Mattermost Input Validation Error Vulnerability (CNVD-2025-22091)

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an input validation error vulnerability that stems from an unvalidated redirectto parameter, which can be exploited by an attacker to cause theft of a user's cookie via a...

NVIDIA Triton Inference Server 输入验证错误漏洞

NVIDIA Triton Inference Server is an open source software from NVIDIA that helps standardize model deployment and deliver fast and scalable AI in production. NVIDIA Triton Inference Server suffers from an input validation error vulnerability that originates from loading a misconfigured model, whi...

Mattermost 安全漏洞

Mattermost is an open source collaboration platform from Mattermost, Inc. in the United States. Mattermost suffers from an input validation error vulnerability that stems from an unvalidated redirectto parameter, which can be exploited by an attacker to cause theft of a user's cookie via a...

Liferay Portal和Liferay DXP 输入验证错误漏洞

Liferay Portal and Liferay DXP are both products of Liferay, Inc.Liferay Portal is a J2EE based portal solution. The solution uses technologies such as EJB as well as JMS and can be used as a Web publishing and sharing workspace, enterprise collaboration platform, social network, etc. Liferay DXP...

Adobe Experience Manager Input Validation Error Vulnerability (CNVD-2025-21156)

Adobe Experience Manager is a content management solution from Adobe designed to help organizations efficiently create, manage and deliver cross-channel content while integrating business solutions to enhance the customer experience. An input validation error vulnerability exists in Adobe...

Adobe Experience Manager Input Validation Error Vulnerability (CNVD-C-2025-521942)

Adobe Experience Manager is a content management solution from Adobe designed to help organizations efficiently create, manage and deliver cross-channel content while integrating business solutions to enhance the customer experience. An input validation error vulnerability exists in Adobe...

Freshworks Platform 输入验证错误漏洞

Freshworks Platform is a customer service software platform from Freshworks USA. An input validation error vulnerability exists in Freshworks Platform versions 1.2.3 and earlier, which stems from an open redirect due to a misbehavior of file/api/v2/logout with respect to the parameter...

Microsoft Hyper-V 输入验证错误漏洞

Microsoft Hyper-V is an application from Microsoft Corporation USA. A system hypervisor virtualization technology that enables desktop virtualization. An input validation error vulnerability exists in Microsoft Hyper-V. An attacker exploiting this vulnerability could elevate privileges. The...

Microsoft Windows Kernel 输入验证错误漏洞

Microsoft Windows Kernel is the kernel of the Windows operating system from Microsoft Corporation USA. An input validation error vulnerability exists in Microsoft Windows Kernel. An attacker can exploit the vulnerability to elevate privileges. The following products and versions are...

Microsoft Windows Routing and Remote Access Service 输入验证错误漏洞

Microsoft Windows Routing and Remote Access Service is a network service from Microsoft Corporation USA that is used to implement features such as network routing, virtual private networks VPNs, and dial-up connections. An input validation error vulnerability exists in Microsoft Windows Routing a...

Adobe Substance3D Modeler 输入验证错误漏洞

Adobe Substance3D Modeler is a 3D modeling software from the American company Audobee Adobe. A code execution vulnerability exists in Adobe Substance3D Modeler, which is caused due to an integer overflow error. An attacker can exploit this vulnerability to execute code on the system or cause the...

Adobe Experience Manager 输入验证错误漏洞

Adobe Experience Manager is a content management solution from Adobe designed to help organizations efficiently create, manage and deliver cross-channel content while integrating business solutions to enhance the customer experience. An input validation error vulnerability exists in Adobe...

Adobe Experience Manager 输入验证错误漏洞

Adobe Experience Manager is a content management solution from Adobe designed to help organizations efficiently create, manage and deliver cross-channel content while integrating business solutions to enhance the customer experience. An input validation error vulnerability exists in Adobe...

Adobe Experience Manager 输入验证错误漏洞

Adobe Experience Manager is a content management solution from Adobe designed to help organizations efficiently create, manage and deliver cross-channel content while integrating business solutions to enhance the customer experience. An input validation error vulnerability exists in Adobe...

Microsoft Windows Local Security Authority Subsystem Service 输入验证错误漏洞

The Microsoft Windows Local Security Authority Subsystem Service is an internal program of Microsoft Corporation USA that runs Windows system security policies. It verifies user identity, manages user password changes, and generates access characters when a user logs on to a computer standalone o...

CVE-2025-36903

CVE-2025-36903 affects the lwis_io_buffer_write path (lwis) with an out-of-bounds read/write caused by insufficient input validation. The issue enables local elevation of privilege without extra execution privileges or user interaction (per the CVE description and corroborating sources). Public r...

Google Android 安全漏洞

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability due to incorrect input validation in the getCallingAppName function in Shared.java, which results in a user granting file access via deceptive text in the...

Next.js 输入验证错误漏洞

Next.js is a React framework open-sourced by Vercel. An input validation error vulnerability exists in Next.js versions prior to 14.2.31 and 15.0.0 through 15.4.5, which stems from content injection of the image optimization feature and could lead to a phishing attack...

libbiosig input validation error vulnerability (CNVD-2025-20232)

libbiosig is BioSig Project open source an open source software library for biomedical signal processing . With biological signal analysis functions. libbiosig has an input validation error vulnerability , the vulnerability stems from the ABF parsing function fails to correctly validate the user...

Basecamp 输入验证错误漏洞

Basecamp is a project management software from Basecamp, Inc. An input validation error vulnerability exists in Basecamp versions prior to 1.3.0 that stems from improper URL validation and could lead to redirection attacks...