18796 matches found
CVE-2025-67419
A Denial of Service DoS vulnerability in evershop 2.1.0 and prior allows unauthenticated attackers to exhaust the application server's resources via the "GET /images" API. The application fails to limit the height of the use-element shadow tree or the dimensions of pattern tiles during the...
libtiff: Libtiff Write-What-Where
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controll...
Security Bulletin: Multiple Vulnerabilities in IBM Event Processing
Summary IBM Event Processing was affected by multiple vulnerabilities. These are affecting the operator and frontend components. Vulnerability Details CVEID:CVE-2025-57752 DESCRIPTION: Next.js is a React framework for building full-stack web applications. In versions before 14.2.31 and from 15.0....
CVE-2025-68753
In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: add bounds check in putuser loop for DSP events In the DSP event handling code, a putuser loop copies event data. When the user buffer size is not aligned to 4 bytes, it could overwrite beyond the buffer...
Security Bulletin: Security vulnerabilities have been found in IBM Verify Identity Access and IBM Security Verify Access
Summary Security vulnerabilities have been addressed in IBM Verify Identity Access and IBM Security Verify Access Vulnerability Details CVEID:CVE-2024-12243 DESCRIPTION: A flaw was found in GnuTLS, which relies on libtasn1 for ASN.1 data processing. Due to an inefficient algorithm in libtasn1,...
CVE-2025-53966
An issue was discovered in Samsung Mobile Processor Exynos 1380, 1480, 2400, and 1580. Incorrect Handling of the NL80211 vendor command leads to a buffer overflow during handling of an IOCTL message...
EUVD-2026-0799
A Denial of Service DoS vulnerability in evershop 2.1.0 and prior allows unauthenticated attackers to exhaust the application server's resources via the "GET /images" API. The application fails to limit the height of the use-element shadow tree or the dimensions of pattern tiles during the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of boundary checking for DSP event handling in the firewire-motu driver, which could lead to...
CVE-2025-67419
A Denial of Service DoS vulnerability in evershop 2.1.0 and prior allows unauthenticated attackers to exhaust the application server's resources via the "GET /images" API. The application fails to limit the height of the use-element shadow tree or the dimensions of pattern tiles during the...
Pervasive Vulnerability Analysis and Defense for QKD-Based Quantum Private Query
Quantum Private Query QPQ based on Quantum Key Distribution QKD is among the most practically viable quantum communication protocols, with application value second only to QKD itself. However, prevalent security vulnerabilities in the post-processing stages of most existing QKD-based QPQ protocol...
EverShop 安全漏洞
EverShop is a NodeJS e-commerce platform open-sourced by EverShop. A security vulnerability exists in EverShop 2.1.0 and earlier versions, which stems from unlimited resource consumption when processing SVG files and could lead to a denial of service attack...
CVE-2025-67419
CVE-2025-67419 describes a DoS in evershop prior to 2.1.0 where unauthenticated attackers can exhaust server resources via the GET /images endpoint while processing SVG files. Root cause: the application does not bound the height of the use-element shadow tree or the dimensions of pattern tiles d...
Amazon Linux 2 : libvirt, --advisory ALAS2-2025-3115 (ALAS-2025-3115)
The version of libvirt installed on the remote host is prior to 4.5.0-36. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3115 advisory. A flaw was discovered in libvirt in the XML file processing. More specifically, the parsing of user provided XML files was perform...
SQLi_AI_defence
SQLiAIdefence A small model ba...
CVE-2026-21433
Emlog is an open source website building system. Versions up to and including 2.5.19 are vulnerable to server-side Out-of-Band OOB requests / SSRF via uploaded SVG files. An attacker can upload a crafted SVG to http://emblog/admin/media.php which contains external resource references. When the...
PT-2026-21390
Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description GIMP installations are susceptible to remote code execution due to a heap-based buffer overflow present in the HDR file parsing functionality. Exploitation requires user interaction with malicio...
PT-2026-6841
Name of the Vulnerable Software and Affected Versions tracker-miners affected versions not specified Description A flaw exists in tracker-miners related to the handling of malformed MP3 files. Specifically, the software incorrectly processes certain MP3 files, potentially leading to a denial of...
PT-2026-6165
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel’s GUE Generic UDP Encapsulation protocol handler contains a memory leak when processing packets with an inner IP protocol of 0. The issue occurs because gue udp recv...
PT-2026-26045
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the RDMA/siw component related to header processing. Specifically, a potential NULL pointer dereference can occur in the siw tcp rx data function ...
PT-2026-21476
Name of the Vulnerable Software and Affected Versions GIMP affected versions not specified Description A flaw exists in GIMP related to integer overflow when processing ICO image files. The issue is present in the ico read info and ico read icon functions, where a size calculation for image buffe...