Lucene search
K

32 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in libxpm

A flaw was discovered in libXpm. This issue occurs when parsing a file with a comment that is not closed properly; the “end-of-file” condition will not be detected, leading to an infinite loop and causing a Denial of Service in the application that uses the library...

7.5CVSS6.6AI score0.01284EPSS
Exploits2References2
Vulnrichment
Vulnrichment
added 2025/11/04 1:17 a.m.3 views

CVE-2025-43380

An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.7.2, macOS Sonoma 14.8.2, macOS Tahoe 26.1. Parsing a file may lead to an unexpected app termination...

6.8AI score0.00181EPSS
Exploits0References3
CVE
CVE
added 2025/11/04 1:17 a.m.8 views

CVE-2025-43380

CVE-2025-43380 describes an out-of-bounds write issue in macOS components caused by insufficient input validation. The vulnerability affects macOS Sonoma 14.8.2 (and earlier) and macOS Sequoia 15.7.2, macOS Tahoe 26.1, with parsing a file potentially leading to unexpected application termination....

5.5CVSS6.7AI score0.00181EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/09/24 3:40 p.m.6 views

CLSA-2025-1758728428 spamassassin: Fix of 2 CVEs

CVE-2020-1930: fix command-execution vulnerability in SpamAssassin .cf parsing - CVE-2020-1931: fix command-execution vulnerability in SpamAssassin .cf parsing...

9.3CVSS6.8AI score0.07053EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2025/07/29 5:57 p.m.4 views

CVE-2025-7497

A maliciously crafted PRT file, when parsed through certain Autodesk products, can force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process...

7.8CVSS7.4AI score0.00163EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.4 views

INVT VT-Designer 缓冲区错误漏洞

INVT VT-Designer is an HMI programming and configuration software from China-based INVT. A buffer error vulnerability exists in INVT VT-Designer that originates from an out-of-bounds write when parsing a PM3 file, which could lead to remote code execution...

7.8CVSS8.2AI score0.00205EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.3 views

INVT HMITool 缓冲区错误漏洞

INVT HMITool is an HMI programming and configuration software from China-based INVT. A buffer error vulnerability exists in INVT HMITool that stems from an out-of-bounds write when parsing a VPM file, which could lead to remote code execution...

7.8CVSS8.2AI score0.00205EPSS
Exploits0References1
OSV
OSV
added 2025/05/12 10:15 p.m.4 views

CVE-2025-31239

A use-after-free issue was addressed with improved memory management. This issue is fixed in watchOS 11.5, macOS Sonoma 14.7.6, tvOS 18.5, iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, macOS Sequoia 15.5, visionOS 2.5, macOS Ventura 13.7.6. Parsing a file may lead to an unexpected app termination...

4.3CVSS5.8AI score0.00523EPSS
Exploits0References15
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.2 views

Ashlar-Vellum Cobalt 缓冲区错误漏洞

Ashlar-Vellum Cobalt is a parameter-based computer-aided design and 3D modeling program from Ashlar-Vellum. A buffer error vulnerability exists in Ashlar-Vellum Cobalt that originates from an out-of-bounds write when parsing a VC6 file, which could lead to remote code execution...

7.8CVSS8.3AI score0.0026EPSS
Exploits0References2
OSV
OSV
added 2025/01/27 10:15 p.m.4 views

CVE-2025-24161

The issue was addressed with improved checks. This issue is fixed in iPadOS 17.7.4, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3. Parsing a file may lead to an unexpected app termination...

5.5CVSS5.8AI score0.00298EPSS
Exploits0References13
OSV
OSV
added 2025/01/27 10:15 p.m.4 views

CVE-2025-24112

The issue was addressed with improved checks. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3. Parsing a file may lead to an unexpected app termination...

5.5CVSS5.8AI score0.00256EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2024/12/07 8:0 a.m.5 views

Werkzeug possible resource exhaustion when parsing file data in forms

...

7.5CVSS6.7AI score0.01093EPSS
Exploits0
OSV
OSV
added 2024/10/28 9:15 p.m.2 views

CVE-2024-44281

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Ventura 13.7.1, macOS Sonoma 14.7.1. Parsing a file may lead to disclosure of user information...

5.5CVSS5.8AI score0.00258EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/10/28 9:7 p.m.15 views

CVE-2024-44279

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1. Parsing a file may lead to disclosure of user information...

0.00498EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/05/08 12:0 a.m.2 views

PT-2024-22037 · Apple · Itunes

Name of the Vulnerable Software and Affected Versions: iTunes versions prior to 12.13.2 Description: The issue was addressed with improved checks. Parsing a file may lead to an unexpected app termination or arbitrary code execution. Recommendations: For versions prior to 12.13.2, update to iTunes...

7.8CVSS7.4AI score0.00683EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/09/18 12:0 a.m.5 views

WithSecure Multiple Product Security Vulnerabilities

WithSecure products is a series of security software from the Finnish company WithSecure. WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and earlier. versions, WithSecure Client Security for Mac 15,...

7.5CVSS6.7AI score0.00515EPSS
Exploits0References3
OSV
OSV
added 2023/02/07 7:15 p.m.21 views

CVE-2022-46285

A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library...

7.5CVSS3.1AI score
Exploits0References7
Prion
Prion
added 2023/02/07 7:15 p.m.24 views

Race condition

A flaw was found in libXpm. This issue occurs when parsing a file with a comment not closed; the end-of-file condition will not be detected, leading to an infinite loop and resulting in a Denial of Service in the application linked to the library...

5CVSS7.7AI score0.01284EPSS
Exploits2References7Affected Software1
CNNVD
CNNVD
added 2022/08/18 12:0 a.m.3 views

Adobe Acrobat Reader DC 缓冲区错误漏洞

Adobe Acrobat Reader DC is the United States of America Odooby Adobe a Pdf reading tool. It is used to reliably view, print and annotate Pdf documents. A buffer error vulnerability exists in Adobe Acrobat Reader DC, which originates from out-of-bounds reads while parsing a file...

5.5CVSS7.5AI score0.00261EPSS
Exploits0References1
OSV
OSV
added 2021/08/24 6:15 p.m.3 views

CVE-2021-28607

Adobe After Effects version 18.2 and earlier is affected by a heap corruption vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve arbitrary code execution in the context of the current user. Exploitation of this issue...

7.8CVSS8.3AI score0.02629EPSS
Exploits0References1
Rows per page
Query Builder