Linux Distros Unpatched Vulnerability : CVE-2025-44906

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c. CVE-2025-44906 Note that Nessus relies on the presence of t...

SUSE CVE-2025-5030

A vulnerability was found in Ackites KillWxapkg up to 2.4.1. It has been declared as critical. This vulnerability affects the function processFile of the file internal/unpack/unpack.go of the component wxapkg File Parser. The manipulation leads to os command injection. The attack can be initiated...

UBUNTU-CVE-2025-44906

jhead v3.08 was discovered to contain a heap-use-after-free via the ProcessFile function at jhead.c...

PT-2025-23239 · Jhead +1 · Jhead +1

Name of the Vulnerable Software and Affected Versions: jhead version 3.08 Description: A heap-use-after-free issue was discovered in jhead via the ProcessFile function at jhead.c. This issue affects jhead version 3.08. Recommendations: For jhead version 3.08, as a temporary workaround, consider...

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via the processFile function in the wxapkg File Parser component. An attacker can execute arbitrary system commands by providing crafted input to this function. Remediation There is no fixed version for...

PT-2025-22398 · Unknown · Ackites Killwxapkg

Name of the Vulnerable Software and Affected Versions: Ackites KillWxapkg versions up to 2.4.1 Description: A critical issue affects the processFile function of the wxapkg File Parser component, located in the file internal/unpack/unpack.go. This issue leads to os command injection and can be...