Lucene search
K

17048 matches found

ATTACKERKB
ATTACKERKB
added 2025/12/11 7:11 a.m.1 views

CVE-2025-14512

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values...

6.5CVSS6AI score0.00504EPSS
Exploits0References22
Vulnrichment
Vulnrichment
added 2025/12/11 7:11 a.m.2 views

CVE-2025-14512 Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values...

6.5CVSS6.8AI score0.00504EPSS
Exploits0References21
Cvelist
Cvelist
added 2025/12/11 7:11 a.m.38 views

CVE-2025-14512 Glib: integer overflow in glib gio attribute escaping causes heap buffer overflow

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values...

6.5CVSS0.00504EPSS
Exploits0References21
Debian CVE
Debian CVE
added 2025/12/11 7:11 a.m.5 views

CVE-2025-14512

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values...

6.5CVSS6.7AI score0.00504EPSS
Exploits0
CVE
CVE
added 2025/12/11 7:11 a.m.43 views

CVE-2025-14512

CVE-2025-14512 affects GLib2 (glib2) in IBM Netezza Appliance. The IBM security bulletin confirms a vulnerability in GLib’s GIO escape_byte_string() that can cause a heap-based buffer overflow leading to DoS when processing certain file or remote filesystem attribute values. Remediation: upgrade ...

6.5CVSS6.8AI score0.00504EPSS
Exploits0References21Affected Software1
AlpineLinux
AlpineLinux
added 2025/12/11 7:11 a.m.2 views

CVE-2025-14512

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values...

6.5CVSS5.7AI score0.00504EPSS
Exploits0References21
RedhatCVE
RedhatCVE
added 2025/12/11 7:10 a.m.3 views

CVE-2025-14512

A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output escapebytestring function when processing malicious file or remote filesystem attribute values. Mitigation Mitigation for this issue is eith...

6.5CVSS6.7AI score0.00504EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/11 12:46 a.m.2 views

SUSE CVE-2025-14322

Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...

8.8CVSS7.2AI score0.00276EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

EulerOS 2.0 SP13 : python3 (EulerOS-SA-2025-2508)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself ...

7.5CVSS6.4AI score0.00611EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

EulerOS 2.0 SP11 : python3 (EulerOS-SA-2025-2488)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself ...

7.5CVSS6.4AI score0.00611EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-14372

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use after free in Password Manager in Google Chrome prior to 143.0.7499.110 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML...

6.1CVSS5.9AI score0.00224EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

EulerOS 2.0 SP13 : python3 (EulerOS-SA-2025-2529)

According to the versions of the python3 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : During an address list folding when a separating comma ends up on a folded line and that line is to be unicode-encoded then the separator itself ...

7.5CVSS6.4AI score0.00611EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/12/11 12:0 a.m.7 views

PT-2025-50768

Name of the Vulnerable Software and Affected Versions MaxKB versions prior to 2.4.0 Description MaxKB, an open-source AI assistant for enterprise, contains a flaw in the tool module that allows an attacker to escape the sandbox environment and gain elevated privileges. This occurs under specific...

8.8CVSS6.8AI score0.00272EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-14512

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in glib. This vulnerability allows a heap buffer overflow and denial-of-service DoS via an integer overflow in GLib's GIO GLib Input/Output...

6.5CVSS6.8AI score0.00504EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

EulerOS 2.0 SP13 : busybox (EulerOS-SA-2025-2516)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv0 containing an ANSI terminal escape sequence,...

2.5CVSS5.5AI score0.00238EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

FreeBSD : Mozilla -- Sandbox escape (9a9d50a6-d6a8-11f0-8e1b-b42e991fc52e)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9a9d50a6-d6a8-11f0-8e1b-b42e991fc52e advisory. https://bugzilla.mozilla.org/showbug.cgi?id=1996473 reports: Sandbox escape due to incorrect boundary...

8CVSS5.5AI score0.00276EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/11 12:0 a.m.5 views

MaxKB 竞争条件问题漏洞

MaxKB is a 1Panel-dev open source open source knowledge base question and answer system based on a large language model and RAG. A competitive condition issue vulnerability exists in MaxKB 2.3.1 and earlier versions, which stems from a tool module that allows an attacker to escape the sandbox...

10CVSS6.7AI score0.00272EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.8 views

EulerOS 2.0 SP13 : busybox (EulerOS-SA-2025-2495)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In netstat in BusyBox through 1.37.0, local users can launch of network application with an argv0 containing an ANSI terminal escape sequence,...

2.5CVSS5.5AI score0.00238EPSS
Exploits0References2
AlmaLinux
AlmaLinux
added 2025/12/11 12:0 a.m.4 views

Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free in the WebRTC:...

9.8CVSS7.6AI score0.00498EPSS
Exploits2References22
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.2 views

RockyLinux 10 : firefox (RLSA-2025:23035)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2025:23035 advisory. firefox: Memory safety bugs fixed in Firefox ESR 140.6, Thunderbird ESR 140.6, Firefox 146 and Thunderbird 146 CVE-2025-14333 firefox: Use-after-free i...

9.8CVSS8.7AI score0.00498EPSS
Exploits2References21
Rows per page
Query Builder