15964 matches found
podman kube play symlink traversal vulnerability
Impact The podman kube play command can overwrite host files when the kube file contains a ConfigMap or Secret volume mount and the volume already contains a symlink to a host file. This allows a malicious container to write to arbitrary files on the host BUT the attacker only controls the target...
Path Traversal vulnerability in onnx.external_data_helper.save_external_data in ONNX 1.17.0 allows attackers to overwrite arbitrary files by supplying crafted external_data.location paths containing traversal sequences, bypassing intended directory restrictions.
...
Directory Traversal
Overview Affected versions of this package are vulnerable to Directory Traversal via the podman kube play command. An attacker can cause sensitive data corruption and system crashes by supplying a malicious Kubernetes YAML file that results in overwriting critical host files. The attacker only...
ROS-20250904-01
A vulnerability in the converter program that converts man pages to HTML man2html format is related to overwriting the the size parameter in the top fragment of the heap. Exploitation of the vulnerability could allow an attacker to perform an arbitrary writing to any memory location in the progra...
Linux Distros Unpatched Vulnerability : CVE-2021-34338
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ming 0.4.8 has an out-of-bounds buffer overwrite issue in the function getName in decompiler.c file that causes a direct segmentation fault and leads to denial ...
An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.
...
Due to URL previews in the network panel of developer tools improperly storing URLs, query parameters could potentially be used to overwrite global objects in privileged code. This vulnerability affects Firefox < 110.
...
f2fs: fix potential deadloop in prepare_compress_overwrite()
...
Exploit for Integer Overflow or Wraparound in Tesla Model_3_Firmware
CVE-2025-2082 – Function Pointer Overwrite PoV VCSEC-style...
Directory Traversal
Overview mobsf is a Mobile Security Framework MobSF is an automated, all-in-one mobile application Android/iOS/Windows pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. Affected versions of this package are vulnerable to Directory...
CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes
TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...
CVE-2025-9810
TOCTOU vulnerability CVE-2025-9810 in linenoiseHistorySave (linenoise) enables local attackers to overwrite files or change permissions via a symlink race between fopen("w") on the history path and a subsequent chmod() on the same path. Connected advisories confirm this CVE affects Redis-related ...
CVE-2025-9810 TOCTOU race in Linenoise enables arbitrary file overwrite and permission changes
TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a symlink race between fopen"w" on the history path and subsequent chmod on the same path...
PT-2025-35507
Name of the Vulnerable Software and Affected Versions: linenoise affected versions not specified Description: A time-of-check to time-of-use TOCTOU issue exists in the linenoiseHistorySave function within the linenoise library. This flaw allows local attackers to overwrite arbitrary files and...
CVE-2010-10016
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
CVE-2011-10032
Sunway ForceControl version 6.1 SP3 and earlier contains a stack-based buffer overflow vulnerability in the SNMP NetDBServer service, which listens on TCP port 2001. The flaw is triggered when the service receives a specially crafted packet using opcode 0x57 with an overly long payload. Due to...
CVE-2010-10016 BS.Player 2.57 Buffer Overflow via M3U Playlist Import
BS.Player version 2.57 build 1051 contains a vulnerability in its playlist import functionality. When processing .m3u files, the application fails to properly validate the length of playlist entries, resulting in a buffer overflow condition. This flaw occurs during parsing of long URLs embedded i...
Linux Distros Unpatched Vulnerability : CVE-2019-3681
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A External Control of File Name or Path vulnerability in osc of SUSE Linux Enterprise Module for Development Tools 15, SUSE Linux Enterprise Software Developmen...
Linux Distros Unpatched Vulnerability : CVE-2025-53906
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vim is an open source, command line text editor. Prior to version 9.1.1551, a path traversal issue in Vim's zip.vim plugin can allow overwriting of arbitrary...
PT-2025-35369
Name of the Vulnerable Software and Affected Versions: WM Downloader version 3.1.2.2 Description: WM Downloader version 3.1.2.2 is susceptible to a buffer overflow when handling a crafted .m3u playlist file. Insufficient input length validation allows overwriting of structured exception handler S...