2110 matches found
CVE-2025-1047 Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution Vulnerability
Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must...
OESA-2025-1429 xorg-x11-server security update
X.Org X11 X server Security Fixes: A use-after-free flaw was found in X.Org and Xwayland. The root cursor is referenced in the X server as a global variable. If a client frees the root cursor, the internal reference points to freed memory and causes a use-after-free.CVE-2025-26594 A buffer overfl...
The vulnerability of the __skb_set_length() function in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the skbsetlength function in the Linux operating system’s kernel is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the bpf_program() function in the Linux kernel’s drivers/net/ppp/ppp_generic.c file allows a hacker to cause a service failure.
The vulnerability of the bpfprogram function in the Linux kernel’s drivers/net/ppp/pppgeneric.c file is related to the use of an uninitialized pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()
An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow will return a BadAlloc error without validating the window tree marked just before, which leaves the...
Rockwell Automation Arena < 16.20.09 Multiple Vulnerabilities
The version of Rockwell Automation Arena installed on the remote Windows host is prior to 16.20.09. It is, therefore, affected by a multiple vulnerabilities - A local code execution vulnerability exists in the affected products due to an uninitialized pointer. The flaw is result of improper...
The vulnerability of the compRedirectWindow() function in the Wayland protocol for X.Org XWayland, which is implemented in the X Window System X.Org Server, allows a attacker to execute arbitrary code.
The vulnerability of the compRedirectWindow function in the Wayland protocol for X.Org XWayland, which is part of the X Window System X.Org Server, relates to access to an uninitialized pointer. Exploiting this vulnerability could allow a attacker to execute arbitrary code...
The vulnerability of the tagged_addr_ctrl_get() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, allows a hacker to gain access to protected information or cause a service failure.
The vulnerability of the taggedaddrctrlget function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to gain access to...
CVE-2025-2286
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerabili...
CVE-2025-2285
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerabili...
CVE-2025-2287
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the vulnerabili...
Luxion KeyShot PVS File Parsing Access of Uninitialized Pointer Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Luxion KeyShot. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of pvs...
CVE-2025-2287
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2285
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2287
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2286
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2286
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2285
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2287 Local Code Execution Vulnerability in Arena®
A local code execution vulnerability exists in the Rockwell Automation Arena® due to an uninitialized pointer. The flaw is result of improper validation of user-supplied data. If exploited a threat actor can disclose information and execute arbitrary code on the system. To exploit the...
CVE-2025-2287
CVE-2025-2287 is a local code-execution vulnerability in Rockwell Automation Arena® caused by an uninitialized pointer resulting from improper validation of user-supplied data. A threat actor could disclose information and execute arbitrary code if a legitimate user opens a malicious DOE file. Ex...