UBUNTU-CVE-2025-7424

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of...

CVE-2025-7424

A flaw was found in the libxslt library. The same memory field, psvi, is used for both stylesheet and input data, which can lead to type confusion during XML transformations. This vulnerability allows an attacker to crash the application or corrupt memory. In some cases, it may lead to denial of...

HDF5 src/H5Centry.c file buffer overflow vulnerability

HDF5 is a library of HDF open source . HDF5 version 1.14.6 there is a buffer overflow vulnerability , the vulnerability stems from the file src/H5Centry.c function H5Cflushsingleentry fails to correctly validate the length of the input data size , a remote attacker can use this vulnerability on t...

Tenda AC5 Stack Buffer Overflow Vulnerability

Tenda AC5 is a wireless router from Tenda, a Chinese company. The Tenda AC5 suffers from a stack buffer overflow vulnerability that originates from the failure of the parameters schedStartTime and schedEndTime in the file /goform/openSchedWifi to properly validate the length of the input data,...

The vulnerability of the FactoryTalk Linx automation system’s software, related to insufficient verification of input data, allows a intruder to trigger a service failure.

The vulnerability of the FactoryTalk Linx automation system’s software is related to insufficient verification of input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions by sending a malicious package...

Autel MaxiCharger AC Wallbox Commercial 安全漏洞

Autel MaxiCharger AC Wallbox Commercial is a smart AI electric car charger from Autel USA. The Autel MaxiCharger AC Wallbox Commercial suffers from a buffer overflow vulnerability that stems from the DLBSlaveRegister message failing to properly validate the length size of the input data, which ca...

The vulnerability of the distribution and transaction performance-enhancement software in the Apache Seata microservice architecture arises from incorrect processing of highly compressed input data. This allows attackers to cause service failures.

The vulnerability of distribution software and the inability to improve transaction performance in the Apache Seata microservices architecture is related to incorrect processing of highly compressed input data. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

TOTOLINK EX1200T /boafrm/formNtp File Buffer Overflow Vulnerability

The TOTOLINK EX1200T is a Wi-Fi range extender from China's Gion Electronics TOTOLINK. The TOTOLINK EX1200T suffers from a buffer overflow vulnerability, which originates from the failure of the parameter submit-url in the file /boafrm/formNtp to correctly validate the length and size of the inpu...

The vulnerability of GE Vernova Intelligent Electronic Devices (IEDs) from the UR series, related to insufficient verification of input data, allows intruders to circumvent existing security restrictions.

The vulnerability of GE Vernova Intelligent Electronic Devices IEDs from the UR series is related to insufficient verification of input data. Exploiting this vulnerability can allow an attacker operating remotely to circumvent existing security restrictions...

Emission Impossible: Privacy-Preserving Carbon Emissions Claims

Information and Communication Technologies ICT have a significant climate impact, and data centres account for a large proportion of the carbon emissions from ICT. To achieve sustainability goals, it is important that all parties involved in ICT supply chains can track and share accurate carbon...

ROS-20250619-17

Vulnerability of CompressorStreamFactory, TarArchiveInputStream and TarFile classes of Apache Commons archiver Compress is related to uncontrolled resource consumption as a result of insufficient input data validation when processing TAR archive headers. Exploitation of the vulnerability could...

The vulnerability of the Android operating system, related to insufficient validation of input data, allows attackers to escalate their privileges.

The vulnerability of the Android operating system is related to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to increase their privileges...

Tenda CH22 Buffer Overflow Vulnerability

Tenda CH22 is a network device from Tenda, China. The Tenda CH22 suffers from a buffer overflow vulnerability that originates from the parameter page in the file /goform/Natlimit that fails to properly validate the length of the input data, which can be exploited by an attacker to execute arbitra...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14376)

FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server, which stems from the XCWD Command Handler component failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

FreeFloat FTP Server Buffer Overflow Vulnerability (CNVD-2025-14372)

FreeFloat FTP Server is an FTP service from FreeFloat. A buffer overflow vulnerability exists in FreeFloat FTP Server, which stems from the REIN Command Handle component failing to properly validate the length size of input data, no details of the vulnerability are provided at this time...

Tenda AC8 /goform/WifiExtraSet File Buffer Overflow Vulnerability

Tenda AC8 is a wireless router from Tenda, a Chinese company. Tenda AC8 suffers from a buffer overflow vulnerability, which originates from the parameter wpapskcrypto in the file /goform/WifiExtraSet that fails to correctly validate the length and size of the input data, which can be exploited by...

The vulnerability of the “Sotbit: Multiregionality” plugin, which stems from insufficient validation of input data, allows attackers to execute arbitrary code.

The vulnerability of the “Sotbit: Multiregionality” plugin is related to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

TOTOLINK X15 Router Stack Buffer Overflow Vulnerability

TOTOLINK X15 is a network wireless extender from China's Gion Electronics TOTOLINK. The TOTOLINK X15 suffers from a stack buffer overflow vulnerability. The vulnerability originates from the /boafrm/formMapReboot file, which does not perform strict length checking and boundary handling of input...

Towards Lifecycle Unlearning Commitment Management: Measuring Sample-Level Unlearning Completeness

Growing concerns over data privacy and security highlight the importance of machine unlearning--removing specific data influences from trained models without full retraining. Techniques like Membership Inference Attacks MIAs are widely used to externally assess successful unlearning. However,...

The vulnerability of the gfs2 component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the gfs2 component in Linux operating systems is related to incorrect validation of input data. Exploiting this vulnerability can allow an attacker to cause a system failure...