4484 matches found
Calibre 安全漏洞
Calibre is an open source free all-in-one eBook reading management and format conversion tool. An input validation error vulnerability exists in Calibre 8.13.0 and earlier versions, which stems from handling binary resources in FB2 files without validating the filename, and can be exploited by an...
CVE-2025-10259
Improper Validation of Specified Quantity in Input vulnerability in TCP Communication Function on Mitsubishi Electric Corporation MELSEC iQ-F Series CPU module allows a remote attacker to disconnect the connection by sending specially crafted TCP packets to cause a denial-of-service DoS condition...
Red Hat Single Sign-On 输入验证错误漏洞
Red Hat Single Sign-On is an authentication and access control system from Red Hat USA. The tool is responsible for authentication and access control functions for systems that support most authentication protocols Oauth, OpenId Connect, etc., and can easily integrate with most products such as...
CVE-2025-10259
The vulnerability CVE-2025-10259 affects Mitsubishi Electric MELSEC iQ-F Series CPU module. In the TCP communication function, improper validation of the specified quantity in input can allow a remote attacker to disconnect the targeted connection by sending specially crafted TCP packets, causing...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which arises from a memory corruption when processing large input data from a communication interface from a remote source...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that stems from a memory corruption when processing audio streaming operations...
Qualcomm Chipsets 输入验证错误漏洞
Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when an out-of-range identifier is used to trigger a subsystem crash...
Movary 输入验证错误漏洞
Movary is a movie review program by Lee Peuker Personal Developer. An input validation error vulnerability exists in Movary versions prior to 0.69.0, which stems from the login page not validating the redirection parameter, which could lead to a redirection attack...
GIMP 输入验证错误漏洞
GIMP is an open source bitmap image editor from the GIMP team. An input validation error vulnerability exists in GIMP that stems from a lack of proper validation of user-supplied data when parsing FF files, which could lead to an integer overflow and remote code execution...
Plane 输入验证错误漏洞
Plane is an open source, self-hosted project planning tool from Plane Open Source. An input validation error vulnerability exists in Plane versions prior to 1.1.0, which stems from the nextpath parameter allowing the passing of an arbitrary scheme that could lead to a cross-site scripting attack...
Veeder-Root TLS4B Automatic Tank Gauge System 输入验证错误漏洞
Veeder-Root TLS4B Automatic Tank Gauge System is a security management system for gas stations, tank farms, or industrial storage tanks from Veeder-Root USA. An input validation error vulnerability exists in the Veeder-Root TLS4B Automatic Tank Gauge System, which stems from improper handling of...
MOLGENIS EMX2 输入验证错误漏洞
MOLGENIS EMX2 is a MOLGENIS open source data platform. An input validation error vulnerability exists in MOLGENIS EMX2 version v11.14.0 that stems from the manipulation of redirection parameters that could create malicious URLs, potentially causing users to be redirected to phishing websites or...
Siemens SIMATIC Devices Improper Input Validation (CVE-2025-21806)
net: let net.core.devweight always be non-zero. The following problem was encountered during stability test: NULL netdevice. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...
ZenML Input Validation Error Vulnerability
ZenML is an extensible open source MLOps framework from ZenML Open Source for creating portable, production-ready machine learning pipelines. An input validation error vulnerability exists in ZenML version 0.83.1, which stems from the failure of the PathMaterializer class to effectively detect...
Adobe Dimension Input Validation Error Vulnerability (CNVD-2025-24213)
Adobe Dimension is the United States of America Odo than Adobe company is a set of 2D and 3D composite design tools. An input validation error vulnerability exists in Adobe Dimension, which can be exploited by an attacker to cause arbitrary code execution in the current user environment...
ImageMagick 输入验证错误漏洞
ImageMagick is a suite of open source image processing software from ImageMagick Open Source. It can read, convert or write images in many formats. An input validation error vulnerability exists in ImageMagick versions prior to 7.1.2-7 and prior to 6.9.13-32, which stems from an integer overflow...
Adobe Substance3D Stager 输入验证错误漏洞
Adobe Substance3D Stager is a set and rendering software for 3D scenes from Audobee Adobe USA. An input validation error vulnerability exists in Adobe Substance3D Stager 3.1.4 and prior versions, which stems from an integer overflow or wrap-around error that could lead to the execution of arbitra...
Microsoft Exchange Server 输入验证错误漏洞
Microsoft Exchange Server is the United States Microsoft Microsoft company's set of e-mail service program. It provides e-mail access, storage, forwarding, voice mail, e-mail filtering and screening. A spoofing vulnerability exists in Microsoft Exchange Server, which can be exploited by attackers...
Microsoft Windows 输入验证错误漏洞
Microsoft Windows is a suite of operating systems used by Microsoft Corporation USA for personal devices. Microsoft Windows suffers from an input validation error vulnerability that stems from an attacker's ability to elevate privileges by exploiting the vulnerability...
Adobe Substance3D Stager 输入验证错误漏洞
Adobe Substance3D Stager is a set and rendering software for 3D scenes from Audobee Adobe USA. An input validation error vulnerability exists in Adobe Substance3D Stager 3.1.4 and prior versions, which stems from an integer overflow or wrap-around error that could lead to the execution of arbitra...