1477 matches found
UBUNTU-CVE-2025-9288
Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...
CVE-2025-9288
Improper Input Validation vulnerability in sha.js allows Input Data Manipulation.This issue affects sha.js: through 2.4.11...
CVE-2025-9287 Missing type checks leading to hash rewind and passing on crafted data
Improper Input Validation vulnerability in cipher-base allows Input Data Manipulation.This issue affects cipher-base: through 1.0.4...
PT-2025-34165
Name of the Vulnerable Software and Affected Versions sha.js versions through 2.4.11 Description An improper input validation vulnerability exists in sha.js, allowing for input data manipulation. This flaw can lead to hash collisions and potentially private key extraction, threatening web...
PT-2025-34162
Name of the Vulnerable Software and Affected Versions: cipher-base versions through 1.0.4 Description: An improper input validation issue exists in cipher-base, allowing input data manipulation. This is due to missing input type checks, which can lead to invalid value calculations, hash state...
Linux Distros Unpatched Vulnerability : CVE-2025-38254
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add sanity checks for drmedidraw When EDID is retrieved via drmedidraw, it...
ROS-20250807-05
The vulnerability of the RESTEasy software tool is related to incorrect input data validation, leading to the return of an invalid header that is integrated into the server response. Exploitation of the vulnerability could Allow an attacker acting remotely to execute arbitrary code A vulnerabilit...
CVE-2025-8534
A flaw was found in libtiff. The PSLvl2page function in tiff2ps.c exhibits a null pointer dereference due to improper handling of input data, potentially allowing a local attacker to trigger a denial of service via a crafted file. This manipulation results in the program attempting to access...
Microsoft Edge browser’s vulnerability, related to insufficient validation of input data, allows attackers to escalate their privileges.
The vulnerability of Microsoft Edge is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...
The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to damage memory
The vulnerability of the Linux operating system’s kernel Wi-Fi component is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability can allow an attacker to damage memory resources...
The vulnerability of the apcli_do_enr_pbc_wps function in the Netgear RAX5 router’s built-in software allows a hacker to execute arbitrary commands.
The vulnerability of the apclidoenrpbcwps function in Netgear RAX5 router’s built-in software is related to the lack of measures for cleaning input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...
The system’s vulnerability for analysis and monitoring of production in PROTECH, due to insufficient verification of input data, allows a perpetrator to execute arbitrary codes and increase their privileges.
The system’s vulnerability for analysis and monitoring of PROTECH production exists due to insufficient verification of input data. Exploiting this vulnerability allows a malicious actor to execute arbitrary code and gain increased privileges...
IrfanView CADImage Plugin 缓冲区错误漏洞
IrfanView CADImage Plugin is a CAD plugin from IrfanView. IrfanView CADImage Plugin suffers from a buffer overflow vulnerability that stems from a lack of validation of user data when parsing DXF files, which can be exploited by an attacker to execute code in the context of the current process...
The vulnerability of the Django web application software, related to insufficient validation of input data, allows attackers to trigger service failures.
The vulnerability of the Django web application framework is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...
CVE-2025-3947
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...
CVE-2025-3947 Integer underflow during processing of short network packets in CDA FTEB responder
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...
CVE-2025-3947 Integer underflow during processing of short network packets in CDA FTEB responder
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...
CVE-2025-3947
The CVE-2025-3947 issue affects Honeywell Experion PKS CDA (Control Data Access) with an integer underflow, enabling input data manipulation that could cause denial of service. Affected products include C300 PCNT02/05, FIM4/8, UOC, CN100, HCA, C300PM, C200E; affected PKS versions are 520.1–520.2 ...
CVE-2025-3946 Incorrect response generation during FTEB protocol processing
The Honeywell Experion PKS and OneWireless WDM contains a Deployment of Wrong Handler vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in incorrect handling of packets leading t...
CVE-2025-3946
CVE-2025-3946 affects Honeywell Experion PKS and OneWireless WDM. A Deployment of Wrong Handler in the Control Data Access (CDA) can cause Input Data Manipulation and potentially remote code execution. Affected: Experion PKS on 520.1–520.2 TCU9 and 530–530 TCU3; OneWireless WDM on 322.1–322.4 and...