UBUNTU-CVE-2025-60495

A segmentation violation in the gfmediagetcolorinfo function /mediatools/isomtools.c of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Denial of Service DoS via supplying a crafted data file...

EUVD-2026-25967

A vulnerability was identified in eghuzefa engineer-your-data up to 0.1.3. This vulnerability affects the function readfile/writefile/listfiles/fileinf of the file src/server.py. The manipulation of the argument WORKSPACEPATH leads to path traversal. The attack may be initiated remotely. The...

CVE-2025-70084

Directory traversal vulnerability in OpenSatKit 2.2.1 allows attackers to gain access to sensitive information or delete arbitrary files via crafted value to the FileUtilGetFileInfo function...

SUSE CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

Radare2 安全漏洞

Radare2 is a Libre reverse framework open-sourced by Radare for Unix geeks. A security vulnerability exists in Radare2 6.0.5 and earlier versions, which stems from a null pointer dereference in the info function in binne.c, which could lead to a segmentation error and denial of service...

PT-2025-47008

Name of the Vulnerable Software and Affected Versions radare2 versions 6.0.5 and earlier Description A flaw exists in radare2 where a specially crafted binary input can cause a segmentation fault due to a NULL pointer dereference within the info function of the bin ne.c file. This can lead to a...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

CVE-2025-63745

A NULL pointer dereference vulnerability was discovered in radare2 6.0.5 and earlier within the info function of binne.c. A crafted binary input can trigger a segmentation fault, leading to a denial of service when the tool processes malformed data...

PT-2025-46188

Name of the Vulnerable Software and Affected Versions Tenda AX3 version 16.03.12.10 CN Description The Tenda AX3 router contains a stack overflow in the urls parameter of the get parentControl list Info function. A crafted request can lead to a Denial of Service DoS. Recommendations At the moment...

Linux Distros Unpatched Vulnerability : CVE-2023-34824

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fdkaac before 1.0.5 was discovered to contain a heap buffer overflow in cafinfo function in cafreader.c. CVE-2023-34824 Note that Nessus relies on the presence ...

CVE-2024-29413

Cross Site Scripting vulnerability in Webasyst v.2.9.9 allows a remote attacker to run arbitrary code via the Instant messenger field in the Contact info function...

CVE-2022-43044

GPAC 2.1-DEV-rev368-gfd054169b-master was discovered to contain a segmentation violation via the function gfisomgetmetaiteminfo at /isomedia/meta.c...

Tenda AC8 get_parentControl_list_Info function buffer overflow vulnerability

Tenda AC8 is a wireless router from Tenda, a Chinese company. The Tenda AC8 suffers from a buffer overflow vulnerability that originates from a boundary error in the getparentControllistInfo function when handling untrusted input. No detailed vulnerability details are provided at this time...

PT-2025-2445 · Wavlink · Wavlink Ac3000

Name of the Vulnerable Software and Affected Versions: Wavlink AC3000 version M33A8.V5030.210505 Description: A buffer overflow issue exists in the set info functionality of usbip.cgi. This can be triggered by a specially crafted HTTP request, leading to a stack-based buffer overflow. An attacker...

WAVLINK AC3000 安全漏洞

WAVLINK AC3000 is a wireless router from China Ruiyin WAVLINK. A buffer overflow vulnerability exists in the WAVLINK AC3000, which is caused by the usbip.cgi setinfo function failing to properly validate the length of the input data, and can be exploited to execute arbitrary code or cause a denia...

netfilter: Fix use-after-free in get_info()

...