4160 matches found
Linux Distros Unpatched Vulnerability : CVE-2023-38427
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel before 6.3.8. fs/smb/server/smb2pdu.c in ksmbd has an integer underflow and out-of-bounds read in...
Linux Distros Unpatched Vulnerability : CVE-2025-4948
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly used by GNOME and other applications to handle web...
EulerOS 2.0 SP13 : libsoup (EulerOS-SA-2025-1994)
According to the versions of the libsoup packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in the libsoup package. This flaw stems from its failure to correctly verify the termination of multipart HTTP messages...
CVE-2023-43683
CVE-2023-43683 affects Malwarebytes 4.6.14.326 and earlier, up to 5.1.5.116, and Nebula 2020-10-21 and later. Root cause is a stack buffer out-of-bounds access caused by an integer underflow when handling newline characters. The impact is a memory access issue in the stack buffer. Remediation: up...
CVE-2023-43683
An issue was discovered in Malwarebytes 4.6.14.326 and before 5.1.5.116 and Nebula 2020-10-21 and later. A Stack buffer out-of-bounds access exists because of an integer underflow when handling newline characters...
Microsoft Teams Real Time Media Manager Integer Underflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Teams. Authentication is not required to exploit this vulnerability. The specific flaw exists within the real time media manager. The issue results from the lack of proper validation of...
Azure Linux 3.0 Security Update: libsoup (CVE-2025-4948)
The version of libsoup installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4948 advisory. - A flaw was found in the soupmultipartnewfrommessage function of the libsoup HTTP library, which is commonly...
Linux Distros Unpatched Vulnerability : CVE-2023-42118
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exim libspf2 Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows network- adjacent attackers to execute arbitrary code on affected...
Libsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoup
...
Linux Distros Unpatched Vulnerability : CVE-2025-38200
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write acce...
Linux Distros Unpatched Vulnerability : CVE-2025-49112
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow for prev-size - prev-used. CVE-2025-49112 Note that Nessus relies on the...
Adobe Framemaker Integer Overflow Vulnerability
Adobe FrameMaker is a powerful tool for creating complex technical documentation and publishing it to a variety of delivery channels. An integer underflow vulnerability exists in Adobe Framemaker versions 2020.8, 2022.6 and earlier. An attacker can exploit this vulnerability to execute arbitrary...
VMware ESXi 7.x < 7.0 Update 3w / 8.x < 8.0 Update 2e / 8.0 Update 3 < 8.0 Update 3f (VMSA-2025-0013)
The version of VMware ESXi installed on the remote host is 7.x prior to 7.0 Update 3w, 8.x prior to 8.0 Update 2e, or 8.0 Update 3 prior to 8.0 Update 3f. It is, therefore, affected by multiple vulnerabilities as referenced in the VMSA-2025-0013 advisory: - VMware ESXi, Workstation, and Fusion...
CVE-2025-41237
VMware ESXi, Workstation, and Fusion contain an integer-underflow in VMCI Virtual Machine Communication Interface that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX...
CVE-2025-3947
The Honeywell Experion PKS contains an Integer Underflow vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to Input Data Manipulation, which could result in improper integer data value checking during subtraction leading to a...
setDeferredReply in networking.c in Valkey through 8.1.1 has an integer underflow
...
CVE-2025-47097
InCopy versions 20.3, 19.5.3 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-47128
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...
CVE-2025-47130
Adobe Framemaker versions 2020.8, 2022.6 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...
CVE-2025-47136
InDesign Desktop versions 19.5.3 and earlier are affected by an Integer Underflow Wrap or Wraparound vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...