47 matches found
PT-2025-46975
Name of the Vulnerable Software and Affected Versions npm package expr-eval affected versions not specified Description The npm package expr-eval is susceptible to a Prototype Pollution issue. An attacker who can access the express eval interface may leverage the JavaScript prototype-based...
PT-2025-16697
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the handling of cached destination counters in the dst release function. When CONFIG DST CACHE is enabled and Open vSwit...
PT-2025-5667 · Git +1 · Ndpi
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash, specifically a Segv on an unknown address. The crash involves the ndpi snprintf function, process ndpi collected info, a...
PT-2025-5652 · Git +1 · Kamailio
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 1 crash has been reported. The crash involves the functions extract mediaip, parse sdp session, and parse mixed content. No...
PT-2025-1675 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The provided information does not contain details about a specific vulnerability. It mentions a CVE ID, but the description has been removed due to the candidate being issued...
PT-2025-2909 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned as affected. Description: A potential issue has been identified, but details are not provided due to the rejection of the candidate number. No information is available on the severity, affected...
PT-2025-3709
Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions. Description A user with administrator privileges is able to retrieve authentication tokens. Recommendations At the moment, there is no information about a newer versi...
PT-2025-5657 · Git +1 · Libavif
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: A heap-buffer-overflow READ 8 crash has been reported, with the crash state indicating an issue related to interceptor pthread create. No information is...
PT-2025-2332 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The issue is related to a rejected CVE record due to non-compliance with CNA rules, as it has not been used. No further details are provided abo...
PT-2024-36048 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue is related to an out-of-bounds read vulnerability in the DASH module. Successful exploitation of this vulnerability will affect availability...
PT-2024-19215 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No vulnerable software or affected versions specified. Description: The issue is related to a user's mental health breaker being triggered due to excessive stupidity, resulting in temporary disabling of Twitter access. Recommendations: At the...
PT-2024-23193 · Hcl +1 · Bigfix Platform
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A dynamic search for a prerequisite library could allow the possibility for an attacker to replace the correct file under some circumstances. The issue...
PT-2024-39021 · Planet Technology · Planet Technology Switch
Name of the Vulnerable Software and Affected Versions: PLANET Technology switches affected versions not specified Description: The issue concerns the SSH service in certain switch models from PLANET Technology, which improperly handles insufficiently authenticated connection requests. This allows...
PT-2024-12772 · Undefined · Undefined
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided input. Description: A proof of concept POC is available, but details about the issue are not explicitly mentioned. No information is provided about potentially affected devices or...
PT-2024-40854 · Git +1 · Xpdf
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type of UNKNOWN READ. The crash state involves several function calls, including ShadingImage::generateAxialBitmap,...
PT-2024-27012 · Broadcom · Symantec Privileged Access Management
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue allows a malicious low-privileged PAM user to perform server upgrade related actions. No information is provided about the estimated number of...
PT-2024-40901 · Pypi · Cipherbcrypt
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned. Description: The issue involves a malicious package that exfiltrates secrets to a target server. No further details are provided about the nature of the issue or its potential impact. Recommendation...
PT-2024-12636 · Ibm · Domino Catalog Template
Name of the Vulnerable Software and Affected Versions: Domino Catalog template affected versions not specified Description: The Domino Catalog template is susceptible to a Stored Cross-Site Scripting XSS vulnerability. An attacker with the ability to edit documents in the catalog...
PT-2024-40492 · Packagist · Drupal/Drupal
Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: A visit to the install.php endpoint can cause cached data to become corrupted, potentially impairing a site until caches are rebuilt. Recommendations: At the moment, there is no...
PT-2024-19833 · Qualcomm · Snapdragon +72
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves memory corruption that occurs when an IOCTL call is interrupted by a signal. There is no information provided about the estimated...