The vulnerability of the Graphics component in Windows operating systems allows attackers to exploit their privileges.

The vulnerability of the Graphics component in Windows operating systems is related to buffer overflows in dynamic memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the fromwebExcptypemanFilter() function (/goform/webExcptypemanFilter) in the Tenda FH1202 router software allows a hacker to execute arbitrary code or cause service failures.

The vulnerability of the fromwebExcptypemanFilter function /goform/webExcptypemanFilter of the Tenda FH1202 router software is related to the execution of operations outside the buffer in memory when processing the page parameter. Exploiting this vulnerability could allow a malicious actor to...

Tenda O3V2 setAutoReboot Stack Overflow Vulnerability

Tenda O3V2 is a high power wireless bridge from Tenda. The Tenda O3V2 /goform/setNetworkService contains a stack overflow vulnerability in the setAutoReboot function, which originates from improperly restricting the operation of a memory buffer, that can be exploited by a remote attacker to submi...

The vulnerability of Adobe After Effects’ video and dynamic image editing software lies in its ability to read data beyond the buffer in memory, allowing attackers to exploit this to disclose protected information.

The vulnerability of Adobe After Effects’ video and dynamic image editing software relates to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to disclose protected information using a specially created file...

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems allows a perpetrator to execute arbitrary code.

The vulnerability of the Setup and Boot Event Collection function in Microsoft Windows systems is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the Adobe Framemaker desktop publishing system arises from the possibility of an operation going beyond the buffer boundaries in memory, allowing a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

CVE-2025-2521

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...

The vulnerability in the implementation of the Credential Security Support Provider (CredSSP) protocol of the Microsoft Windows operating system allows a perpetrator to enhance their privileges.

The vulnerability of the Credential Security Support Provider CredSSP protocol implementation in the Microsoft Windows operating system lies in the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow attackers to enhance their privileges...

The vulnerability of the Windows RRAS operating system’s routing and remote access service allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS operating system’s routing and remote access service is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

CVE-2025-2521

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...

CVE-2025-2521

CVE-2025-2521 concerns a memory buffer vulnerability in the Control Data Access (CDA) component of Honeywell’s Experion PKS and OneWireless WDM . The issue is an overread of buffers due to lack of proper index validation against buffer borders, which could lead to remote code execution . Affected...

CVE-2025-2521 Lack of indexes’ validation against buffer borders leads to remote code execution.

The Honeywell Experion PKS and OneWireless WDM contains a Memory Buffer vulnerability in the component Control Data Access CDA. An attacker could potentially exploit this vulnerability, leading to an Overread Buffers, which could result in improper index validation against buffer borders leading ...

The vulnerability of the Windows RRAS operating system’s routing and remote access services allows a hacker to execute arbitrary code.

The vulnerability of the Windows RRAS routing and remote access service is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the Kerberos protocol for Windows operating systems allows a perpetrator to cause a service failure.

The vulnerability of the Kerberos protocol for Windows operating systems lies in the fact that the operation occurs outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service failures remotely...

The vulnerability of the Adobe Framemaker desktop publishing system, related to writing beyond the buffer boundaries in memory, allows a hacker to execute arbitrary code.

The vulnerability of the Adobe Framemaker desktop publishing system lies in the writing of code beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

SUSE CVE-2025-38258

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: free old damonsysfsschemefilter-memcgpath on write memcgpathstore assigns a newly allocated memory buffer to filter-memcgpath, without deallocating the previously allocated and assigned memory buffer. As a...

AZL-64844 CVE-2025-38258 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: free old damonsysfsschemefilter-memcgpath on write memcgpathstore assigns a newly allocated memory buffer to filter-memcgpath, without deallocating the previously allocated and assigned memory buffer. As a...

DEBIAN-CVE-2025-38258

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: free old damonsysfsschemefilter-memcgpath on write memcgpathstore assigns a newly allocated memory buffer to filter-memcgpath, without deallocating the previously allocated and assigned memory buffer. As a...

CVE-2025-38258

The CVE-2025-38258 issue affects the Linux kernel, specifically in mm/damon/sysfs-schemes where memcg_path_store() assigns a newly allocated buffer to filter->memcg_path without freeing the previous one, enabling kernel memory leaks via repeated writes to memcg_path in the DAMOS sysfs file. Th...

CVE-2025-38258 mm/damon/sysfs-schemes: free old damon_sysfs_scheme_filter->memcg_path on write

In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs-schemes: free old damonsysfsschemefilter-memcgpath on write memcgpathstore assigns a newly allocated memory buffer to filter-memcgpath, without deallocating the previously allocated and assigned memory buffer. As a...