The vulnerability of the Framework component in Android operating systems, which allows a hacker to increase their privileges

The vulnerability of the Framework component in Android operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.

The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.

The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of Android operating systems, related to insufficient validation of input data, allows attackers to escalate their privileges.

The vulnerability of Android operating systems is related to insufficient checking of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

PT-2025-3400 · Classcms · Classcms

Name of the Vulnerable Software and Affected Versions: ClassCMS version 4.8 Description: The issue is related to Cross Site Scripting XSS in the class/admin/channel.php file. This allows for potential malicious script injection. Recommendations: For ClassCMS version 4.8, consider restricting acce...

The vulnerability of the RPM-based build system, related to improper elimination of input data during the generation of web pages, allows for cross-site scripting attacks (XSS).

The vulnerability of the RPM-based build system is related to the improper elimination of input data during the generation of web pages. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks XSS...

The vulnerability of the GSL mathematical library, related to copying buffers without checking the input data, allows a violator to trigger a service failure.

The vulnerability of the GSL mathematical library relates to the copying of buffers without checking the input data. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the PowerDNS Recursor DNS server, related to insufficient validation of input data, allows attackers to trigger a service failure.

The vulnerability of the PowerDNS Recursor DNS server is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

CVE-2025-24336

SXF Common Library handles input data improperly. If a product using the library reads a crafted file, the product may be crashed...

CVE-2025-24336

SXF Common Library handles input data improperly. If a product using the library reads a crafted file, the product may be crashed...

The vulnerability of Opigno’s Drupal CMS system lies in errors during the processing of input data during syntax analysis, allowing attackers to execute arbitrary code.

The vulnerability of Opigno’s Drupal CMS system is related to errors in data processing during syntax analysis of code. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

PT-2025-4005 · Cesanta · Cesanta Frozen

Name of the Vulnerable Software and Affected Versions: Cesanta Frozen versions prior to 1.7 Description: A NULL Pointer Dereference vulnerability allows an attacker to induce a crash of the component embedding the library by supplying a maliciously crafted JSON as input. Recommendations: For...

The vulnerability of the interface of Siglent SDS1104X-E digital oscilloscopes’ microprogramming software allows a perpetrator to execute arbitrary code.

The vulnerability of the SCPI interface of Siglent SDS1104X-E digital oscilloscopes lies in the lack of authentication due to insufficient verification of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

ROS-20250123-01

Vulnerability of RDMA/restrack components of Linux operating system kernel is related to incorrect verification of the input data in the rdmarestrackinit and type2str functions in drivers/infiniband/core/restrack.c. Exploitation of the vulnerability could allow an attacker to cause a denial of...

The vulnerability of the InnoDB component of the Oracle MySQL Server database management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the Oracle MySQL Server database management system is related to deficiencies in the authentication process due to incorrect processing of input data. Exploiting this vulnerability can allow an attacker to cause service interruptions...

Fuji Electric Alpha5 SMART Stack Buffer Overflow Vulnerability

The Fuji Electric Alpha5 SMART is a high-performance AC servo system designed for high-speed and high-precision control. A stack buffer overflow vulnerability exists in the Fuji Electric Alpha5 SMART. The vulnerability is due to the system failing to perform proper boundary checks on input data...

Ubuntu 22.04 LTS / 24.04 LTS / 24.10 : .NET vulnerabilities (USN-7210-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 24.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7210-1 advisory. It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly u...

USN-7210-1 dotnet8, dotnet9 vulnerabilities

It was discovered that .NET did not properly handle input provided to its Convert.TryToHexString method. An attacker could possibly use this issue to execute arbitrary code. CVE-2025-21171 It was discovered that .NET did not properly handle an integer overflow when processing certain specially...

CVE-2024-29980

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Phoenix SecureCore™ for Intel Ice Lake allows Input Data Manipulation.This issue affects SecureCore™...

CVE-2024-29979

Improper Check for Unusual or Exceptional Conditions vulnerability in Phoenix SecureCore™ for Intel Kaby Lake, Phoenix SecureCore™ for Intel Coffee Lake, Phoenix SecureCore™ for Intel Comet Lake, Phoenix SecureCore™ for Intel Ice Lake allows Input Data Manipulation.This issue affects SecureCore™...