CVE-2020-9281

CVE-2020-9281 is an XSS in CKEditor’s HTML Data Processor that allows remote script execution via a crafted protected comment (CKEditor syntax cke_protected). Affected are CKEditor 4.0–before 4.14. IBM DOORS/DOORS Web Access bullets include this CVE and note remediation: upgrade to CKEditor 4.17....

CVE-2009-2198

CVE-2009-2198 affects Apple GarageBand prior to 5.1 on macOS. The issue stems from GarageBand reconfiguring Safari to accept all cookies regardless of domain, enabling easier tracking by remote servers. Documented impact is information disclosure via tracking; no explicit exploitation details are...

CVE-2024-45700

CVE-2024-45700 affects Zabbix servers with DoS via uncontrolled resource exhaustion: specially crafted requests trigger excessive memory allocation and CPU-intensive decompression, leading to service crash. Connected advisories show distro-specific fixes: Debian 11 packages updated to 1:5.0.46+df...

CVE-2024-26593

CVE-2024-26593: In the Linux kernel, i2c: i801: Fix block process call transactions. The issue was that the driver did not reset the block buffer index a second time before reading the incoming data, per Intel datasheets, causing reading the wrong portion of the block buffer. The advisory notes t...

CVE-2025-23089

CVE-2025-23089 entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-0646

CVE-2020-0646 is a remote code execution vulnerability in Microsoft .NET Framework that arises from improper input validation and is triggered by crafting XOML data sent to SharePoint Workflows. Multiple connected sources confirm exploitable behavior via .NET back-end and XOML injection, enabling...

CVE-2020-1935

CVE-2020-1935 affects Apache Tomcat across multiple branches: 9.0.0.M1–9.0.30, 8.5.0–8.5.50, and 7.0.0–7.0.99. It stems from HTTP header parsing that can mishandle end-of-line and Transfer-Encoding, enabling HTTP Request Smuggling when Tomcat sits behind certain reverse proxies. Impact is informa...

CVE-2019-9670

CVE-2019-9670 affects Synacor Zimbra Collaboration Suite (mailboxd) prior to 8.7.11p10, where Autodiscover/Autodiscover.xml processing is vulnerable to XML External Entity (XXE) injection. The root cause is XXE-safe processing not being enforced during XML parsing, enabling an attacker to retriev...

CVE-2024-56586

CVE-2024-56586 concerns the Linux kernel f2fs subsystem. The issue arises when uninstalling a filesystem after a sequence that creates large files during a disabled checkpoint period, which can exhaust free segments. This leads to a BUG_ON in f2fs_evict_inode() when the root inode is dirty at unm...

CVE-2021-32804

The CVE-2021-32804 entry concerns the npm package tar (node-tar). Affected versions before 6.1.1, 5.0.6, 4.4.14, and 3.3.2 contain an arbitrary File Creation/Overwrite vulnerability caused by insufficient absolute path sanitization during extraction. node-tar attempts to prevent absolute paths by...

CVE-2021-40449

CVE-2021-40449 is a Win32k use-after-free local privilege escalation in GreResetDCInternal. The vulnerability arises when a user‑mode callback hook on the driver’s PDEV path (DrvEnablePDEV) can trigger a subsequent ResetDC call, freeing the original device context and causing a kernel‑mode use‑af...

CVE-2017-9841

CVE-2017-9841 (PHPUnit) affects the Util/PHP/eval-stdin.php component of PHPUnit. The vulnerability allows remote code execution when an HTTP POST request starts with the string "<?php" (or with a leading '

CVE-2022-24521

CVE-2022-24521 is a Windows Windows Common Log File System Driver Privilege Escalation vulnerability. The CVE entry reports an elevation-of-privilege flaw in the CLFS driver; CVSS scores shown include a 2.0/2.0 base (MEDIUM) on NVD and a 3.1-based HIGH score from Microsoft, both indicating local ...

CVE-2020-8625

CVE-2020-8625 concerns a buffer overflow in BIND’s SPNEGO/GSS-API security policy implementation. The issue affects BIND versions spanning 9.5.0 up to 9.11.27, 9.12.0 up to 9.16.11, and specific 9.11.3-S1 to 9.11.27-S1 and 9.16.8-S1 to 9.16.11-S1, plus 9.17.0–9.17.1 in development branches. A vul...

CVE-2023-52464

CVE-2023-52464 affects the Linux kernel EDAC/thunderx driver. The issue is a potential out-of-bounds string access in thunderx_ocx_com_threaded_isr due to repeated use of strncat with an incorrect buffer size, which mimics a strlcat-like pattern but uses the wrong bound. The root cause is the mis...

CVE-2025-32395

CVE-2025-32395 affects Vite (frontend tooling for JavaScript). The vulnerability arises when a dev server is exposed to the network on Node/Bun (not Deno) and a request-target containing a # is processed, bypassing server.fs.deny due to req.url handling. Affected versions prior to 6.2.6, 6.1.5, 6...

CVE-2023-31122

CVE-2023-31122 is an out-of-bounds read vulnerability in Apache HTTP Server’s mod_macro affecting versions up to 2.4.57. Connected advisories (Debian, AlmaLinux, Amazon Linux, CIRCL sighting) confirm multiple distro advisories have issued patches and upgrades (e.g., Debian 2.4.59 fixes; AlmaLinux...

CVE-2020-14871

CVE-2020-14871 is a pre-authentication stack-based buffer overflow in the Solaris PAM library (parse_user_name) that can be triggered via SSH keyboard-interactive authentication. Affected: Oracle Solaris (versions including 10 and 11; some Solaris 9/11.0 configurations listed in sources). Root ca...

CVE-2021-21707

CVE-2021-21707 affects PHP 7.3.x < 7.3.33, 7.4.x < 7.4.26, and 8.0.x

CVE-2023-52457

CVE-2023-52457 relates to the Linux kernel serial8250/omap path. The issue occurred when remove() returned an error, causing the driver core to log a non-zero removal error and potentially leaking resources if serial8250_unregister_port() was skipped, leaving UART resources around and enabling a ...

CVE-2020-3535

CVE-2020-3535 – Cisco Webex Teams for Windows DLL Hijacking . A local, authenticated attacker can place a malicious DLL in a specific location; when Webex Teams launches, the DLL is loaded and code executes with the privileges of another user. The vulnerability stems from incorrect runtime handli...

CVE-2019-13640

CVE-2019-13640 affects qbittorrent prior to 4.1.7, where Application::runExternalProgram() in app/application.cpp allows command injection via shell metacharacters in torrent name or current tracker, enabling remote command execution. Multiple connected advisories confirm this is real, with Debia...

CVE-2021-0920

CVE-2021-0920 is confirmed with concrete details in the connected sources: a race condition in unix_scm_to_skb within af_unix.c can trigger a use-after-free, potentially enabling local privilege escalation on the Android kernel. The vulnerability affects the Linux kernel used in Android (via the ...

CVE-2025-31115

The CVE-2025-31115 affects XZ Utils’ liblzma multithreaded .xz decoder (lzma_stream_decoder_mt) in versions 5.3.3alpha through 5.8.0. The issue can cause a crash with heap-use-after-free and writes to memory based on a NULL pointer plus an offset, impacting applications/libraries that invoke the ...

CVE-2017-10271

CVE-2017-10271 is an input validation/deserialization flaw in Oracle WebLogic Server (WLS Security) that enables unauthenticated remote code execution. Affected products/versions per entries include Oracle WebLogic Server 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0, and 12.2.1.2.0. Public writeups and adv...

CVE-2024-52332

CVE-2024-52332: Linux kernel igb driver fix for potential invalid memory access during module init. When pci_register_driver() can fail, the dca_notifier must be unregistered; otherwise, if igb fails to install, dca_notifier may be invoked and access memory that is no longer valid. The connected ...

CVE-2021-34986

Parallels Desktop 16.5.0 (49183) contains a local privilege escalation in the Parallels Service. By creating a symbolic link, an attacker who can run low-privileged code can abuse the service to execute a file, escalating to root and executing arbitrary code. This has been disclosed as ZDI-22-385...

CVE-2008-2100

CVE-2008-2100 corresponds to VMware VIX API Multiple Buffer Overflow Vulnerabilities (VMSA-2008-0009). It affects VIX API 1.1.x before 1.1.4 build 93057 across host products (VMware Workstation 5.x/6.x, VMware Player 1.x/2.x, VMware ACE 2.x, VMware Server 1.x, VMware Fusion 1.x, VMware ESXi 3.5, ...

CVE-2021-33845

CVE-2021-33845 affects Splunk Enterprise before version 8.1.7, where the REST API can disclose usernames via the lockout error message when verbose login errors are present. Multiple connected sources (NVD, Red Hat, Nessus plugin, CVE lists) describe this information disclosure vulnerability and ...

CVE-2024-23706

CVE-2024-23706 affects Google Android via health data permissions bypass in the HealthFitness pathway, caused by improper input validation. The result is local escalation of privilege with no additional execution privileges required and no user interaction needed. Affected context appears in Andr...

CVE-2019-15892

CVE-2019-15892 affects Varnish Cache before 6.0.4 LTS and 6.1.x and before 6.2.1 in the 6.2.x line. An HTTP/1 parsing failure allows a remote attacker to trigger an assert, causing an automatic restart with a clean cache and resulting in a Denial of Service. The available fixes are to upgrade to ...

CVE-2020-12431

The CVE-2020-12431 entry describes a Windows local privilege escalation in Splashtop Software Updater (before 1.5.6.16) due to insecure permissions on the updater’s configuration file and a named pipe, enabling a forced permission change of Splashtop files/directories and DLL hijacking to achieve...

CVE-2020-13671

CVE-2020-13671 affects Drupal Core. The issue arises from Drupal core not properly sanitizing certain uploaded filenames, causing files to be interpreted with an incorrect extension and served with the wrong MIME type or potentially executed as PHP under some hosting configurations. Affected vers...

CVE-2024-57899

CVE-2024-57899 affects the Linux kernel’s wifi/mac80211 code. On 32‑bit systems, the code uses or_each_set_bit(bit, &bits, sizeof(changed) * BITS_PER_BYTE) where an 8‑byte u64 is accessed as a 4‑byte unsigned long, causing incorrect bit searches and potential flag corruption in MBSS changes. The ...

CVE-2019-15752

CVE-2019-15752 affects Docker Desktop Community Edition prior to 2.1.0.1. A local attacker can escalate privileges by placing a Trojan horse docker-credential-wincred.exe in %PROGRAMDATA%\DockerDesktop\version-bin\ as a low-privilege user, then rely on an admin/service user authenticating with Do...

CVE-2025-1550

CVE-2025-1550 concerns a vulnerability in Keras where the Model.load_model function can execute arbitrary code via a malicious .keras archive that alters config.json to load modules/functions with crafted arguments. The issue persists even with safe_mode enabled, enabling potential code execution...

CVE-2014-6287

The vulnerability CVE-2014-6287 affects Rejetto HTTP File Server (HFS) 2.3x prior to 2.3c. It stems from the findMacroMarker function in parserLib.pas, where a null-byte sequence (%00) in a search action allows remote attackers to execute arbitrary code. Public exploits and Metasploit modules exi...

CVE-2025-61985

CVE-2025-61985 affects OpenSSH prior to 10.1. The flaw allows a null character ('\0') in an ssh:// URI to enable potential code execution when a ProxyCommand is used. Affected products/versions are OpenSSH before 10.1; the CVSS base score is 3.6 (LOW) with LOCAL access and high attack complexity ...

CVE-2022-40684

CVE-2022-40684 is an authentication bypass affecting Fortinet products: FortiOS (versions 7.2.0–7.2.1 and 7.0.0–7.0.6), FortiProxy (7.2.0 and 7.0.0–7.0.6), and FortiSwitchManager (7.2.0 and 7.0.0). The flaw enables an unauthenticated attacker to perform administrative interface operations via spe...

CVE-2023-0767

CVE-2023-0767 describes a vulnerability where an attacker could construct a PKCS#12 cert bundle in a way that mishandles Safe Bag attributes, enabling arbitrary memory writes. Affected software: Firefox < 110, Thunderbird < 102.8, and Firefox ESR

CVE-2022-26352

DotCMS ContentResource API (CVE-2022-26352) vulnerable to arbitrary file upload via POST /api/content in 3.0–22.02. An unsanitized filename in multipart form can cause directory traversal, saving files outside the intended storage. If anonymous content creation is enabled, an attacker could uploa...

CVE-2024-56372

CVE-2024-56372 affects the Linux kernel net/tun path. The vulnerability stems from tun_napi_alloc_frags() where code paths reuse the first iov component, producing a malformed skb and causing a kernel crash (OOPS) as shown by a syzbot trace in kernel/skbuff.c. The CVSS vector from NVD: Local acce...

CVE-2024-26597

CVE-2024-26597 affects the Linux kernel, specifically the Qualcomm RMNET netlink policy driver. The vulnerability arises from assigning a larger maxtype to rmnet_link_ops, causing a global out-of-bounds read when parsing netlink attributes. The bug is mapped to the rmnet_policy variable and is fi...

CVE-2021-43164

CVE-2021-43164 affects Ruijie RG-EW Series routers running ReyeeOS up to 1.55.1915 / EW_3.0(1)B11P55. The vulnerability is an RCE via the updateVersion function in /cgi-bin/luci/api/wireless, with PoC and public exploit code showing authenticated access can trigger code execution on affected devi...

CVE-2021-40539

CVE-2021-40539 affects Zoho ManageEngine ADSelfService Plus (6100-series and earlier) with a REST API authentication bypass that enables remote code execution. Public evidence shows active exploitation campaigns (GODZILLA webshell, NGLite backdoor, KdcSponge) and targeted activity reported by CIS...

CVE-2025-61984

CVE-2025-61984 affects OpenSSH before 10.1. It allows control characters in usernames originating from untrusted sources (command line or %-sequence expansion in a config file), potentially enabling code execution when a ProxyCommand is used. A config file that provides a complete literal usernam...

CVE-2019-2215

CVE-2019-2215 is a use-after-free in the Android binder driver (binder.c) that enables local privilege escalation from an app to the Linux kernel. The issue is local, with no user interaction required, and exploitation may lead to memory corruption, denial of service, or escalation per the cited ...

CVE-2019-3568

CVE-2019-3568 is a buffer-overflow vulnerability in WhatsApp’s VOIP stack that enables remote code execution via a crafted sequence of RTCP packets targeted at a phone number. Affected apps/versions include: WhatsApp for Android pre‑2.19.134, WhatsApp Business for Android pre‑2.19.44, WhatsApp fo...

CVE-2020-17530

CVE-2020-17530 describes a vulnerability in Apache Struts 2 where forced OGNL evaluation on raw user input in tag attributes can cause remote code execution. Affected products range from Struts 2.0.0 up to 2.5.25. The description states that evaluating untrusted input via the %{...} syntax enable...

CVE-2017-5715

CVE-2017-5715 (Spectre Variant 2) describes speculative-execution side-channel issues used to disclose memory. Connected docs show concrete mitigations and impact across vendors: AMD notes that LFENCE/JMP mitigation (V2-2) may be insufficient on some CPUs; AMD recommends standard mitigations (ret...