mysql: InnoDB unspecified vulnerability (CPU Jul 2025)

Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

mysql: Components Services unspecified vulnerability (CPU Apr 2025)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Components Services. Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

CVE-2025-47997

Concurrent execution using shared resource with improper synchronization 'race condition' in SQL Server allows an authorized attacker to disclose information over a network...

CVE-2025-54095

Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

CVE-2025-54113

Heap-based buffer overflow in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

CVE-2025-55232

Deserialization of untrusted data in Microsoft High Performance Compute Pack HPC allows an unauthorized attacker to execute code over a network...

CVE-2025-55227

Improper neutralization of special elements used in a command 'command injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

CVE-2025-53805

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network...

SEAT Queue Ticket Kiosk 代码问题漏洞

SEAT Queue Ticket Kiosk is a queue caller from SEAT. A code issue vulnerability exists in SEAT Queue Ticket Kiosk 20250827 and prior versions, which stems from a deserialization issue in the Java RMI Registry Handler component that could lead to a local network attack...

CVE-2025-54917

Protection mechanism failure in Windows MapUrlToZone allows an unauthorized attacker to bypass a security feature over a network...

CVE-2025-54106

Integer overflow or wraparound in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

CVE-2025-53809

Improper input validation in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

CVE-2025-53797

Buffer over-read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Improper input validation in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

Integer overflow or wraparound in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network...

HTTP.sys Denial of Service Vulnerability

Out-of-bounds read in Windows Internet Information Services allows an unauthorized attacker to deny service over a network...

PT-2025-36843

Name of the Vulnerable Software and Affected Versions: Windows SMBv3 Client affected versions not specified Description: A use-after-free issue exists in the Windows SMBv3 Client. This allows an authorized attacker to execute code over a network. The vulnerability enables remote attackers to...

PT-2025-36855

Name of the Vulnerable Software and Affected Versions: Windows Routing and Remote Access Service RRAS affected versions not specified Description: A heap-based buffer overflow exists in the Windows Routing and Remote Access Service RRAS. This issue allows an unauthorized attacker to execute code...

PT-2025-36882

Name of the Vulnerable Software and Affected Versions Windows NTLM versions prior to the fix included in CVE-2025-54918 Description An improper authentication issue exists within Windows NTLM. This flaw allows an authorized attacker to elevate privileges over a network. The vulnerability relates ...

PT-2025-36848

Name of the Vulnerable Software and Affected Versions: Windows Routing and Remote Access Service RRAS affected versions not specified Description: An integer overflow or wraparound in Windows Routing and Remote Access Service RRAS can allow an unauthorized attacker to execute code over a network...