5 matches found
Lychee 代码问题漏洞
Lychee is a beautiful and easy-to-use photo management system developed by The Lychee Organisation. It is used for managing and sharing photos. Versions of Lychee prior to 7.5.2 had code vulnerabilities that could be exploited through DNS redirection bypasses, allowing for server-side request...
CVE-2025-64118 node-tar vulnerable to race condition leading to uninitialized memory exposure
node-tar is a Tar for Node.js. In 7.5.1, using .t aka .list with sync: true to read tar entry contents returns uninitialized memory contents if tar file was changed on disk to a smaller size while being read. This vulnerability is fixed in 7.5.2...
PT-2023-3767 · Siemens · Simatic Wincc
Name of the Vulnerable Software and Affected Versions: SIMATIC WinCC versions prior to V7.5.2.13 Description: The issue is related to improper permission assignment for a critical resource in the SCADA system. This could allow an authenticated local attacker to inject arbitrary code and escalate...
CVE-2018-6293
Arbitrary File Read in Saperion Web Client version 7.5.2 83166...
CVE-2009-2189
The ICMPv6 implementation on the Apple Time Capsule, AirPort Extreme Base Station, and AirPort Express Base Station with firmware before 7.5.2 does not limit the rate of 1 Router Advertisement and 2 Neighbor Discovery packets, which allows remote attackers to cause a denial of service resource...