23 matches found
EUVD-2025-11522
Malicious code in bioql PyPI...
EUVD-2025-7690
Malicious code in bioql PyPI...
CVE-2025-43708
VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...
CVE-2025-43708
VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...
CVE-2025-43708
VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...
CVE-2025-43708
VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...
VisiCut 安全漏洞
VisiCut is a tool from the personal developer Thomas Oster. A security vulnerability exists in VisiCut version 2.1, which stems from the fact that XML documents with nested set elements can lead to stack consumption, such as unsafe deserialization issues...
CVE-2025-43708
CVE-2025-43708 affects Visicut 2.1. The vulnerability arises from insecure deserialization of XML documents containing nested set elements, which can trigger a java.util.HashMap StackOverflowError (e.g., when reference is '../../../set/set[2]'), leading to stack consumption. Multiple sources corr...
CVE-2025-43708
VisiCut 2.1 allows stack consumption via an XML document with nested set elements, as demonstrated by a java.util.HashMap StackOverflowError when reference='../../../set/set2' is used, aka an "insecure deserialization" issue...
PT-2025-16925 · Visicut · Visicut
Name of the Vulnerable Software and Affected Versions: VisiCut version 2.1 Description: The issue is related to insecure deserialization, where VisiCut 2.1 allows stack consumption via an XML document with nested set elements. This can be demonstrated by a java.util.HashMap StackOverflowError whe...
CVE-2025-25940
VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...
CVE-2025-25940
VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...
CVE-2025-25940
CVE-2025-25940 affects VisiCut 2.1. The vulnerability arises from insecure XML deserialization in the loadPlfFile method of VisicutModel.java, enabling potential code execution. The published metrics indicate a CRITICAL impact (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H; base score 9.8). The c...
CVE-2025-25940
VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...
CVE-2025-25940
VisiCut 2.1 allows code execution via Insecure XML Deserialization in the loadPlfFile method of VisicutModel.java...
VisiCut 代码问题漏洞
VisiCut is a tool by Thomas Oster, a personal developer. A security vulnerability exists in VisiCut version 2.1, which stems from unsafe XML deserialization in the loadPlfFile method of VisiCutModel.java, which could lead to code execution...
PT-2025-10599 · Visicut · Visicut
Name of the Vulnerable Software and Affected Versions: VisiCut version 2.1 Description: The issue allows code execution via insecure XML deserialization in the loadPlfFile method of VisicutModel.java. Recommendations: For VisiCut version 2.1, consider restricting the use of the loadPlfFile method...
CVE-2024-51365
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: none. Reason: This record was withdrawn by its CNA. Further investigation showed that it was not a security issue. Notes: none...
CVE-2024-51365
CVE-2024-51365 entry is rejected/not used; withdrawn by CNA and not a security issue.
CVE-2024-51365
...