CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Talos•added 2025/03/12 12:0 a.m.•25 views

Adobe Acrobat Reader Font VariationStore itemVariationDataCount Uninitialized Pointer Vulnerability

Talos Vulnerability Report TALOS-2025-2135 Adobe Acrobat Reader Font VariationStore itemVariationDataCount Uninitialized Pointer Vulnerability March 12, 2025 CVE Number CVE-2025-27158 SUMMARY A memory corruption vulnerability exists due to the use of an uninitialized pointer in the Font...

7.8CVSS7.9AI score0.002EPSS

Exploits0

OSV•added 2025/03/11 6:15 p.m.•1 views

CVE-2025-27162

Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim mus...

7.8CVSS6.3AI score0.00089EPSS

ATTACKERKB•added 2025/03/11 6:15 p.m.•0 views

CVE-2025-27162

7.8CVSS7.6AI score0.00089EPSS

NVD•added 2025/03/11 6:15 p.m.•9 views

CVE-2025-27158

7.8CVSS0.002EPSS

ATTACKERKB•added 2025/03/11 6:15 p.m.•1 views

CVE-2025-27158

7.8CVSS7.6AI score0.002EPSS

OSV•added 2025/03/11 6:15 p.m.•0 views

CVE-2025-27158

7.8CVSS6.3AI score0.002EPSS

Vulnrichment•added 2025/03/11 6:10 p.m.•8 views

CVE-2025-27158 Acrobat Reader | Access of Uninitialized Pointer (CWE-824)

7.8CVSS7.8AI score0.002EPSS

CVE•added 2025/03/11 6:10 p.m.•77 views

CVE-2025-27158

CVE-2025-27158 affects Adobe Acrobat Reader DC/Classic: Uninitialized Pointer (CWE-824) leading to arbitrary code execution in the context of the current user. Affected versions include 24.001.30225, 20.005.30748, 25.001.20428 and earlier. Exploitation requires user interaction (opening a malicio...

7.8CVSS7.3AI score0.002EPSS

Exploits0References2Affected Software4

Cvelist•added 2025/03/11 6:10 p.m.•13 views

CVE-2025-27162 Acrobat Reader | Access of Uninitialized Pointer (CWE-824)

7.8CVSS0.00089EPSS

CVE•added 2025/03/11 6:10 p.m.•72 views

CVE-2025-27162

CVE-2025-27162 affects Adobe Acrobat Reader versions 24.001.30225, 20.005.30748, 25.001.20428 and earlier. The issue is an Access of Uninitialized Pointer (CWE-824) that could lead to arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim must ...

7.8CVSS7.3AI score0.00089EPSS

Exploits0References1Affected Software4

Vulnrichment•added 2025/03/11 6:10 p.m.•10 views

CVE-2025-27162 Acrobat Reader | Access of Uninitialized Pointer (CWE-824)

7.8CVSS7.8AI score0.00089EPSS

NVD•added 2025/03/11 7:15 a.m.•10 views

CVE-2025-2173

7.5CVSS0.00277EPSS

OSV•added 2025/03/11 7:15 a.m.•10 views

CVE-2025-2173

7.5CVSS5.7AI score0.00178EPSS

OSV•added 2025/03/11 7:15 a.m.•1 views

UBUNTU-CVE-2025-2173

7.5CVSS4.8AI score0.00277EPSS

Exploits0References8

Cvelist•added 2025/03/11 6:31 a.m.•13 views

CVE-2025-2173 libzvbi conv.c vbi_strndup_iconv_ucs2 uninitialized pointer

6.9CVSS0.00277EPSS

Vulnrichment•added 2025/03/11 6:31 a.m.•8 views

CVE-2025-2173 libzvbi conv.c vbi_strndup_iconv_ucs2 uninitialized pointer

6.9CVSS5.5AI score0.00277EPSS

CVE•added 2025/03/11 6:31 a.m.•71 views

CVE-2025-2173

CVE-2025-2173 affects libzvbi up to 0.2.43, specifically the function _vbi_strndup_iconv_ucs2 in src/conv.c. The issue is an uninitialized pointer caused by improper handling of src_length, enabling a remote attack and, per sources, an exploit has been disclosed publicly. Multiple advisories conf...

7.5CVSS7.3AI score0.00277EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2025/03/11 12:0 a.m.•9 views

CBL Mariner 2.0 Security Update: xorg-x11-server / xorg-x11-server-Xwayland (CVE-2025-26599)

The version of xorg-x11-server / xorg-x11-server-Xwayland installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-26599 advisory. - An access to an uninitialized pointer flaw was found in X.Org and...

7.8CVSS7.3AI score0.00029EPSS