CVE-2025-61826 Illustrator on iPad | Integer Underflow (Wrap or Wraparound) (CWE-191)

Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-61836 Illustrator on iPad | Integer Underflow (Wrap or Wraparound) (CWE-191)

Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-61836 Illustrator on iPad | Integer Underflow (Wrap or Wraparound) (CWE-191)

Illustrator on iPad versions 3.0.9 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

CVE-2025-61836

CVE-2025-61836 affects Adobe Illustrator on iPad, vulnerable in versions 3.0.9 and earlier due to an Integer Underflow (wrap/wraparound) that can lead to arbitrary code execution in the current user context. Exploitation requires user interaction (victim must open a malicious file). Remediation: ...

kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

PT-2025-46547

Name of the Vulnerable Software and Affected Versions Substance3D - Stager versions 3.1.5 and earlier Description An Integer Underflow Wrap or Wraparound issue exists in Substance3D - Stager. Successful exploitation could lead to arbitrary code execution with the privileges of the current user...

PT-2025-46493

Name of the Vulnerable Software and Affected Versions Illustrator on iPad versions 3.0.9 and earlier Description Illustrator on iPad versions 3.0.9 and earlier are susceptible to an Integer Underflow vulnerability. Successful exploitation of this issue could lead to arbitrary code execution withi...

Adobe Illustrator on iPad 数字错误漏洞

Adobe Illustrator on iPad is a set of vector-based image creation software from the American company Audobee Adobe. Adobe Illustrator on iPad suffers from an integer sneak vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the current user's environment...

PT-2025-46489

Name of the Vulnerable Software and Affected Versions Illustrator on iPad versions 3.0.9 and earlier Description Illustrator on iPad versions 3.0.9 and earlier are susceptible to an Integer Underflow vulnerability. Successful exploitation of this issue could lead to arbitrary code execution withi...

CLSA-2025-1762784629 libsoup: Fix of 3 CVEs

CVE-2025-4948: fix integer underflow in soupmultipartnewfrommessage - CVE-2025-32049: fix Denial of Service attack to websocket server - CVE-2025-32914: fix OOB Read through soupmultipartnewfrommessage...

kernel: wifi: mwifiex: Fix OOB and integer underflow when rx packets

A flaw out of bounds read in the Linux kernel Marvell mwifiex driver was found in the way user sends malicious Wi-Fi packets. A remote user with Wi-Fi connection could use this flaw to crash the system...

kernel: wifi: mwifiex: Fix OOB and integer underflow when rx packets

A flaw out of bounds read in the Linux kernel Marvell mwifiex driver was found in the way user sends malicious Wi-Fi packets. A remote user with Wi-Fi connection could use this flaw to crash the system...

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: i40e: Fixed the MMIO write access to an invalid page in i40eclearhw. When the device sends a specific input, an integer underflow can occur, resulting in MMIO write access to an invalid page. This issue can be prevented by changi...

Astra Linux – Vulnerability in catdoc

There is an integer underflow vulnerability in the OLE Document DIFAT Parser functionality of catdoc 0.95. A specially crafted, malformed file can lead to heap-based memory corruption. An attacker can provide a malicious file to exploit this vulnerability...

OESA-2025-2615 gstreamer1-plugins-good security update

GStreamer is a streaming media framework, based on graphs of filters which operate on media data. Applications using this library can do anything from real-time sound processing to playing videos, and just about anything else media-related. Its plugin-based architecture means that new data types ...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: gstreamer1 (UTSA-2025-988621)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988621 advisory. GStreamer is a library for constructing graphs of media-handling components. An integer underflow has been detected in the function qtdemuxparsetheoraextension withi...

ImageMagick < 7.1.2-8 DoS (GHSA-wpp4-vqfq-v4hp)

The remote host has a version of ImageMagick installed that is prior to prior to 7.1.2-8. It is, therefore, affected by denial of service vulnerability as referenced in GHSA-wpp4-vqfq-v4hp advisory. - ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick...

CLSA-2025-1761595580 libsoup: Fix of 3 CVEs

CVE-2025-4948: fix integer underflow in soupmultipartnewfrommessage - CVE-2025-32049: fix Denial of Service attack to websocket server - CVE-2025-32914: fix OOB Read through soupmultipartnewfrommessage...

Oracle VirtualBox VMSVGA Integer Underflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Oracle VirtualBox. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists within the VMSVGA...

Linux Distros Unpatched Vulnerability : CVE-2022-50582

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - regulator: core: Prevent integer underflow By using a ratio of delay to pollenabledtime that is not integer timeremaining underflows and does not exit the loop ...