14 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-47261
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Wasmtime is a runtime for WebAssembly. In versions prior to 24.0.9, 36.0.10, and 44.0.2, when a filesystem preopen is given DirPerms::all and FilePerms::READ...
CVE-2026-47261
Wasmtime is a runtime for WebAssembly. In versions prior to 24.0.9, 36.0.10, and 44.0.2, when a filesystem preopen is given DirPerms::all and FilePerms::READ without FilePerms::WRITE, this access control mechanism can be bypassed via the wasip2 descriptor.open-at or wasip1 pathopen interfaces by...
AZL-75527 CVE-2025-11065 affecting package moby-cli for versions less than 24.0.9-8
A flaw was found in github.com/go-viper/mapstructure/v2, in the field processing component using mapstructure.WeakDecode. This vulnerability allows information disclosure through detailed error messages that may leak sensitive input values via malformed user-supplied data processed in...
CVE-2025-49562
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49561
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49562
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49562 Animate | Use After Free (CWE-416)
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49562 Animate | Use After Free (CWE-416)
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could lead to disclosure of sensitive memory. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49561
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2025-49561
CVE-2025-49561 affects Adobe Animate versions 23.0.12, 24.0.9 and earlier with a Use-After-Free vulnerability that could lead to arbitrary code execution in the context of the current user. Exploitation requires the user to open a malicious file. Affected software: Animate; root cause: Use-After-...
CVE-2025-49561 Animate | Use After Free (CWE-416)
Animate versions 23.0.12, 24.0.9 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
PT-2025-32898 · Adobe · Animate
Name of the Vulnerable Software and Affected Versions: Animate versions 23.0.12 and earlier Animate versions 24.0.9 and earlier Description: Animate is affected by a Use After Free vulnerability that could lead to the disclosure of sensitive memory. Exploitation of this issue requires a user to...
PT-2025-32897 · Adobe · Animate 24.0.9 +1
Name of the Vulnerable Software and Affected Versions: Animate versions 23.0.12 and earlier Animate versions 24.0.9 and earlier Description: Animate versions 23.0.12 and 24.0.9 and earlier are affected by a Use After Free vulnerability. Successful exploitation of this issue could lead to arbitrar...
AZL-52221 CVE-2024-51744 affecting package moby-engine for versions less than 24.0.9-17
golang-jwt is a Go implementation of JSON Web Tokens. Unclear documentation of the error behavior in ParseWithClaims can lead to situation where users are potentially not checking errors in the way they should be. Especially, if a token is both expired and invalid, the errors returned by...