PT-2025-51862

Name of the Vulnerable Software and Affected Versions narda miteq Uplink Power Control Unit UPC2 version 1.17 Description A Cross-Site Request Forgery CSRF issue exists in the narda miteq Uplink Power Control Unit UPC2 version 1.17. A remote attacker can potentially execute arbitrary code through...

CVE-2025-68171 x86/fpu: Ensure XFD state on signal delivery

In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure XFD state on signal delivery Sean reported 1 the following splat when running KVM tests: WARNING: CPU: 232 PID: 15391 at xfdvalidatestate+0x65/0x70 Call Trace: fpuclearuserstates+0x9c/0x100...

God Mode On: how we attacked a vehicle’s head unit modem

Introduction Imagine you're cruising down the highway in your brand-new electric car. All of a sudden, the massive multimedia display fills with Doom, the iconic 3D shooter game. It completely replaces the navigation map or the controls menu, and you realize someone is playing it remotely right...

PT-2025-51792

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 143.0.7499.147 Description A use-after-free issue exists in the WebGPU component of Google Chrome. This flaw could allow a remote attacker to exploit heap corruption through a specially crafted HTML page. The...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to properly restore partition mode after hibernation recovery, which could result in a GPU page...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a double release per CPU stream cleanup in crypto:zstd...

PT-2025-51584

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue related to the handling of the XFD state during signal delivery. Specifically, when a non-AMX task is preempted by an AMX-enabled task that modifies th...

Important: Red Hat Security Advisory: Red Hat AI Inference Server 3.2.5 (TPU)

Red Hat AI Inference Server 3.2.5 TPU is now available. Red Hat® AI Inference Server...

CVE-2025-14664

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

EUVD-2025-203301

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

CVE-2025-14664

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

CVE-2025-14664

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

CVE-2025-14664 Campcodes Supplier Management System view_unit.php sql injection

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

CVE-2025-14664 Campcodes Supplier Management System view_unit.php sql injection

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/viewunit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available a...

CVE-2025-14664

CVE-2025-14664 affects Campcodes Supplier Management System 1.0. The issue arises from the processing of the file /admin/view_unit.php where manipulation of the chkId[] parameter leads to an SQL injection. Remote exploitation is possible, and an exploit is publicly available. The Red Hat/EU ENISA...

PT-2025-51166

A vulnerability was identified in Campcodes Supplier Management System 1.0. This issue affects some unknown processing of the file /admin/view unit.php. The manipulation of the argument chkId leads to sql injection. Remote exploitation of the attack is possible. The exploit is publicly available...

CampCodes Supplier Management System SQL注入漏洞

CampCodes Supplier Management System is a supplier management system from CampCodes, Inc. A SQL injection vulnerability exists in CampCodes Supplier Management System version 1.0, which stems from an incorrect manipulation of the parameter chkId in the file /admin/viewunit.php, which could lead t...

CVE-2025-14515

A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/addunit.php. Such manipulation of the argument txtunitDetails leads to sql injection. The attack can be launched remotely. The exploit has been...

resolv: Denial of Service in resolv gem

A denial of service flaw was found in resolv ruby gem. This flaw allows an attacker to craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses this packet, the name decompression process consumes a large amount of CPU resources, as the library does...

CVE-2025-14515

A vulnerability has been found in Campcodes Supplier Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/addunit.php. Such manipulation of the argument txtunitDetails leads to sql injection. The attack can be launched remotely. The exploit has been...