1133 matches found
EUVD-2022-55929
SoX 14.4.2 contains a division by zero vulnerability when handling WAV files that can cause program crashes. Attackers can trigger a floating point exception by providing a specially crafted WAV file that causes arithmetic errors during sound file processing...
CVE-2022-50798
Rejected reason: This candidate is a duplicate of CVE-2017-11359...
CVE-2022-50798
Rejected reason: This candidate is a duplicate of CVE-2017-11359...
CVE-2022-50798
CVE-2022-50798 is associated with SoX 14.4.2 and is described in multiple advisories as a division-by-zero fault when processing WAV files, potentially causing program crashes. Connected docs indicate the vulnerability affects SoX 14.4.2 and provide remediation guidance via package updates (e.g.,...
CVE-2022-50798
Removed by vendor...
CVE-2022-50798
This candidate is a duplicate of CVE-2017-11359...
编号撤回
SoX is a suite of open source audio processing tools. The product supports playing, converting and recording audio in multiple formats. A numeric error vulnerability exists in SoX version 14.4.2, which originates from a divide-by-zero error when processing a specially crafted WAV file, and may...
CVE-2025-65074 OS Command Injection via Path Traversal in WaveStore Server
WaveView client allows users to execute restricted set of predefined commands and scripts on the connected WaveStore Server. A malicious attacker with high-privileges is able to execute arbitrary OS commands on the server using path traversal in the showerr script. This issue was fixed in version...
CVE-2025-65074
WaveView client/vulnerable component is WaveStore Server interaction. CVE-2025-65074 describes path traversal in the showerr script that lets a high-privileged attacker execute arbitrary OS commands on the server. Affected: WaveView client with WaveStore Server via showerr; impact is remote comma...
Wave Terminal 路径遍历漏洞
Wave Terminal is an enterprise collaboration system from the Wave Terminal open source. A path traversal vulnerability exists in Wave Terminal that stems from path traversal in ilog scripts, which could lead to the reading or deletion of arbitrary files...
Wave Terminal 路径遍历漏洞
Wave Terminal is an enterprise collaboration system from the Wave Terminal open source. A path traversal vulnerability exists in Wave Terminal, which stems from a path traversal in the alog script that could result in reading or deleting files...
ai.catboost:catboost-spark_4.1_2.13 (=1.2.10), ai.new-wave:spring-agent-app (>=0.1.0 <=0.3.0) +4410 more potentially affected by CVE-2025-67735 via io.netty:netty-codec-http (>=4.2.0.Alpha1 <=4.2.7.Final)
io.netty:netty-codec-http MAVEN version =4.2.0.Alpha1, =0.1.0, =0.1.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =25.9.0, =26.3.2 and more Source cves: CVE-2025-67735 Source advisory: SNYK:JAVA-IONETTY-14423947...
CVE-2025-12843 Code Injection in Wave Term v0.12.2 allowing TCC Bypass
Code Injection using Electron Fuses in waveterm on MacOS allows TCC Bypass. This issue affects waveterm: 0.12.2...
Wave Terminal 代码注入漏洞
Wave Terminal is an enterprise collaboration system from Wave Terminal open source. A code injection vulnerability exists in Wave Terminal version 0.12.2, which stems from Electron Fuses code injection and could lead to a TCC bypass...
EUVD-2025-175813
Malicious code in unuk-cryonics-gravitationalwave-meteor npm...
EUVD-2025-180293
Malicious code in astrochemistry-ionosphere-gravitationalwave-joviology npm...
EUVD-2025-175872
Malicious code in triton-subduction-gravitationalwave-sociobiology npm...
CVE-2025-10693
When SmartStart Inclusion fails during the onboarding of a Z-Wave PIR sensor, the sensor will join the network as a non-secure device. This vulnerability exists in Silicon Labs' Z-Wave PIR Sensor Reference design delivered as part of SiSDK v2025.6.0 and v2025.6.1...
EUVD-2025-37394
When SmartStart Inclusion fails during the onboarding of a Z-Wave PIR sensor, the sensor will join the network as a non-secure device. This vulnerability exists in Silicon Labs' Z-Wave PIR Sensor Reference design delivered as part of SiSDK v2025.6.0 and v2025.6.1...
CVE-2025-10693 Silicon Labs Z-Wave PIR Sensor Joins Network as Non-Secure
When SmartStart Inclusion fails during the onboarding of a Z-Wave PIR sensor, the sensor will join the network as a non-secure device. This vulnerability exists in Silicon Labs' Z-Wave PIR Sensor Reference design delivered as part of SiSDK v2025.6.0 and v2025.6.1...