CVE-2025-0158

IBM EntireX 11.1 is affected by CVE-2025-0158, which could allow a local user to cause a denial of service due to an unhandled error and faulty isolation. The issue is documented in IBM Security Bulletin noting CWE-248 (Uncaught Exception) and a CVSS base of 5.5 (Medium) from IBM’s assessment. Pu...

CVE-2021-4171

calibre-web is vulnerable to Business Logic Errors...

CVE-2021-4117

yetiforcecrm is vulnerable to Business Logic Errors...

CVE-2021-4111

yetiforcecrm is vulnerable to Business Logic Errors...

SUSE CVE-2023-52924

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: don't skip expired elements during walk There is an asymmetry between commit/abort and preparation phase if the following conditions are met: 1. set is a verdict map "1.2.3.4 : jump foo" 2. timeouts are enabl...

CVE-2021-35126

Memory corruption in DSP service due to improper validation of input parameters in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile...

CVE-2022-29219

Lodestar is a TypeScript implementation of the Ethereum Consensus specification. Prior to version 0.36.0, there is a possible consensus split given maliciously-crafted AttesterSlashing or ProposerSlashing being included on-chain. Because the developers represent uint64 values as native javascript...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2024-25883

CVE-2024-25883 affects the RSD project (rsd-devel) where the mstatus register update in commit 3d13a is incorrect, causing processing errors. The issue is described consistently across multiple databases, with no explicit exploitation details or fixes provided in the connected documents. The CVE ...

IBM ApplinX 安全漏洞

IBM ApplinX is an International Business Machines IBM company focused on converting green screen interfaces into modern web-based applications. A security vulnerability exists in IBM ApplinX. An attacker could exploit the vulnerability to obtain sensitive information when the browser returns a...

IBM EntireX 安全漏洞

IBM EntireX is a versatile middleware solution from International Business Machines IBM designed to facilitate seamless integration between core enterprise applications and modern applications. A security vulnerability exists in IBM EntireX version 11.1 that stems from the presence of unhandled...

PT-2025-5871 · Ibm · Ibm Entirex

Name of the Vulnerable Software and Affected Versions: IBM EntireX version 11.1 Description: The issue could allow a local user to cause a denial of service due to an unhandled error and fault isolation. Recommendations: For IBM EntireX version 11.1, at the moment, there is no information about a...

CVE-2024-25883

The mstatus register in RSD commit 3d13a updates incorrectly, leading to processing errors...

CVE-2022-1848

Business Logic Errors in GitHub repository erudika/para prior to 1.45.11...

CVE-2024-1848

Heap-based Buffer Overflow, Memory Corruption, Out-Of-Bounds Read, Out-Of-Bounds Write, Stack-based Buffer Overflow, Type Confusion, Uninitialized Variable, Use-After-Free vulnerabilities exist in the file reading procedure in SOLIDWORKS Desktop on Release SOLIDWORKS 2024. These vulnerabilities...

Cisco IOS、Cisco IOS XE和Cisco IOS XR 安全漏洞

Cisco IOS, among others, are a set of operating systems developed by Cisco, an American company, for its network devices. A security vulnerability exists in Cisco IOS, Cisco IOS XE, and Cisco IOS XR, which stems from mishandling of errors when parsing requests, which can result in a device reboot...

GO-2025-3437 Argo CD GitOps Engine does not scrub secret values from patch errors in github.com/argoproj/gitops-engine

Argo CD GitOps Engine does not scrub secret values from patch errors in github.com/argoproj/gitops-engine. NOTE: The source advisory for this report contains additional versions that could not be automatically mapped to standard Go module versions. If this is causing false-positive reports from...

GO-2025-3433 Argo CD does not scrub secret values from patch errors in github.com/argoproj/argo-cd

Argo CD does not scrub secret values from patch errors in github.com/argoproj/argo-cd...

CLSA-2025-1738663660 kernel: Fix of 11 CVEs

ELF: fix kernel.randomizevaspace double read CVE-2024-46826 - smb: client: fix UAF in async decryption CVE-2024-50047 - net: do not delay dstentriesadd in dstrelease CVE-2024-50036 - net: atlantic: eliminate double free in error handling logic CVE-2023-52664 - smb: client: fix potential UAF in...

IBM Security Verify Access 安全漏洞

IBM Security Verify Access ISAM is a service from International Business Machines IBM that improves user access security. A security vulnerability exists in the IBM Security Verify Access Appliance, which stems from a vulnerability that could allow a remote attacker to gain access to sensitive...