Rack 安全漏洞

Rack is a modular Ruby web server interface open-sourced by Rack. A security vulnerability exists in Rack versions prior to 2.2.18, which stems from the fact that Rack::QueryParser enforces the paramslimit restriction only on parameters separated by &, but still accepts both & and ; as separators...

CVE-2025-27037 Use After Free in Camera Driver

Memory corruption while processing configdev IOCTL when camera kernel driver drops its reference to CPU buffers...

CVE-2025-27037

CVE-2025-27037 affects Qualcomm chipsets due to a memory corruption issue in the camera subsystem. The root cause is described as memory corruption occurring while processing the config_dev IOCTL when the camera kernel driver drops its references to CPU buffers. Multiple sources consolidate this ...

CVE-2025-27034

CVE-2025-27034 affects Qualcomm Multi-Mode Call Processor (Qualcomm Snapdragon devices) with memory corruption when selecting the PLMN from the SOR failed list. The root cause is an unchecked array indexing in the firmware, enabling potential remote code execution. Connected sources specify the v...

PT-2025-39275

Name of the Vulnerable Software and Affected Versions versions prior to 2025 Description A memory corruption issue exists when processing a config dev IOCTL within the camera kernel driver. This occurs when the driver releases its reference to CPU buffers. The issue could potentially allow for...

CVE-2025-5717

An authenticated remote code execution RCE vulnerability exists in multiple WSO2 products due to improper input validation in the event processor admin service. A user with administrative access to the SOAP admin services can exploit this flaw by deploying a Siddhi execution plan containing...

CVE-2025-5717

An authenticated remote code execution RCE vulnerability exists in multiple WSO2 products due to improper input validation in the event processor admin service. A user with administrative access to the SOAP admin services can exploit this flaw by deploying a Siddhi execution plan containing...

CVE-2025-5717 Authenticated Remote Code Execution in Multiple WSO2 Products via Event Processor Admin Service

An authenticated remote code execution RCE vulnerability exists in multiple WSO2 products due to improper input validation in the event processor admin service. A user with administrative access to the SOAP admin services can exploit this flaw by deploying a Siddhi execution plan containing...

CVE-2025-5717

CVE-2025-5717 describes an authenticated remote code execution in multiple WSO2 products caused by improper input validation in the Event Processor Admin Service. An attacker with administrative access to SOAP admin services can deploy a Siddhi execution plan containing malicious Java code, enabl...

CVE-2025-5717 Authenticated Remote Code Execution in Multiple WSO2 Products via Event Processor Admin Service

An authenticated remote code execution RCE vulnerability exists in multiple WSO2 products due to improper input validation in the event processor admin service. A user with administrative access to the SOAP admin services can exploit this flaw by deploying a Siddhi execution plan containing...

SUSE-SU-2025:03310-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49492: nvme-pci: fix a NULL pointer dereference in nvmeallocadmintags bsc1238954. - CVE-2022-50116: tty: ngsm: fix deadlock and link starvation in outgoing...

CVE-2025-9905 vulnerabilities

Vulnerabilities for packages: tensorflow-gpu-jupyter, tensorflow-cpu-jupyter...

WSO2 Identity Server 安全漏洞

WSO2 Identity Server IS is an identity server from WSO2, Inc. A security vulnerability exists in WSO2 Identity Server IS that stems from improper validation of Event Processor Management Service inputs, which could lead to remote code execution...

PT-2025-39176

Name of the Vulnerable Software and Affected Versions WSO2 products affected versions not specified Description A remote code execution issue exists in WSO2 products due to insufficient input validation within the event processor admin service. An attacker with administrative access can deploy a...

CVE-2025-7403

Unsafe handling in btconntxprocessor causes a use-after-free, resulting in a write-before-zero. The written 4 bytes are attacker-controlled, enabling precise memory corruption...

Regular Expression Denial of Service (ReDoS)

Overview Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS via user-supplied regex query. An attacker can cause excessive CPU consumption by submitting crafted regular expressions. Details Denial of Service DoS describes a family of attacks, all aimed ...

CVE-2025-7403

Unsafe handling in btconntxprocessor causes a use-after-free, resulting in a write-before-zero. The written 4 bytes are attacker-controlled, enabling precise memory corruption...

Write-what-where Condition

Overview Affected versions of this package are vulnerable to Write-what-where Condition via the btconntxprocessor function. An attacker can achieve precise memory corruption by triggering a use-after-free condition that allows writing attacker-controlled data before memory is zeroed. Remediation...

CVE-2025-7403 Bluetooth: bt_conn_tx_processor unsafe handling

Unsafe handling in btconntxprocessor causes a use-after-free, resulting in a write-before-zero. The written 4 bytes are attacker-controlled, enabling precise memory corruption...

Zephyr 安全漏洞

Zephyr is an extensible real-time operating system RTOS open-sourced by Zephyr. A security vulnerability exists in Zephyr that stems from mishandling of btconntxprocessor resulting in reuse after release, which may result in memory corruption...