7921 matches found
CVE-2025-70226
CVE-2025-70226: A stack buffer overflow in D-Link DIR-513 v1.10 is triggered by the curTime parameter to goform/formEasySetupWizard. The issue affects the device firmware; the cited description, CVSSv3.1 base score 9.8 (CRITICAL) indicates high impact on confidentiality, integrity, and availabili...
CVE-2025-70226
Stack buffer overflow vulnerability in D-Link DIR-513 v1.10 via the curTime parameter to goform/formEasySetupWizard...
CVE-2025-46108
D-link Dir-513 A1FW110 is vulnerable to Buffer Overflow in the function formTcpipSetup...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005539)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005539 advisory. In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in xstcpsetupsocket When using a BPF progr...
CVE-2025-15595
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
CVE-2025-15595
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
CVE-2025-15595
CVE-2025-15595 describes privilege escalation via dll hijacking in Inno Setup, affecting version 6.2.1 and earlier. The underlying issue is a dll hijack in the installer process. According to the provided metrics, exploitation requires local access with low privileges and no user interaction, and...
CVE-2025-15595 Privilege escalation via dll hijacking in Inno Setup
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
CVE-2025-15595 Privilege escalation via dll hijacking in Inno Setup
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
EUVD-2025-208225
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
CVE-2025-15595
Privilege escalation via dll hijacking in Inno Setup 6.2.1 and ealier versions...
Inno Setup 安全漏洞
Inno Setup is a free installation program software developed by Jordan Russell. It can be used to create installation programs. Inno Setup versions 6.2.1 and earlier have security vulnerabilities; these vulnerabilities stem from a vulnerability that makes the software susceptible to DLL hijacking...
PT-2026-22721
Name of the Vulnerable Software and Affected Versions Inno Setup versions prior to 6.2.1 Description A privilege escalation issue exists due to a dll hijacking weakness. This allows an attacker to execute arbitrary code with elevated privileges. Recommendations Update to a version newer than 6.2....
MAL-2026-1144 Malicious code in roku-aihub (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 19b48d460fde1b6b9802a2f2b7d93928f89b0474235adc54553971ed4575e5df Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
CVE-2026-0013
In setupLayout of PickActivity.java, there is a possible way to start any activity as a DocumentsUI app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
EUVD-2026-9231
In setupLayout of PickActivity.java, there is a possible way to start any activity as a DocumentsUI app due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2026-0013
CVE-2026-0013 affects the DocumentsUI path in Android (Documents UI, DocumentsUI/Picker flow via PickActivity.setupLayout). The vulnerability allows a confused deputy to start any activity from within a DocumentsUI app, enabling local privilege elevation without extra execution privileges or user...
Can LLMs Hack Enterprise Networks? -- Replicated Computational Results (RCR) Report
This is the Replicated Computational Results RCR Report for the paper "Can LLMs Hack Enterprise Networks?" The paper empirically investigates the efficacy and effectiveness of different LLMs for penetration-testing enterprise networks, i.e., Microsoft Active Directory Assumed-Breach Simulations...
MAL-2026-1088 Malicious code in bladebit (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 f415139e8d21831bbadeb09351ae32306980ae4de3692fc6cafc1d72c2b99e28 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
MAL-2026-1086 Malicious code in tchap-bot (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 ca239020bc35efc249b5f387dc3ae473132184319b88a498ba3f7ddd9dd6dfe3 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...