Lucene search
+L

29 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-37389

Malicious code in bioql PyPI...

5.3CVSS6.6AI score0.00514EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-6774

Malicious code in bioql PyPI...

9.8CVSS6.6AI score0.00543EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-7672

Malicious code in bioql PyPI...

5.6CVSS6.6AI score0.00292EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-11791

Malicious code in bioql PyPI...

3.1CVSS6.6AI score0.00366EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/04/26 5:46 a.m.9 views

CVE-2025-32787

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. Versions 5.02.5184 to 5.02.5187 are vulnerable to NULL dereference in DeleteIPv6DefaultRouterInRA called by StorePacket. Before dereferencing, DeleteIPv6DefaultRouterInRA does not account for ParsePacket returning NULL,...

3.1CVSS6.9AI score0.00366EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 10:15 p.m.30 views

CVE-2025-32787

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. Versions 5.02.5184 to 5.02.5187 are vulnerable to NULL dereference in DeleteIPv6DefaultRouterInRA called by StorePacket. Before dereferencing, DeleteIPv6DefaultRouterInRA does not account for ParsePacket returning NULL,...

3.1CVSS0.00366EPSS
Exploits0References3
CVE
CVE
added 2025/04/16 9:41 p.m.60 views

CVE-2025-32787

CVE-2025-32787 affects SoftEtherVPN, specifically versions 5.02.5184–5.02.5187. The vulnerability is a NULL dereference in the function DeleteIPv6DefaultRouterInRA, which is called by StorePacket. The underlying cause is that DeleteIPv6DefaultRouterInRA does not handle NULL results from ParsePack...

3.1CVSS4AI score0.00366EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/04/16 9:41 p.m.7 views

CVE-2025-32787 SoftEtherVPN Affected by NULL dereference in DeleteIPv6DefaultRouterInRA

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. Versions 5.02.5184 to 5.02.5187 are vulnerable to NULL dereference in DeleteIPv6DefaultRouterInRA called by StorePacket. Before dereferencing, DeleteIPv6DefaultRouterInRA does not account for ParsePacket returning NULL,...

3.1CVSS3.9AI score0.00366EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/04/16 9:41 p.m.35 views

CVE-2025-32787 SoftEtherVPN Affected by NULL dereference in DeleteIPv6DefaultRouterInRA

SoftEtherVPN is a an open-source cross-platform multi-protocol VPN Program. Versions 5.02.5184 to 5.02.5187 are vulnerable to NULL dereference in DeleteIPv6DefaultRouterInRA called by StorePacket. Before dereferencing, DeleteIPv6DefaultRouterInRA does not account for ParsePacket returning NULL,...

3.1CVSS0.00366EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/03/15 7:8 a.m.24 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

9.8CVSS6.8AI score0.00543EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/15 7:8 a.m.17 views

CVE-2025-25566

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limited to a single allocation of a few hundred bytes with a command-line tool...

5.6CVSS6.4AI score0.00292EPSS
Exploits1References1
OSV
OSV
added 2025/03/12 4:15 p.m.5 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

9.8CVSS5.8AI score0.00543EPSS
Exploits1References2
OSV
OSV
added 2025/03/12 4:15 p.m.5 views

CVE-2025-25566

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limited to a single allocation of a few hundred bytes with a command-line tool...

5.6CVSS5.8AI score0.00292EPSS
Exploits1References2
NVD
NVD
added 2025/03/12 4:15 p.m.35 views

CVE-2025-25566

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limited to a single allocation of a few hundred bytes with a command-line tool...

5.6CVSS0.00292EPSS
Exploits1References2
NVD
NVD
added 2025/03/12 4:15 p.m.18 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

9.8CVSS0.00543EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.9 views

PT-2025-11106 · Softether · Softether Vpn

Name of the Vulnerable Software and Affected Versions: SoftEtherVPN version 5.02.5187 Description: The issue is related to a Use after Free condition in the Command.c file, specifically via the CheckNetworkAcceptThread function. Recommendations: For SoftEtherVPN version 5.02.5187, at the moment,...

9.8CVSS6.3AI score0.00543EPSS
Exploits1References7
Vulnrichment
Vulnrichment
added 2025/03/12 12:0 a.m.8 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

6.7AI score0.00543EPSS
Exploits1References2
CVE
CVE
added 2025/03/12 12:0 a.m.74 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is affected by a Use-After-Free in the Command.c file via the CheckNetworkAcceptThread function. Public descriptions consistently attribute the issue to a use-after-free condition, with the supplier noting the issue may originate in a separate stress-testing tool rather tha...

9.8CVSS6.7AI score0.00543EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2025/03/12 12:0 a.m.36 views

CVE-2025-25566

Memory Leak vulnerability in SoftEtherVPN 5.02.5187 allows an attacker to cause a denial of service via the UnixMemoryAlloc function. NOTE: the Supplier disputes this because the behavior is limited to a single allocation of a few hundred bytes with a command-line tool...

0.00292EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/03/12 12:0 a.m.24 views

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

0.00543EPSS
Exploits1References2
Rows per page
Query Builder