178 matches found
EUVD-2020-20825
Malware in sbrugna...
EUVD-2022-44428
Malicious code in bioql PyPI...
EUVD-2024-53197
Malicious code in bioql PyPI...
EUVD-2024-34141
Malicious code in bioql PyPI...
CVE-2025-23255
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary where a user may cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability may lead to a partial denial of service...
cachefiles: Fix NULL pointer dereference in object->file
...
Linux Distros Unpatched Vulnerability : CVE-2024-24685
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflow vulnerabilities exist in the readOFF functionality of libigl v2.5.0. A specially crafted .off file can lead to stack-based...
Linux Distros Unpatched Vulnerability : CVE-2025-3158
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability, which was classified as critical, has been found in Open Asset Import Library Assimp 5.4.3. Affected by this issue is the function...
BIT-MYSQL-CLIENT-2023-26785
MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...
BIT-MARIADB-MIN-2023-26785
MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...
BIT-MARIADB-2023-26785
MariaDB v10.5 was discovered to contain a remote code execution RCE vulnerability via UDF Code in a Shared Object File, followed by a "create function" statement. NOTE: this is disputed by the MariaDB Foundation because no privilege boundary is crossed...
CVE-2023-30985
A vulnerability has been identified in Solid Edge SE2023 All versions V223.0 Update 3, Solid Edge SE2023 All versions V223.0 Update 2. Affected applications contain an out of bounds read past the end of an allocated buffer while parsing a specially crafted OBJ file. This vulnerability could allow...
CVE-2024-56549
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...
AZL-55195 CVE-2024-56549 affecting package kernel for versions less than 6.6.78.1-1
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...
UBUNTU-CVE-2024-56549
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...
CVE-2024-56549 cachefiles: Fix NULL pointer dereference in object->file
In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...
CVE-2024-11155
A “use after free” code execution vulnerability exists in the Rockwell Automation Arena® that could allow a threat actor to craft a DOE file and force the software to use a resource that was already used. If exploited, a threat actor could leverage this vulnerability to execute arbitrary code. To...
Rockwell Automation Arena 安全漏洞
Rockwell Automation Arena is a discrete event simulation and automation software from Rockwell Automation USA. A security vulnerability exists in Rockwell Automation Arena version 16.20.03 and earlier, which stems from an out-of-bounds write code execution vulnerability that allows a threat...
PT-2024-9188 · Rockwell Automation · Rockwell Automation Arena
Name of the Vulnerable Software and Affected Versions: Rockwell Automation Arena versions prior to 16.20.00 Description: A "use after free" code execution issue exists in the Rockwell Automation Arena that could allow a threat actor to craft a DOE file and force the software to use a resource tha...
Exploit for Untrusted Pointer Dereference in Microsoft
CVE-2024-35250-BOF The Beacon Object File BOF implementati...