrustworthy data...

PT-2025-32351 · Apache · Apache Seata

Name of the Vulnerable Software and Affected Versions: Apache Seata incubating version 2.4.0 Description: The software is susceptible to a deserialization of untrusted data issue. Successful exploitation of this issue could allow attackers to execute arbitrary code. The vulnerability impacts...

CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability...