ROS-20250212-02

Open Asset Import Library Assimp 3D model import library vulnerability is related to heap buffer overflow. heap buffer overflow. Exploitation of the vulnerability could allow an attacker to cause a denial of service Vulnerability of OpenDDDLParser::parseStructure function of 3D models import...

The vulnerability of the Linux operating system’s kernel, related to synchronization errors, allows a hacker to cause a service failure.

The vulnerability of the Linux operating system’s kernel is related to synchronization errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the ext4 kernel component in the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the ext4 kernel component in Linux operating systems is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a system failure...

CVE-2025-0588

In affected versions of Octopus Server it was possible for a user with sufficient access to set custom headers in all server responses. By submitting a specifically crafted referrer header the user could ensure that all subsequent server responses would return 500 errors rendering the site mostly...

SUSE CVE-2025-21690

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooti...

PT-2025-6319 · Microsoft · Windows Ldap +1

Name of the Vulnerable Software and Affected Versions: Windows Lightweight Directory Access Protocol LDAP affected versions not specified Description: The issue is related to the implementation of the Lightweight Directory Access Protocol LDAP in Windows, caused by synchronization errors when usi...

AZL-56949 CVE-2025-21690 affecting package kernel for versions less than 5.15.180.1-1

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Ratelimit warning logs to prevent VM denial of service If there's a persistent error in the hypervisor, the SCSI warning for failed I/O can flood the kernel log and max out CPU utilization, preventing troubleshooti...

The vulnerability of the sclp_init() function (drivers/s390/char/sclp.c) in the Linux operating system allows a malicious actor to cause a service failure.

The vulnerability of the sclpinit function drivers/s390/char/sclp.c in the Linux operating system kernel is related to resource management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2024-38412

Memory corruption while invoking IOCTL calls from user-space to kernel-space to handle session errors...

The vulnerability of iCloud’s service for macOS operating systems, related to errors in the use of standard permissions, allows a perpetrator to execute arbitrary code.

The vulnerability of the iCloud service for macOS operating systems is related to errors in the use of standard permissions. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

FreeBSD : mozilla -- multiple vulnerabilities (20485d27-e540-11ef-a845-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the 20485d27-e540-11ef-a845-b42e991fc52e advisory. [email protected] reports: A bug in WebAssembly code generation could have lead to a crash...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2025-0158

IBM EntireX 11.1 is affected by CVE-2025-0158, which could allow a local user to cause a denial of service due to an unhandled error and faulty isolation. The issue is documented in IBM Security Bulletin noting CWE-248 (Uncaught Exception) and a CVSS base of 5.5 (Medium) from IBM’s assessment. Pu...

CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...

CVE-2021-4111

yetiforcecrm is vulnerable to Business Logic Errors...

SUSE CVE-2023-52924

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: don't skip expired elements during walk There is an asymmetry between commit/abort and preparation phase if the following conditions are met: 1. set is a verdict map "1.2.3.4 : jump foo" 2. timeouts are enabl...

CVE-2021-35126

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-29219

Lodestar is a TypeScript implementation of the Ethereum Consensus specification. Prior to version 0.36.0, there is a possible consensus split given maliciously-crafted AttesterSlashing or ProposerSlashing being included on-chain. Because the developers represent uint64 values as native javascript...