CVE-2025-9329

CVE-2025-9329 refers to a Foxit PDF Reader vulnerability where the PRC file parsing contains an out-of-bounds read that enables remote code execution. The flaw arises from insufficient validation of user-supplied data, allowing a read past the end of an allocated buffer and execution of code in t...

CVE-2025-9329 Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

Foxit PDF Reader PRC File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PDF Reader. User interaction is required to exploit this vulnerability in that the target must visit a...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader, which originates from out-of-bounds reads when parsing PRC files without validating user input, and could lead to remote code execution...

many-notes 安全漏洞

many-notes is a Markdown reader by Bruno Personal Developer. A security vulnerability exists in many-notes version 0.10.1, which stems from improper handling of Markdown files and could lead to cross-site scripting attacks...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is China Foxit Foxit company a PDF reader. A security vulnerability exists in Foxit PDF Reader, which can be exploited by attackers to potentially cause information leakage...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a Chinese Foxit Foxit company's a PDF reader. A security vulnerability exists in Foxit PDF Reader, which can be exploited by attackers to cause information leakage...

Foxit PDF Reader 代码问题漏洞

Foxit PDF Reader is a Chinese Foxit Foxit company's a PDF reader. A security vulnerability exists in Foxit PDF Reader, which can be exploited by attackers to cause a local elevation of privilege...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader, which originates from out-of-bounds reads when parsing PRC files without validating user input, and could lead to remote code execution...

Foxit PDF Reader 缓冲区错误漏洞

oxit PDF Reader is China Foxit Foxit company a PDF reader. Foxit PDF Reader suffers from a buffer overflow vulnerability that originates from out-of-bounds reads when parsing PRC files without validating user input, which could lead to remote code execution. A remote attacker can exploit this...

Foxit PDF Reader 缓冲区错误漏洞

Foxit PDF Reader is a PDF reader from the Chinese company Foxit. A buffer error vulnerability exists in Foxit PDF Reader, which originates from out-of-bounds reads when parsing JP2 files without validating user input, potentially leading to information disclosure...

CVE-2025-54370

PhpOffice/PhpSpreadsheet is a pure PHP library for reading and writing spreadsheet files. Prior to versions 1.30.0, 2.1.12, 2.4.0, 3.10.0, and 5.0.0, SSRF can occur when a processed HTML document is read and displayed in the browser. The vulnerability lies in the setPath method of the...

Linux Distros Unpatched Vulnerability : CVE-2023-35970

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple heap-based buffer overflow vulnerabilities exist in the fstReaderIterBlocks2 chaintable parsing functionality of GTKWave 3.3.115. A specially crafted...

Linux Distros Unpatched Vulnerability : CVE-2022-43071

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A stack overflow in the Catalog::readPageLabelTree2Object function of XPDF v4.04 allows attackers to cause a Denial of Service DoS via a crafted PDF file...

Linux Distros Unpatched Vulnerability : CVE-2025-47815

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libpspp-core.a in GNU PSPP through 2.0.1 allows attackers to cause a heap-based buffer overflow in inflateread called indirectly from zipmemberreadall in...

Linux Distros Unpatched Vulnerability : CVE-2023-35704

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple stack-based buffer overflow vulnerabilities exist in the FST LEB128 varint functionality of GTKWave 3.3.115. A specially crafted .fst file can lead to...

Linux Distros Unpatched Vulnerability : CVE-2024-42845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An eval Injection vulnerability in the component invesalius/reader/dicom.py of InVesalius 3.1.99991 through 3.1.99998 allows attackers to execute arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2025-3122

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability classified as problematic was found in WebAssembly wabt 1.0.36. Affected by this vulnerability is the function...

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the wrapBodyReader function in the body-reader.go. An attacker can cause the server to panic and crash by sending specially crafted AWS chunked data without a Content-Length header via a reverse proxy such a...

github.com/ulikunitz/xz leaks memory when decoding a corrupted multiple LZMA archives

Summary It is possible to put data in front of an LZMA-encoded byte stream without detecting the situation while reading the header. This can lead to increased memory consumption because the current implementation allocates the full decoding buffer directly after reading the header. The LZMA head...

CVE-2025-5302

A flaw was found in the JSONReader component of the llamaindex Python package, where the depthfirstyield function has no limit on the recursive number of times it is called. This vulnerability causes Python to reach its maximum recursive depth when parsing deeply nested JSON files. The program...