Lucene search
+L

7 matches found

UbuntuCve
UbuntuCve
added 2025/10/23 4:16 p.m.3 views

CVE-2025-50951

FontForge v20230101 was discovered to contain a memory leak via the utf7toutf8copy function at /fontforge/sfd.c...

6.5CVSS5.9AI score0.00237EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/10/23 12:15 p.m.2 views

CVE-2025-62398

A serious authentication flaw allowed attackers with valid credentials to bypass multi-factor authentication under certain conditions, potentially compromising user accounts...

5.4CVSS5.8AI score0.00234EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/10/23 12:15 p.m.2 views

CVE-2025-62394

Moodle failed to verify enrolment status correctly when sending quiz notifications. As a result, suspended or inactive users might receive quiz-related messages, leaking limited course information...

4.3CVSS5.9AI score0.00208EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/10/22 10:15 p.m.2 views

CVE-2025-62706

Authlib is a Python library which builds OAuth and OpenID Connect servers. Prior to version 1.6.5, Authlib’s JWE zip=DEF path performs unbounded DEFLATE decompression. A very small ciphertext can expand into tens or hundreds of megabytes on decrypt, allowing an attacker who can supply decryptable...

6.5CVSS6.9AI score0.00427EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2025/10/22 10:15 p.m.3 views

CVE-2025-62708

pypdf is a free and open-source pure-python PDF library. Prior to version 6.1.3, an attacker who uses this vulnerability can craft a PDF which leads to large memory usage. This requires parsing the content stream of a page using the LZWDecode filter. This has been fixed in pypdf version 6.1.3...

8.7CVSS6.9AI score0.00411EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/10/22 2:15 p.m.4 views

CVE-2022-50572

In the Linux kernel, the following vulnerability has been resolved: ASoC: audio-graph-card: fix refcount leak of cpuep in graphforeachlink The ofgetnextchild returns a node with refcount incremented, and decrements the refcount of prev. So in the error path of the while loop, ofnodeput needs be...

5.9AI score0.00205EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/10/21 8:20 p.m.2 views

CVE-2025-61760

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.12 and 7.2.2. Difficult to exploit vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromi...

7.5CVSS7.1AI score0.00144EPSS
Exploits0References2
Rows per page
Query Builder