294 matches found
CVE-2022-43171
A heap buffer overflow in the LIEF::MachO::BinaryParser::parsedyldinfogenericbind function of LIEF v0.12.1 allows attackers to cause a Denial of Service DoS via a crafted MachO file...
CVE-2020-9876
An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in iOS 13.6 and iPadOS 13.6, macOS Catalina 10.15.6, tvOS 13.4.8, watchOS 6.2.8, iTunes 12.10.8 for Windows, iCloud for Windows 11.3, iCloud for Windows 7.20. Opening a maliciously crafted PDF file may...
Picklescan missing detection when calling built-in python library function timeit.timeit()
Summary Using timeit.timeit function, which is a built-in python library function to execute remote pickle file. Details Pickle’s deserialization process is known to allow execution of function via reduce method. While Picklescan is meant to detect such exploits, this attack evades detection by...
CVE-2025-2258 Eclipse ThreadX NetX Duo HTTP server single PUT request integer underflow
In NetX Duo component HTTP server functionality of Eclipse ThreadX NetX Duo before version 6.4.3, an attacker can cause an integer underflow and a subsequent denial of service by writing a very large file, by specially crafted packets with Content-Length smaller than the data request size. A...
CVE-2025-29493
CVE-2025-29493 affects libming v0.4.8. The vulnerability is a segmentation fault inside the decompileGETPROPERTY function, enabling Denial of Service (DoS) when processing a crafted SWF file. Connected documents corroborate the same description across multiple sources; no patch/mitigation details...
CVE-2025-29491
The CVE concerns libming v0.48 with an allocation-size-too-big error in parseSWF_DEFINEBINARYDATA, enabling DoS via crafted SWF files. Affected component: libming (C language library for SWF). Root cause: allocation size oversize in the parsing path. Impact: Denial of Service; no explicit exploit...
CVE-2024-41147
Miniaudio n/a: CVE-2024-41147 affects Miniaudio v0.11.21. The flaw is an out-of-bounds write in ma_dr_flac__decode_samples__lpc triggered by a specially crafted FLAC file, causing memory corruption during playback. Talos reports the issue and notes vendors patched it in their advisories; no explo...
Security Bulletin: Vulnerability in logback affects IBM Storage Insights
Summary logback is vulnerable to forging requests, arbitrary code execution, These vulnerabilities affect IBM Storage Insights. Vulnerability Details CVEID:CVE-2024-12801 DESCRIPTION: Server-Side Request Forgery SSRF in SaxEventRecorder by QOS.CH logback version 0.1 to 1.3.14 and 1.4.0 to 1.5.12 ...
Linux Distros Unpatched Vulnerability : CVE-2017-15939
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.29, mishandles NULL files in a .debugline file table, which allo...
Linux Distros Unpatched Vulnerability : CVE-2015-3156
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The writeconfig function in trove/guestagent/datastore/experimental/mongodb/service.py, resetconfiguration function in...
CVE-2025-26306
CVE-2025-26306 describes a memory leak in libming v0.4.8: the readSizedString function in util/read.c can fail to free memory, enabling a denial of service via a crafted input file. The CVE is referenced with a CVSS score of 6.5 (Network access, Low attack complexity, No privileges, User interact...
CVE-2025-26306
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file...
CVE-2025-26306
A memory leak has been identified in the readSizedString function in util/read.c of libming v0.4.8, which allows attackers to cause a denial of service via a crafted file...
CVE-2022-37362
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
CVE-2020-6151
A memory corruption vulnerability exists in the TIFF handleCOMPRESSIONPACKBITS functionality of Accusoft ImageGear 19.7. A specially crafted malformed file can cause a memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2024-49849
A vulnerability has been identified in SIMATIC S7-PLCSIM V16 All versions, SIMATIC S7-PLCSIM V17 All versions, SIMATIC STEP 7 Safety V16 All versions, SIMATIC STEP 7 Safety V17 All versions V17 Update 9, SIMATIC STEP 7 Safety V18 All versions, SIMATIC STEP 7 Safety V19 All versions V19 Update 4,...
CVE-2024-8374
UltiMaker Cura slicer versions 5.7.0-beta.1 through 5.7.2 are vulnerable to code injection via the 3MF format reader /plugins/ThreeMFReader.py. The vulnerability arises from improper handling of the droptobuildplate property within 3MF files, which are ZIP archives containing the model data. When...
AZL-56075 CVE-2024-45339 affecting package vitess for versions less than 17.0.7-4
When logs are written to a widely-writable directory the default, an unprivileged attacker may predict a privileged process's log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that...
dotnet: .NET Elevation of Privilege Vulnerability
An elevation of privilege vulnerability was found in .NET. This flaw allows an attacker to write a specially crafted file in the security context of the local system...
dotnet: .NET Elevation of Privilege Vulnerability
An elevation of privilege vulnerability was found in .NET. This flaw allows an attacker to write a specially crafted file in the security context of the local system...