CVE-2026-5511

In the web management interface of Archer AX72 SG v1, the network diagnostic feature improperly handles invalid user input, resulting in limited exposure of diagnostic command usage information. An authenticated attacker with administrative privileges could exploit this issue to confirm the...

CVE-2025-59603

Memory Corruption when processing invalid user address with nonstandard buffer address...

CVE-2025-59603

Memory Corruption when processing invalid user address with nonstandard buffer address...

CVE-2025-59603

Memory Corruption when processing invalid user address with nonstandard buffer address...

CVE-2025-59603 Out-of-bounds Write in Computer Vision

Memory Corruption when processing invalid user address with nonstandard buffer address...

EUVD-2025-208195

Memory Corruption when processing invalid user address with nonstandard buffer address...

CVE-2025-59603

CVE-2025-59603 : In the Computer Vision component, memory corruption occurs when processing an invalid user address with a nonstandard buffer address, leading to an out-of-bounds write. The CVSS 3.1 vector (Local, Low attack complexity, Low privileges) indicates a high-impact issue affecting conf...

CVE-2025-59603 Out-of-bounds Write in Computer Vision

Memory Corruption when processing invalid user address with nonstandard buffer address...

Qualcomm Chipsets 缓冲区错误漏洞

Qualcomm Chipsets are a series of chipset developed by Qualcomm Incorporation. Qualcomm Chipsets have a buffer error vulnerability, which occurs due to memory corruption when processing invalid user addresses and non-standard buffer addresses...

PT-2026-22651

Name of the Vulnerable Software and Affected Versions versions prior to 2025 affected versions not specified Description A memory corruption issue exists when processing invalid user addresses with nonstandard buffer addresses. This can lead to unexpected behavior or potentially allow for malicio...

MiracleLinux 4 : thunderbird-78.9.1-1.0.1.AXS4 (AXSA:2021-1692:07)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1692:07 advisory. Mozilla: An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key CVE-2021-23991 Mozilla: A crafted OpenPGP key wit...

MiracleLinux 8 : thunderbird-78.9.1-1.0.1.el8 (AXSA:2021-1686:06)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-1686:06 advisory. Mozilla: An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key CVE-2021-23991 Mozilla: A crafted OpenPGP key wit...

CVE-2025-65899

Kalmia CMS version 0.2.0 contains a user enumeration vulnerability in its authentication mechanism. The application returns different error messages for invalid users usernotfound versus valid users with incorrect passwords invalidpassword. This observable response discrepancy allows...

PT-2025-49144

Name of the Vulnerable Software and Affected Versions Kalmia CMS version 0.2.0 Description The application exhibits a user enumeration issue in its authentication process. Different error messages are returned depending on whether a user exists or not, or if the password is incorrect. Specificall...

EUVD-2024-46674

Malicious code in bioql PyPI...

FILTER_VALIDATE_URL accepts URLs with invalid userinfo

...

Cisco IOS XE 安全漏洞

Cisco IOS XE is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core, and WAN, Cisco IOS XE reduces business and network complexity. A security vulnerability exists in Cisco IOS XE that stems from insufficient validatio...

kernel: bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type()

In the Linux kernel, the following vulnerability has been resolved: bpf, testrun: Fix use-after-free issue in ethskbpkttype KMSAN reported a use-after-free issue in ethskbpkttype1. The cause of the issue was that ethskbpkttype accessed skb's data that didn't contain an Ethernet header. This occur...

Linux Distros Unpatched Vulnerability : CVE-2025-38482

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - comedi: das6402: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: / IRQs 2,3,5,6,7, 10,11,15 are valid for...

BIT-LIBPHP-2024-5458 Filter bypass in filter_var (FILTER_VALIDATE_URL)

In PHP versions 8.1. before 8.1.29, 8.2. before 8.2.20, 8.3. before 8.3.8, due to a code logic error, filtering functions such as filtervar when validating URLs FILTERVALIDATEURL for certain types of URLs the function will result in invalid user information username + password part of URLs being...