Lucene search
+L

451 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-38575

Malicious code in bioql PyPI...

7.8CVSS7.6AI score0.00411EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-46663

Malicious code in bioql PyPI...

6.1CVSS5.6AI score0.00357EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2025/09/22 6:2 p.m.3 views

CVE-2025-59418 BunnyPad Vulnerable to Buffer Overflow When Opening Files of Size 20MB or Greater

BunnyPad is a note taking software. Prior to version 11.0.27000.0915, opening files greater than or equal to 20MB causes buffer overflow to occur. This issue has been patched in version 11.0.27000.0915. Users who wish not to upgrade should refrain from opening files larger than 10MB...

5.5CVSS6.9AI score0.00159EPSS
Exploits0References2
susecve
susecve
added 2025/09/16 11:26 p.m.5 views

SUSE CVE-2025-10290

Opening links via the contextual menu in Focus iOS for certain URL schemes would fail to load but would not refresh the toolbar correctly, allowing attackers to spoof websites if users were coerced into opening a link explicitly through a long-press. This vulnerability was fixed in Focus for iOS...

6.5CVSS5.8AI score0.00236EPSS
Exploits0References3
osv
osv
added 2025/09/04 4:15 p.m.7 views

UBUNTU-CVE-2025-38698

In the Linux kernel, the following vulnerability has been resolved: jfs: Regular file corruption check The reproducer builds a corrupted file on disk with a negative isize value. Add a check when opening this file to avoid subsequent operation failures...

5.5CVSS5.9AI score0.00159EPSS
Exploits0References37
cve
cve
added 2025/09/04 3:32 p.m.23 views

CVE-2025-38698

Summary: CVE-2025-38698 affects the Linux kernel JFS file system. A vulnerability allows regular file operations to fail or corrupt due to a corrupted on-disk file created with a negative i_size. The fix adds a check when opening such files to prevent subsequent operation failures, addressing pot...

5.5CVSS6AI score0.00159EPSS
Exploits0References12Affected Software1
osv
osv
added 2025/09/04 3:32 p.m.10 views

CVE-2025-38698 jfs: Regular file corruption check

In the Linux kernel, the following vulnerability has been resolved: jfs: Regular file corruption check The reproducer builds a corrupted file on disk with a negative isize value. Add a check when opening this file to avoid subsequent operation failures...

5.5CVSS6.2AI score0.00159EPSS
Exploits0References15
mscve
mscve
added 2025/09/04 4:16 a.m.5 views

An issue was discovered in the DBI module through 1.643 for Perl. DBD::File drivers can open files from folders other than those specifically passed via the f_dir attribute in the data source name (DSN). NOTE: this issue exists because of an incomplete fix for CVE-2014-10401.

...

6.1CVSS7AI score0.00488EPSS
Exploits1
nessus
nessus
added 2025/08/30 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-31804

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LeoCAD before 21.03 sometimes allows a use-after-free during the opening of a new document. CVE-2021-31804 Note that Nessus relies on the presence of the packag...

5.5CVSS6.1AI score0.00769EPSS
Exploits1References3
nvd
nvd
added 2025/08/21 9:15 p.m.9 views

CVE-2010-20120

Maple versions up to and including 13's Maplet framework allows embedded commands to be executed automatically when a .maplet file is opened. This behavior bypasses standard security restrictions that normally prevent code execution in regular Maple worksheets. The vulnerability enables attackers...

8.4CVSS0.00342EPSS
Exploits0References5
nvd
nvd
added 2025/08/20 4:15 p.m.11 views

CVE-2011-10021

Magix Musik Maker 16 is vulnerable to a stack-based buffer overflow due to improper handling of .mmm arrangement files. The vulnerability arises from an unsafe strcpy operation that fails to validate input length, allowing attackers to overwrite the Structured Exception Handler SEH. By crafting a...

8.4CVSS0.00322EPSS
Exploits0References7
ptsecurity
ptsecurity
added 2025/08/20 12:0 a.m.5 views

PT-2025-34105 · Undefined · Undefined

MJM Core Player likely now referred to as MJM Player 2011 is vulnerable to a stack-based buffer overflow when parsing specially crafted .s3m music files. The vulnerability arises from improper bounds checking in the file parser, allowing an attacker to overwrite memory on the stack and execute...

8.4CVSS8.2AI score0.00331EPSS
Exploits0References6
alpinelinux
alpinelinux
added 2025/08/19 9:15 p.m.6 views

CVE-2025-54144

The URL scheme used by Firefox to facilitate searching of text queries could incorrectly allow attackers to open arbitrary website URLs or internal pages if a user was tricked into clicking a link This vulnerability affects Firefox for iOS 141...

5.4CVSS6.8AI score0.0021EPSS
Exploits0References2
cnvd
cnvd
added 2025/08/15 12:0 a.m.3 views

Microsoft Excel Code Execution Vulnerability (CNVD-2025-18823)

Microsoft Excel is a spreadsheet processing software in the Office suite from Microsoft USA. A code execution vulnerability exists in Microsoft Excel, which is caused by free use when opening specially crafted files. An attacker can exploit the vulnerability to execute arbitrary code on the syste...

7.8CVSS8.1AI score0.00565EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/08/14 9:13 p.m.10 views

CVE-2025-54224

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00308EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/08/14 9:13 p.m.4 views

CVE-2025-54213

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS7.8AI score0.00258EPSS
Exploits0References1
osv
osv
added 2025/08/12 10:15 p.m.9 views

CVE-2025-54222

Substance3D - Stager versions 3.1.3 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00181EPSS
Exploits0References1
osv
osv
added 2025/08/12 9:15 p.m.3 views

CVE-2025-54213

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score
Exploits0References1
nvd
nvd
added 2025/08/12 9:15 p.m.5 views

CVE-2025-54213

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00258EPSS
Exploits0References1
nvd
nvd
added 2025/08/12 9:15 p.m.3 views

CVE-2025-54207

InDesign Desktop versions 20.4, 19.5.4 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00259EPSS
Exploits0References1
Rows per page
Query Builder