PT-2025-39617

Name of the Vulnerable Software and Affected Versions Silencesoft RSS Reader versions through 0.6 Description A Server-Side Request Forgery SSRF issue exists in Silencesoft RSS Reader. This allows for Server Side Request Forgery. Recommendations At the moment, there is no information about a newe...

KLA88513 Multiple vulnerabilities in Foxit Reader

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to bypass security restrictions. Below is a complete list of vulnerabilities: 1. Signature-Based Trust Bypass vulnerability can be exploited to bypass security restrictions. 2. Improper...

Police using drones to read your license plates, warns EFF

Police are using drones as flying automated license plate readers ALPRs, according to a report by the Electronic Frontier Foundation EFF. And where there is a market, a provider will jump in. Or was it the other way around this time? Flock Safety, for example, recently told a group of potential l...

Realtek SD Card Reader Driver Security Update

Potential vulnerabilities have been identified in the HP PC products that are configured with certain Realtek SD card readers, which might allow escalation of privilege or information disclosure. Updated Realtek SD card reader drivers have been released for mitigation. Realtek has released update...

Adobe Acrobat Reader Page Property Use-After-Free Vulnerability

Talos Vulnerability Report TALOS-2025-2222 Adobe Acrobat Reader Page Property Use-After-Free Vulnerability September 23, 2025 CVE Number CVE-2025-54257 SUMMARY A use-after-free vulnerability exists in the page property functionality of Adobe Acrobat Reader 2025.001.20531. A specially crafted...

CVE-2025-9450

A Use of Uninitialized Variable vulnerability affecting the JT file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 could allow an attacker to execute arbitrary code while opening a specially crafted JT file...

Exploit for CVE-2010-1240

CVE-2010-1240 PDF Launch Action Research Tool !Pythonhttps...

CVE-2025-9449

A Use After Free vulnerability affecting the PAR file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 could allow an attacker to execute arbitrary code while opening a specially crafted PAR file...

CVE-2025-9449

CVE-2025-9449 is a Use-After-Free vulnerability in the PAR file parsing path of Dassault Systèmes SOLIDWORKS eDrawings on SOLIDWORKS Desktop 2025. The issue arises during PAR file reading and can allow arbitrary code execution if a specially crafted PAR file is opened. Public advisories indicate ...

CVE-2025-9449 Use After Free vulnerability affecting the PAR file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025

A Use After Free vulnerability affecting the PAR file reading procedure in SOLIDWORKS eDrawings on Release SOLIDWORKS Desktop 2025 could allow an attacker to execute arbitrary code while opening a specially crafted PAR file...

PT-2025-38118

Name of the Vulnerable Software and Affected Versions SOLIDWORKS eDrawings versions prior to SOLIDWORKS Desktop 2025 Description An out-of-bounds read issue exists in the PAR file reading procedure of SOLIDWORKS eDrawings. Successful exploitation of this issue could allow an attacker to execute...

PT-2025-38119

Name of the Vulnerable Software and Affected Versions SOLIDWORKS eDrawings versions prior to SOLIDWORKS Desktop 2025 Description A Use After Free vulnerability exists in the PAR file reading procedure of SOLIDWORKS eDrawings. This issue could allow an attacker to execute arbitrary code by opening...

HTMLDOC 1.9.13 - Stack Buffer Overflow

!/usr/bin/env python3 Exploit Title: HTMLDOC 1.9.13 - Stack Buffer Overflow Google Dork: N/A Date: 2025-08-26 Exploit Author: wulfgarpro Vendor Homepage: https://github.com/michaelrsweet/htmldoc Software Link: https://github.com/michaelrsweet/htmldoc/releases/tag/v1.9.13 Version: 256. Negative...

Adobe Reader < 20.005.30791 / 25.001.20693 Multiple Vulnerabilities (APSB25-85) (macOS)

The version of Adobe Reader installed on the remote macOS host is a version prior to 20.005.30791 or 25.001.20693. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerability...

Adobe Reader < 20.005.30793 / 25.001.20693 Multiple Vulnerabilities (APSB25-85)

The version of Adobe Reader installed on the remote Windows host is a version prior to 20.005.30793 or 25.001.20693. It is, therefore, affected by multiple vulnerabilities. - Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerabilit...

CVE-2025-54257

Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

CVE-2025-54255

Acrobat Reader versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier are affected by a Violation of Secure Design Principles vulnerability that could result in a security feature bypass. Exploitation of this issue does not require user interaction, and scope is unchanged...

Vulnerabilities fixed in Adobe Acrobat Reader

Adobe has fixed vulnerabilities in Adobe Acrobat Reader Specifically for versions 24.001.30254, 20.005.30774, 25.001.20672 and earlier. The vulnerability involves a Use After Free vulnerability that can lead to arbitrary code execution when a user opens a specially crafted malicious file. In...

Linux Distros Unpatched Vulnerability : CVE-2022-38495

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LIEF commit 365a16a was discovered to contain a heap-buffer overflow via the function printbinary at /c/machoreader.c. CVE-2022-38495 Note that Nessus relies on...

Linux Distros Unpatched Vulnerability : CVE-2022-35114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SWFTools commit 772e55a2 was discovered to contain a segmentation violation via extractFrame at /readers/swf.c. CVE-2022-35114 Note that Nessus relies on the...