CVE-2025-6275

CVE-2025-6275 concerns WebAssembly wabt up to 1.0.37. The vulnerability affects the function GetFuncOffset in src/interp/binary-reader-interp.cc, where manipulation can lead to a use-after-free. It permits a local attack, with at least one public disclosure of an exploit. Connected sources consis...

CVE-2025-6275 WebAssembly wabt binary-reader-interp.cc GetFuncOffset use after free

A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been declared as problematic. Affected by this vulnerability is the function GetFuncOffset of the file src/interp/binary-reader-interp.cc. The manipulation leads to use after free. It is possible to launch the attack on the local...

DEBIAN-CVE-2025-6274

A vulnerability was found in WebAssembly wabt up to 1.0.37. It has been classified as problematic. Affected is the function OnDataCount of the file src/interp/binary-reader-interp.cc. The manipulation leads to resource consumption. Attacking locally is a requirement. The exploit has been disclose...

DEBIAN-CVE-2025-6273

A vulnerability was found in WebAssembly wabt up to 1.0.37 and classified as problematic. This issue affects the function LogOpcode of the file src/binary-reader-objdump.cc. The manipulation leads to reachable assertion. Local access is required to approach this attack. The exploit has been...

UBUNTU-CVE-2025-6273

A vulnerability was found in WebAssembly wabt up to 1.0.37 and classified as problematic. This issue affects the function LogOpcode of the file src/binary-reader-objdump.cc. The manipulation leads to reachable assertion. Local access is required to approach this attack. The exploit has been...

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the com.powsybl.commons.xml.XmlReader class. An attacker can access sensitive files or internal resources by submitting specially crafted XML input. Note: This is only exploitable if untrusted users...

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the com.powsybl.commons.xml.XmlReader class. An attacker can access sensitive files or internal resources by submitting specially crafted XML input. Note: This is only exploitable if untrusted users...

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the com.powsybl.commons.xml.XmlReader class. An attacker can access sensitive files or internal resources by submitting specially crafted XML input. Note: This is only exploitable if untrusted users...

GHSA-QPJ9-QCWX-8JV2 PowSyBl Core XML Reader allows XXE and SSRF

Impact What kind of vulnerability is it? Who is impacted? In certain places, powsybl-core XML parsing is vulnerable to an XXE attack and in on place also to an SSRF attack. This allows an attacker to elevate their privileges to read files that they do not have permissions to, including sensitive...

PowSyBl Core XML Reader allows XXE and SSRF

Impact What kind of vulnerability is it? Who is impacted? In certain places, powsybl-core XML parsing is vulnerable to an XXE attack and in on place also to an SSRF attack. This allows an attacker to elevate their privileges to read files that they do not have permissions to, including sensitive...

WebAssembly wabt 资源管理错误漏洞

WebAssembly wabt is a WebAssembly binary toolkit open-sourced by WebAssembly. A resource management error vulnerability exists in WebAssembly wabt 1.0.37 and earlier versions, which stems from a resource consumption in the function OnDataCount in the file src/interp/binary-reader-interp.cc...

WebAssembly wabt 安全漏洞

WebAssembly wabt is a WebAssembly binary toolkit open-sourced by WebAssembly. A security vulnerability exists in WebAssembly wabt 1.0.37 and earlier versions, which originates from a reachable assertion in the function LogOpcode in the file src/binary-reader-objdump.cc...

WebAssembly wabt 资源管理错误漏洞

WebAssembly wabt is a WebAssembly binary toolkit open-sourced by WebAssembly. A resource management error vulnerability exists in WebAssembly wabt 1.0.37 and earlier versions, which stems from post-release reuse of the function GetFuncOffset in the file src/interp/binary-reader-interp.cc...

Adobe Acrobat Reader Memory Misreference Vulnerability (CNVD-2025-13318)

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. A memory misreference vulnerability exists in Adobe Acrobat Reader, which can be exploited by an attacker to execute code on the system or cause the application to...

Adobe Acrobat Reader Memory Misreference Vulnerability

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. A memory misreference vulnerability exists in Adobe Acrobat Reader, which can be exploited by an attacker to execute code on the system or cause the application to...

Adobe Acrobat Reader Out-of-Bounds Read Vulnerability (CNVD-2025-13315)

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has an out-of-bounds read vulnerability that can be exploited by an attacker to obtain sensitive information...

Adobe Acrobat Reader Information Disclosure Vulnerability (CNVD-2025-13316)

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has an information disclosure vulnerability that can be exploited by attackers to obtain sensitive information...

Adobe Acrobat Reader Out-of-Bounds Read Vulnerability (CNVD-2025-13313)

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has an out-of-bounds read vulnerability that can be exploited by an attacker to cause a sensitive memory leak...

PT-2025-34322

Name of the Vulnerable Software and Affected Versions: Foxit PDF Reader affected versions not specified Description: The Foxit PDF Reader Update Service contains a local privilege escalation issue due to an uncontrolled search path element. This allows for potential exploitation by a local...

Adobe Acrobat Reader Null Pointer Dereference Vulnerability

Adobe Acrobat Reader is a PDF viewer from the American company Audobee Adobe. The software is used to print, sign and annotate PDF. Adobe Acrobat Reader has a null pointer dereference vulnerability that can be exploited by an attacker to cause a denial of service...