Topaz SERVCore Teller 授权问题漏洞

Topaz SERVCore Teller is a banking service software from Topaz Brazil. An authorization issue vulnerability exists in Topaz SERVCore Teller version 2.14.0-RC2 and version 2.14.1, which stems from a permissions issue in the file SERVCoreTeller2.0.40D.msi, which could lead to a local attack...

PT-2025-39043

Name of the Vulnerable Software and Affected Versions Zoho Flow versions through 2.14.1 Description Zoho Flow is susceptible to Cross-Site Request Forgery CSRF. This allows an attacker to potentially perform actions on behalf of an authenticated user without their knowledge. Recommendations Updat...

AZL-60450 CVE-2025-22872 affecting package keda for versions less than 2.14.1-7

The tokenizer incorrectly interprets tags with unquoted attribute values that end with a solidus character / as self-closing. When directly using Tokenizer, this can result in such tags incorrectly being marked as self-closing, and when using the Parse functions, this can result in content...

CVE-2024-30258

FastDDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to versions 2.14.1, 2.13.5, 2.10.4, and 2.6.8, when a publisher serves a malformed RTPS packet, the subscriber crashes when creating pthread. This can remotely crash any Fast-DD...