Lucene search
K

6683 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.4 views

The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/amd/display components in the Linux operating system is related to a numerical overflow condition. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.5 views

The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/amd/display components in the Linux operating system is related to the lack of zero-division checking. Exploiting this vulnerability can allow a perpetrator to cause service failures...

5.5CVSS6.7AI score0.00262EPSS
Exploits0References7Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.7 views

The vulnerability of the drm/xe component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the drm/xe component in the Linux operating system is related to the breach of the initial buffer boundary. Exploiting this vulnerability could allow an attacker to trigger a service failure...

5.5CVSS6.4AI score0.00179EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/07/04 12:0 a.m.4 views

The vulnerability of the DRM/AMD/display components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the DRM/amd/display components in the Linux operating system is related to errors in pointer arithmetic. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00219EPSS
Exploits0References13Affected Software4
Tenable Nessus
Tenable Nessus
added 2025/07/03 12:0 a.m.7 views

Fedora 42 : webkitgtk (2025-5427adc3f4)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-5427adc3f4 advisory. Limit the data stored in session state. Remove the empty area below the title bar in Web Inspector when not docked. Fix various crashes and renderin...

9.8CVSS7.1AI score0.0082EPSS
Exploits0References7
OSV
OSV
added 2025/07/02 5:37 p.m.4 views

DRUPAL-CONTRIB-2025-086

This module enables you to use config\pages as a content entity. The module doesn't check permission or entity access before rendering config\pages content...

5.3CVSS6.8AI score0.00265EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/02 4:46 p.m.5 views

CVE-2025-52886

A use-after-free vulnerability has been discovered in the PDF rendering library, stemming from a reference counting flaw. This issue allows an attacker, by providing specially crafted malicious input, to overflow a reference counter which subsequently leads to a use-after-free condition. While th...

6.9CVSS7.9AI score0.00371EPSS
Exploits1References8
RedHat Linux
RedHat Linux
added 2025/07/02 4:33 p.m.5 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash...

6.1CVSS5.7AI score0.00279EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2025/07/02 3:46 p.m.4 views

CVE-2025-52886

Poppler is a PDF rendering library. Versions prior to 25.06.0 use std::atomicint for reference counting. Because std::atomicint is only 32 bits, it is possible to overflow the reference count and trigger a use-after-free. Version 25.06.0 patches the issue...

6.9CVSS6.9AI score0.00371EPSS
Exploits1
NVD
NVD
added 2025/07/02 3:15 p.m.5 views

CVE-2025-6725

In the PdfViewer component, a Cross-Site Scripting XSS vulnerability is possible if a specially-crafted document has already been loaded and the user engages with a tool that requires the DOM to be re-rendered...

5.4CVSS0.00219EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/07/02 2:59 p.m.6 views

thunderbird: Unsolicited File Download, Disk Space Exhaustion, and Credential Leakage via mailbox:/// Links

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A crafted HTML email using mailbox:/// links can trigger automatic, unsolicited downloads of .pdf files to the user's desktop or home directory without prompting, even if auto-saving is...

6.5CVSS7.3AI score0.00466EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/07/02 2:39 p.m.7 views

CVE-2025-6725 Cross-Site Scripting (XSS) in PdfViewer

In the PdfViewer component, a Cross-Site Scripting XSS vulnerability is possible if a specially-crafted document has already been loaded and the user engages with a tool that requires the DOM to be re-rendered...

5.4CVSS0.00219EPSS
Exploits0References6
CVE
CVE
added 2025/07/02 2:39 p.m.45 views

CVE-2025-6725

CVE-2025-6725 is a Cross-Site Scripting (XSS) vulnerability reported in the PdfViewer component across Progress Telerik UI products (e.g., UI for ASP.NET Core/Blazor/ASP.NET MVC, Kendo UI for React/Angular/jQuery). The root cause, as described in the initial materials, is insufficient validation ...

5.4CVSS5.5AI score0.00219EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/07/01 12:0 a.m.7 views

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules, related to the occurrence of operations outside the buffer in memory, allows attackers to cause service failures.

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.3AI score0.00593EPSS
Exploits0References12Affected Software4
RedHat Linux
RedHat Linux
added 2025/06/30 1:49 p.m.3 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash...

6.1CVSS5.7AI score0.00279EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/06/30 12:0 a.m.2 views

SAMSUNG rLottie 安全漏洞

SAMSUNG rLottie is a platform-independent, standalone c++ library for real-time rendering of vector-based animation and art from Samsung South Korea. A code execution vulnerability exists in SAMSUNG rLottie, which can be exploited by an attacker to execute arbitrary code on a system...

9.1CVSS8.1AI score0.00336EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/28 12:0 a.m.6 views

Fedora 42 : webkitgtk (2025-40aeebe6d2)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-40aeebe6d2 advisory. Enable CSS Overscroll Behavior by default. Change threaded rendering implementation to use Skia API instead of WebCore display list that is not thre...

8.8CVSS7.1AI score0.01028EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.7 views

Vulnerability of the dpu_encoder_phys_init() function in the drivers/gpu/drm/msm/disp/dpu1/dpu_encoder.c module – This driver for supporting the Direct Rendering Infrastructure (DRI) of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the dpuencoderphysinit function in the drivers/gpu/drm/msm/disp/dpu1/dpuencoder.c module – The driver for supporting Direct Rendering Infrastructure DRI in Linux kernel is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability could allow...

7CVSS6.1AI score0.0016EPSS
Exploits0References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.5 views

Vulnerability of the si_dpm_enable() function in the drivers/gpu/drm/amd/pm/powerplay/si_dpm.c module – A driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems, which allows a hacker to cause a service failure

Vulnerability of the sidpmenable function in the drivers/gpu/drm/amd/pm/powerplay/sidpm.c module – The driver for supporting Direct Rendering Infrastructure DRI in AMD graphics cards for Linux operating systems is vulnerable due to a buffer overflow vulnerability related to the assignment of the...

5.5CVSS6.1AI score0.00239EPSS
Exploits0References10Affected Software1
RedHat Linux
RedHat Linux
added 2025/06/23 2:10 p.m.11 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash...

6.1CVSS5.7AI score0.00279EPSS
Exploits0References7
Rows per page
Query Builder