1077 matches found
rexml: REXML ReDoS vulnerability
A flaw was found in the ReXML XML toolkit for Ruby. Parsing XML data containing a large number of digits between & and x...; in a hex numeric character reference &x...; can trigger a regular expression denial of service ReDoS condition, leading to a denial of service...
RISC Zero Ethereum 数字错误漏洞
RISC Zero Ethereum is a computing platform open-sourced by RISC Zero. A numeric error vulnerability exists in RISC Zero Ethereum versions 2.1.0 and earlier and risc0-circuit-rv32im versions 2.0.4 and earlier, which stems from a signed integer division issue that could result in invalid output...
CVE-2025-54801 Fiber Susceptible to Crash via `BodyParser` Due to Unvalidated Large Slice Index in Decoder
Fiber is an Express inspired web framework written in Go. In versions 2.52.8 and below, when using Fiber's Ctx.BodyParser to parse form data containing a large numeric key that represents a slice index e.g., test.18446744073704, the application crashes due to an out-of-bounds slice allocation in...
rexml: REXML ReDoS vulnerability
A flaw was found in the ReXML XML toolkit for Ruby. Parsing XML data containing a large number of digits between & and x...; in a hex numeric character reference &x...; can trigger a regular expression denial of service ReDoS condition, leading to a denial of service...
Adobe Framemaker Numeric Error Vulnerability (CNVD-2025-16398)
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A numeric error vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to execute arbitra...
Microsoft Windows Numeric Error Vulnerability
Microsoft Windows is a set of operating systems for use on personal devices from the American company Microsoft. Microsoft Windows has a security vulnerability. The vulnerability can be exploited by an attacker to gain elevated privileges...
Adobe InCopy Number Error Vulnerability
Adobe InCopy is a text editing software for creative writing from the American company Audobee Adobe. A numeric error vulnerability exists in Adobe InCopy, which can be exploited by an attacker to cause arbitrary code to be executed...
Adobe Illustrator Numeric Error Vulnerability (CNVD-2025-16549)
Adobe Illustrator is a set of vector-based image creation software from the American company Audobee Adobe. A numeric error vulnerability exists in Adobe Illustrator that originates from an integer underflow and can be exploited by an attacker to cause arbitrary code to be executed...
Numeric Truncation Error
Overview Affected versions of this package are vulnerable to Numeric Truncation Error in the aggregation process. An attacker can cause data corruption, unauthorized data modification, or application crashes by submitting specially crafted input that leads to the number of aggregate terms exceedi...
rexml: REXML ReDoS vulnerability
A flaw was found in the ReXML XML toolkit for Ruby. Parsing XML data containing a large number of digits between & and x...; in a hex numeric character reference &x...; can trigger a regular expression denial of service ReDoS condition, leading to a denial of service...
Adobe InDesign Desktop Digital Error Vulnerability
Adobe InDesign Desktop is desktop publishing software developed by Adobe, mainly used for the typography of print and digital publications, including books, magazines, newspapers, posters, e-books and so on. Adobe InDesign Desktop suffers from a numeric error vulnerability that stems from imprope...
PT-2025-29558
Vulnerability Summary Name of the Vulnerable Software and Affected Versions: SQLite versions prior to 3.50.2 Description SQLite versions before 3.50.2 are vulnerable to a memory corruption issue due to an integer overflow that can occur when the number of aggregate terms exceeds the number of...
CVE-2025-49679
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...
CVE-2025-49679
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...
CVE-2025-49679
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...
CVE-2025-49679
Technical details about CVE-2025-49679 (affected product/module, root cause, impact, and remediation) are not publicly provided in the supplied documents. Monitor for official updates from Microsoft (KB/SSU) and ENISA EUVD for specifics.
Windows Shell Elevation of Privilege Vulnerability
Numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally...
Adobe Framemaker 数字错误漏洞
Adobe Framemaker is the United States of America Odooby Adobe company's set of page layout software for writing and editing large or complex documents including structured documents. A numeric error vulnerability exists in Adobe Framemaker, which can be exploited by an attacker to execute arbitra...
PT-2025-28577 · Microsoft · Windows Shell +1
Name of the Vulnerable Software and Affected Versions: Windows Shell affected versions not specified Description: A numeric truncation error in Windows Shell allows an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer version...
Adobe InDesign Desktop 数字错误漏洞
Adobe InDesign Desktop is desktop publishing software developed by Adobe, mainly used for the typography of print and digital publications, including books, magazines, newspapers, posters, e-books and so on. Adobe InDesign Desktop suffers from a numeric error vulnerability that stems from imprope...