26 matches found
EUVD-2025-22258
Malicious code in bioql PyPI...
EUVD-2025-22257
Malicious code in bioql PyPI...
EUVD-2025-22255
Malicious code in bioql PyPI...
CVE-2025-7223
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7226
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7224
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7225
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7224
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7226
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7226
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7225
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7223
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7226 INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7226
INVT HMITool is affected by CVE-2025-7226 via an out-of-bounds write during VPM file parsing, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The root cause is improper validation of user-supplied data, causing a writ...
CVE-2025-7225 INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7225
CVE-2025-7225 concerns INVT HMITool VPM file parsing where an out-of-bounds write on input data allows remote code execution. The flaw occurs due to insufficient validation during VPM file parsing, enabling an attacker to write past allocated memory and execute code in the current process. Exploi...
CVE-2025-7224
CVE-2025-7224 involves INVT HMITool with an out-of-bounds write in VPM file parsing, allowing arbitrary code execution. The flaw stems from improper validation of user-supplied data, causing a write past the end of an allocated buffer. Exploitation requires user interaction (target visits a craft...
CVE-2025-7224 INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
INVT HMITool VPM File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of INVT HMITool. User interaction is required to exploit this vulnerability in that the target must visit a malicio...
CVE-2025-7223
CVE-2025-7223 affects INVT HMITool (and related VT-Designer) per ZDI-25-474 and linked reports. Root cause: out-of-bounds write during parsing of VPM (and PM3) files due to insufficient input validation. This enables remote code execution in the context of the affected process, with user interact...
INVT HMITool 缓冲区错误漏洞
INVT HMITool is an HMI programming and configuration software from China-based INVT. A buffer error vulnerability exists in INVT HMITool that stems from an out-of-bounds write when parsing a VPM file, which could lead to remote code execution...