PT-2025-32134 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: affected versions not specified Description: A memory corruption issue exists when processing an IOCTL command with an arbitrary address. Recommendations: At the moment, there is no information about a newer version that contains a fix for th...

PT-2025-23644 · Samsung · Exynos

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor Exynos versions 1480 and 2400 Description: An issue was discovered in the Samsung Mobile Processor Exynos, where the lack of a length check leads to out-of-bounds writes. Recommendations: For Samsung Mobile Processor...

PT-2025-23226 · Vllm · Vllm

Name of the Vulnerable Software and Affected Versions: vLLM versions 0.8.0 through 0.9.0 Description: The issue arises when the /v1/completions API endpoint is hit with an invalid json schema as a Guided Param, causing the vLLM server to crash. This is similar to a previously known issue but...

PT-2025-19370 · Totolink · Totolink A720R

Name of the Vulnerable Software and Affected Versions: TOTOLINK A720R version 4.1.5cu.374 Description: A vulnerability was found in the TOTOLINK A720R, affecting an unknown functionality of the file /cgi-bin/cstecgi.cgi. The manipulation of the topicurl argument with the input showSyslog leads to...

PT-2025-17059 · Unknown · Shipmozo Courier Tracking

Name of the Vulnerable Software and Affected Versions: Shipmozo Courier Tracking versions n/a through 1.0 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This type of issue can occu...

PT-2025-17170 · Unknown · Rtpharry Bulk Page Stub Creator

Name of the Vulnerable Software and Affected Versions: rtpHarry Bulk Page Stub Creator versions n/a through 1.1 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This means an attacke...

PT-2025-16180 · Unknown · Powercreator Cms

Name of the Vulnerable Software and Affected Versions: PowerCreator CMS version 1.0 Description: A critical issue was found in PowerCreator CMS, affecting an unknown function of the file /OpenPublicCourse.aspx. The manipulation of the cid argument leads to sql injection. It is possible to launch...

PT-2025-27974

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak issue has been identified in the Linux kernel, specifically in the wifi: ath12k module. The issue occurs due to multiple allocations of rx stats when the same station is...

PT-2025-3583 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel's ASoC: SOF: Intel: hda-dai component, where the link DMA should not be released on a stop trigger, as a stream re-start might occur without closing...

PT-2025-25439 · Xwiki · Xwiki

Name of the Vulnerable Software and Affected Versions: XWiki versions prior to 15.10.16 XWiki versions prior to 16.4.7 XWiki versions prior to 16.10.2 Description: The issue arises when a user without script rights creates a document containing an XWiki.Notifications.Code.NotificationDisplayerCla...

PT-2024-27765 · Unknown · Wbsairback

Name of the Vulnerable Software and Affected Versions: WBSAirback version 21.02.04 Description: The issue is related to a Cross-Site Request Forgery vulnerability, which could allow an attacker to create a manipulated HTML form to perform privileged actions once it is executed by a privileged use...

PT-2024-14532 · Unisoc (Shanghai) Technologies Co. +2 · T760/T770/T820/S8000 +5

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: The issue involves a possible missing permission check in Plaintext COUNTER CHECK messages accepted before AS security activation. This could lead to...

PT-2024-18627 · Zhicms · Zhicms

Name of the Vulnerable Software and Affected Versions: ZhiCms version 4.0 Description: A critical issue has been found in ZhiCms, affecting the getindexdata function of the file app/index/controller/mcontroller.php. The manipulation of the key argument leads to SQL injection. The attack may be...

PT-2023-9113 · Telit · Telit Cinterion Pls62 +3

Name of the Vulnerable Software and Affected Versions: Telit Cinterion BGS5 Telit Cinterion EHS5/6/8 Telit Cinterion PDS5/6/8 Telit Cinterion ELS61/81 Telit Cinterion PLS62 Description: A Relative Path Traversal issue exists that could allow a local, low privileged attacker to escape from virtual...

PT-2023-7009 · Ibm · Ibm Security Directory Server

Name of the Vulnerable Software and Affected Versions: IBM Security Directory Server version 6.4.0 Description: The issue is related to an XML External Entity Injection XXE attack when processing XML data. A remote attacker could exploit this to expose sensitive information or consume memory...

PT-2023-23087 · Apollo · Apollo

Name of the Vulnerable Software and Affected Versions: Apollo affected versions not specified Description: The issue allows comments added by users in Apollo change requests to contain a javascript URI link. When rendered, this link can result in a cross-site scripting XSS attack that requires us...

PT-2023-6913 · Ibm · Ibm Txseries For Multiplatforms

Name of the Vulnerable Software and Affected Versions: IBM TXSeries for Multiplatforms versions 8.1 through 9.1 Description: The issue is related to a denial of service caused by improper enforcement of the timeout on individual read operations. A remote attacker could exploit this by conducting...

PT-2023-26043 · Assembly · Trialworks

Name of the Vulnerable Software and Affected Versions: Assembly Software Trialworks version 11.4 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML by injecting a crafted payload into the asset src parameter. This enables the execution of...

PT-2023-35743 · Git +1 · Suricata

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read, which was identified through an OSS-Fuzz report. The crash state indicates the involvement of...

PT-2025-18799

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A kernel-infoleak issue has been identified in the Linux kernel, specifically in the nilfs2 file system. The nilfs ioctl wrap copy function, which handles ioctl commands, may copy...