EulerOS 2.0 SP12 : libtiff (EulerOS-SA-2025-2333)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PSLvl2page of the file tools/tiff2ps...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2025-2421)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function...

EulerOS 2.0 SP12 : cmake (EulerOS-SA-2025-2318)

According to the versions of the cmake packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was determined in cmake 4.1.20250725-gb5cce23. This affects the function cmForEachFunctionBlocker::ReplayItems of the file...

EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2025-2393)

According to the versions of the libtiff package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in LibTIFF up to 4.7.0. It has been declared as problematic. Affected by this vulnerability is the function...

EUVD-2025-93488

Uncontrolled search path for the Instrumentation and Tracing Technology API ITT API software before version 3.25.4 within Ring 3: User Applications may allow an escalation of privilege. Unprivileged software adversary with an authenticated user combined with a high complexity attack may enable...

EUVD-2025-93507

Protection mechanism failure for some IntelR NPU Drivers within Ring 3: User Applications may allow a denial of service. Unprivileged software adversary with an authenticated user combined with a low complexity attack may enable denial of service. This result may potentially occur via local acces...

CVE-2025-62453

Improper validation of generative ai output in GitHub Copilot and Visual Studio Code allows an authorized attacker to bypass a security feature locally...

CVE-2025-62202

Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally...

CVE-2025-60719

Untrusted pointer dereference in Windows Ancillary Function Driver for WinSock allows an authorized attacker to elevate privileges locally...

CVE-2025-60721

Privilege context switching error in Windows Administrator Protection allows an authorized attacker to elevate privileges locally...

CVE-2025-60705

Improper access control in Windows Client-Side Caching CSC Service allows an authorized attacker to elevate privileges locally...

CVE-2025-60709

Out-of-bounds read in Windows Common Log File System Driver allows an authorized attacker to elevate privileges locally...

CVE-2025-59511

External control of file name or path in Windows WLAN Service allows an authorized attacker to elevate privileges locally...

CVE-2025-59515

Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally...

CVE-2025-59505

Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally...

EUVD-2025-93414

Use after free in Windows DirectX allows an authorized attacker to elevate privileges locally...

CVE-2025-59515

Use after free in Windows Broadcast DVR User Service allows an authorized attacker to elevate privileges locally...

EUVD-2025-93439

Use after free in Multimedia Class Scheduler Service MMCSS allows an authorized attacker to elevate privileges locally...

CVE-2025-59506

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows DirectX allows an authorized attacker to elevate privileges locally...

CVE-2025-59505

Double free in Windows Smart Card allows an authorized attacker to elevate privileges locally...