3 matches found
CVE-2025-47410 Apache Geode: CSRF attacks through GET requests to the Management and Monitoring REST API that can execute gfsh commands on the target system
Apache Geode is vulnerable to CSRF attacks through GET requests to the Management and Monitoring REST API that could allow an attacker who has tricked a user into giving up their Geode session credentials to submit malicious commands on the target system on behalf of the authenticated user. This...
libvpx: Use after free
Background libvpx is the VP8 codec SDK used to encode and decode video streams, typically within a WebM format media file. Description A vulnerability has been discovered in libvpx. Please review the CVE identifier referenced below for details. Impact Please review the referenced CVE identifier f...
DEBIAN-CVE-2025-6140
A vulnerability, which was classified as problematic, was found in spdlog up to 1.15.1. This affects the function scopedpadder in the library include/spdlog/patternformatter-inl.h. The manipulation leads to resource consumption. It is possible to launch the attack on the local host. The exploit h...