EUVD-2025-24863

Malicious code in bioql PyPI...

OESA-2025-2108 aide security update

Security Fixes: A vulnerability was found in AIDE up to 0.19.1 and classified as problematic.Using CWE to declare the problem leads to CWE-117. The product does not neutralize or incorrectly neutralizes output that is written to logs.Impacted is integrity.Upgrading to version 0.19.2 eliminates th...

CVE-2025-54409

A flaw was found in AIDE. This vulnerability allows an attacker to crash the program during report printing or database listing after setting extended file attributes with an empty attribute value or with a key containing a comma. A local user can exploit this issue to cause a local denial of...

CVE-2025-54409 AIDE null pointer dereference when reading incorrectly encoded xattr attributes from database (local DoS)

AIDE is an advanced intrusion detection environment. From versions 0.13 to 0.19.1, there is a null pointer dereference vulnerability in AIDE. An attacker can crash the program during report printing or database listing after setting extended file attributes with an empty attribute value or with a...

ClipSoft REXPERT XML Injection Vulnerability

ClipSoft REXPERT is a report generation program from ClipSoft Korea. An injection vulnerability exists in ClipSoft REXPERT XML. An attacker can exploit this vulnerability to create and execute arbitrary files via the report printing function...