CVE-2020-16881

The CVE-2020-16881 entry describes a remote code execution vulnerability in Visual Studio Code triggered when a user opens a malicious package.json. The underlying issue allows code execution in the context of the current user, potentially taking full control if the user has admin rights. Exploit...

CVE-2018-8653

CVE-2018-8653 is a remote code execution vulnerability in Microsoft Internet Explorer’s scripting engine memory handling (JScript). Affected: IE 9, 10, and 11. Root cause: memory corruption within the scripting engine when handling in-memory objects, enabling an attacker to execute arbitrary code...

CVE-2017-8923

CVE-2017-8923 affects PHP up to 7.1.5. The vulnerability is in Zend/zend_string.h:zend_string_extend, which does not prevent changes to string objects resulting in a negative length when using a script’s .= with a long string. This can allow a remote attacker to trigger a denial of service (appli...

CVE-2023-4211

CVE-2023-4211 affects the Arm Mali GPU Kernel Driver. The issue is a use-after-free/resource management error in the Mali driver that allows a local, non-privileged user to perform improper GPU memory processing and access freed memory. Impact is limited to confidentiality (high impact) with no d...

CVE-2020-13938

CVE-2020-13938 affects Apache HTTP Server 2.4.0–2.4.46. The vulnerability allows unprivileged local users to stop the httpd service on Windows. The connected sources confirm the affected product family and the local-access impact, with public advisories referencing Microsoft Windows behavior and ...

CVE-2019-9637

CVE-2019-9637 concerns a PHP file-rename across filesystems: during the rename, the target may briefly have incorrect permissions, potentially allowing unauthorized data access. The initial description specifies affected PHP versions: before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Co...

CVE-2016-7193

Summary of CVE-2016-7193 : A memory corruption flaw in Microsoft Office’s handling of RTF documents allows remote code execution on affected Office products (Word 2007 SP2, Office 2010 SP2, Word 2013/2016, Word for Mac variants, Office Web Apps Server, etc.). The root cause is a vulnerability in ...

CVE-2022-41352

CVE-2022-41352 affects Zimbra Collaboration (ZCS) 8.8.15 and 9.0. The issue arises from an amavis/cpio handling path traversal that can cause arbitrary file writes to /opt/zimbra/jetty/webapps/zimbra/public, enabling unauthorized access to other user accounts. Public details confirm the root caus...

CVE-2022-35957

Grafana (versions prior to 9.1.6 and 8.5.13) is affected by CVE-2022-35957, an escalation from admin to server admin when an Auth Proxy is used. The issue arises because authentication may rely on headers (X-WEBAUTH-USER) trusted by Grafana, allowing a user with admin privileges to gain server-ad...

CVE-2020-28949

CVE-2020-28949 affects PEAR Archive_Tar (v1.4.10 and earlier). The issue is that Archive_Tar’s filename sanitization only addressed phar attacks; other stream-wrapper attacks (e.g., file://) can overwrite files, enabling potential arbitrary file writes. Affected ecosystem includes PHP-pear compon...

CVE-2018-14839

LG N1A1 NAS 3718.510 is affected by a remote command execution vulnerability (CVE-2018-14839) that can be triggered via an HTTP POST with parameters, as evidenced by pre-auth remote command injection templates targeting the system/sharedir.php endpoint and references to a password parameter. Some...

CVE-2016-6366

CVE-2016-6366 is a buffer overflow in Cisco ASA software (SNMP code) that allows an authenticated, remote attacker to cause a reload or remotely execute code via crafted IPv4 SNMP packets. The vulnerability affects multiple Cisco devices and ASA platforms, including ASA 5500, 5500-X, ASA Services...

CVE-2021-25329

The CVE-2021-25329 entry is tied to an incomplete fix for CVE-2020-9484 in Apache Tomcat. In affected releases (Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61, and 7.0.0 to 7.0.107) a configuration edge case that was deemed highly unlikely could leave the Tomcat instance vulnerab...

CVE-2020-3347

CVE-2020-3347 affects Cisco Webex Meetings Desktop App for Windows. The flaw stems from unsafe usage of shared memory in the Webex memory map/trace implementation, allowing an authenticated, local attacker to read sensitive data (e.g., usernames, meeting information, authentication tokens) from s...

CVE-2013-2094

CVE-2013-2094 affects the Linux kernel: the perf_swevent_init code in kernel/events/core.c uses an incorrect integer type, enabling a local, unprivileged user to escalate privileges via a crafted perf_event_open call. The issue leads to out-of-bounds access of perf_swevent_enabled and has been fi...

CVE-2007-4752

CVE-2007-4752 affects OpenSSH before 4.7. When OpenSSH fails to create an untrusted X11 cookie, it falls back to a trusted X11 cookie, allowing an X client to be treated as trusted and potentially enabling privilege escalation. The linked Nessus advisories cite OpenSSH pre-4.7 in multiple distrib...

CVE-2024-12706

CVE-2024-12706 describes an SQL Injection in OpenText Digital Asset Management. An authenticated user could cause arbitrary SQL commands to execute against the underlying database due to improper input handling. Affected products include Digital Asset Management up to version 24.4. Reported data ...

CVE-2023-46751

CVE-2023-46751 affects Ghostscript; the issue is a dangling pointer in gdev_prn_open_printer_seekable() that could crash the application when processing malformed documents. The vulnerability is remotely triggerable and has been addressed in various advisories. Public details corroborate that Gho...

CVE-2015-8221

Google Picasa is affected by CVE-2015-8221 due to an integer overflow in the CAMF section of FOVb images, triggering a heap-based buffer overflow that enables arbitrary code execution. Affected products are Google Picasa versions older than 3.9.140.259 (3.9.140.259 Build 259 is cited in sources)....

CVE-2022-30333

CVE-2022-30333 affects RARLAB UnRAR on Linux/UNIX before 6.12, where a directory traversal during an extract can write arbitrary files (demonstrated by creating ~/.ssh/authorized_keys). The issue is confirmed across multiple sources (Astra Linux note mirrors the UnRAR pre-6.12 flaw; Debian LTS ad...

CVE-2024-8935

CVE-2024-8935 affects Schneider Electric Modicon M340, MC80, and Momentum Unity M1E. The issue is an Authentication Bypass by Spoofing enabling a Man-In-The-Middle attack during a controller–engineering workstation session, due to DH-based vulnerability that does not protect against MITM. Consequ...

CVE-2022-21800

CVE-2022-21800 affects Airspan/MMP family: MMP <1.0.3, PTP C-series <2.8.6.1, PTMP C-series/A5x

CVE-2019-10086

CVE-2019-10086 affects Apache Commons BeanUtils 1.9.2, where a BeanIntrospector addition could suppress access to the classloader via the class property on Java objects. The issue stems from not applying the suppression by default in PropertyUtilsBean, enabling potential risk across affected depl...

CVE-2018-4939

Adobe ColdFusion is affected by CVE-2018-4939 due to a Deserialization of Untrusted Data vulnerability in Update 5 and earlier (and ColdFusion 11 Update 13 and earlier). The issue arises from insecure deserialization in the DataServicesCFProxy/integration flow, enabling arbitrary code execution u...

CVE-2022-1471

CVE-2022-1471 is caused by SnakeYAML deserialization allowing remote code execution. At Atlassian Data Center/Server products (e.g., Jira Core/Jira Software/Data Center and Server, Confluence Data Center/Server, Bitbucket Data Center/Server) multiple versions were affected due to the SnakeYAML un...

CVE-2022-3723

CVE-2022-3723 is a Type Confusion in V8 affecting Google Chrome (Chromium-based) up to version 107.0.5304.87. The root cause is a V8 type confusion that can allow remote heap corruption via a crafted HTML page. Documents in connected data indicate Chrome/Chromium-based products are vulnerable and...

CVE-2021-21067

Adobe Photoshop is affected by CVE-2021-21067: an Out-of-bounds Write in the CoolType library that could allow arbitrary code execution in the current user's context. Affected are Photoshop 21.2.5 and earlier, and 22.2 and earlier. Exploitation requires user interaction (victim must open a malici...

CVE-2006-4602

CVE-2006-4602 affects TikiWiki (jhot.php) prior to/including 1.9.4 Sirius and earlier. Unrestricted file upload allows remote attackers to place a .php file in img/wiki/ and execute arbitrary PHP code. Connected sources document a remote-code-execution risk via jhot.php upload validation flaw; ex...

CVE-2022-23264

Microsoft Edge (Chromium-based) is affected by CVE-2022-23264, a spoofing vulnerability impacting the browser’s user interface. The issue is described as a Spoofing Vulnerability in Edge (Chromium-based) with a CVSS v3.1 base score of 4.7 (MEDIUM) and a Network attack vector requiring user intera...

CVE-2022-31625

The CVE-2022-31625 issue affects PHP when using the Postgres extension: supplying invalid parameters to parameterized queries can cause PHP to free memory using uninitialized data as pointers, leading to potential remote code execution or denial of service. Affected versions are PHP 7.4.x before ...

CVE-2022-27924

CVE-2022-27924 affects Zimbra Collaboration Suite (ZCS) 8.8.15 and 9.0, allowing an unauthenticated attacker to inject arbitrary memcache commands into a targeted ZCS instance, with those commands becoming unescaped and enabling overwriting of arbitrary cached entries and extraction of credential...

CVE-2025-32434

PyTorch contains a Remote Command Execution (RCE) vulnerability in versions 2.5.1 and earlier when loading a model with torch.load and weights_only=True. The issue is publicly documented and has been patched in version 2.6.0. External notices reiterate that upgrading to 2.6.0+ mitigates the flaw;...

CVE-2018-14040

CVE-2018-14040 affects Bootstrap prior to 4.1.2, where an XSS vulnerability exists in the collapse data-parent attribute. The root cause is HTML/script-injection via the collapse component’s data-parent handling. The vulnerability impacts Bootstrap-based implementations using collapse and can lea...

CVE-2024-2201

CVE-2024-2201 describes a cross-privilege Spectre v2 vulnerability affecting Linux kernels on Intel systems, enabling a local attacker to bypass mitigations (including Fine IBT) and potentially leak arbitrary kernel memory. The issue is grounded in the kernel’s handling of Spectre v2 defenses and...

CVE-2025-22273

CVE-2025-22273 affects CyberArk Endpoint Privilege Manager SaaS v24.7.1. The vulnerability is a lack of rate limiting on the ChangePassword endpoint (/EPMUI/VfManager.asmx/ChangePassword), enabling brute-force attempts on the current password. CVSS v4.0 base score 9.3 (CRITICAL); vector: AV:N/AC:...

CVE-2020-27192

CVE-2020-27192 affects BinaryNights ForkLift 3.4, where building with the com.apple.security.cs.disable-library-validation flag enables a local attacker to inject code into ForkLift and run malicious code with escalated privileges via ForkLift’s helper tool. This describes how the vulnerability a...

CVE-2015-5122

CVE-2015-5122 involves a Use-After-Free in the DisplayObject class of the AS3 Flash Player. It affects Flash Player 13.x–18.x on Windows/macOS, 11.x–11.2.x on Linux, and 12.x–18.0.0.204 on Linux Chrome. The flaw, triggered by improper handling of the opaqueBackground property, enables remote code...

CVE-2025-0439

CVE-2025-0439 concerns a race in Chrome’s Frame handling that enables UI spoofing when a user is induced to perform specific UI gestures via a crafted HTML page. Affected product is Google Chrome (and Chromium-derived builds) with versions prior to 132.0.6834.83. Impact per the entry is confirmed...

CVE-2023-34455

CVE-2023-34455 concerns snappy-java. The issue arises from an unchecked chunk length in SnappyInputStream.hasNextChunk, which can allocate a negative or excessively large array when handling untrusted input, potentially causing a java.lang.NegativeArraySizeException or java.lang.OutOfMemoryError....

CVE-2020-8599

CVE-2020-8599 affects Trend Micro Apex One (2019) and OfficeScan XG servers. The issue is in a vulnerable EXE on the server that could let an unauthenticated remote attacker write arbitrary data to an arbitrary path and bypass ROOT login. The description indicates no authentication is required to...

CVE-2022-39307

Grafana exposes user-enumeration via the forget-password flow. A POST to /api/user/password/sent-reset-email leaks whether a username/email exists by returning a “user not found” message, enabling information disclosure to unauthenticated users. Affected are Grafana installations (versions <= ...

CVE-2017-11826

CVE-2017-11826 is a remote code execution flaw in Microsoft Office family (Word, Word Viewer, Office Web Apps Server, SharePoint components, etc.) caused by improper handling of objects in memory. Affected products include Word and related Office/SharePoint servers; exploitation is possible via s...

CVE-2015-2424

CVE-2015-2424: Microsoft Office memory corruption in PowerPoint/Word components allows remote code execution or memory corruption via a crafted Office document. Affected products include PowerPoint 2007 SP3, Word 2007 SP3, PowerPoint 2010 SP2, Word 2010 SP2, PowerPoint 2013 SP1, Word 2013 SP1, an...

CVE-2015-0016

The CVE-2015-0016 issue corresponds to a directory traversal elevation-of-privilege vulnerability in the TS WebProxy (TSWbPrxy) component affecting multiple Windows versions (Vista SP2, Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8/8.1, Windows Server 2012/2012 R2, Windows RT/8.1). The und...

CVE-2024-40659

CVE-2024-40659 concerns Android’s RemoteProvisioningService.getRegistration, where improper input validation could allow an attacker to permanently disable the AndroidKeyStore key generation feature by updating the attestation keys of all installed apps. This yields a local Denial of Service with...

CVE-2022-32894

CVE-2022-32894 is an out-of-bounds write in Apple’s kernel code that could allow arbitrary code execution with kernel privileges. Affected products include iOS/iPadOS/macOS kernel components (macOS Big Sur and newer). The issue was fixed in iOS 15.6.1, iPadOS 15.6.1, and macOS Monterey 12.5.1, wi...

CVE-2019-19271

CVE-2019-19271 affects ProFTPD, where the tls_verify_crl check in versions before 1.3.6 uses a wrong iteration variable when comparing a client certificate against CRL entries. This can cause certain CRL entries to be ignored, potentially allowing clients with revoked certificates to establish a ...

CVE-2018-8589

CVE-2018-8589 is an elevation-of-privilege vulnerability in Win32k.sys. Public details indicate it affects Windows 7 and Windows Server 2008/2008 R2, with exploitation requiring local logon and specially crafted calls to Win32k.sys. Public sources note that updated Windows patches from Microsoft ...

CVE-2016-1034

The CVE-2016-1034 issue affects Adobe Creative Cloud Desktop (Windows/Mac) with the JavaScript API for Creative Cloud Libraries. The Sync Process in this API, prior to version 3.6.0.244 (and affected 3.5.x up to 3.5.1.209 on some entries), can be exploited to read or write arbitrary files on the ...

CVE-2019-17076

CVE-2019-17076 affects Jamf Pro 9.x and 10.x prior to 10.15.1. The issue is deserialization of untrusted data when parsing JSON in several APIs, which can lead to Denial of Service, remote code execution, and/or deletion of files on the Jamf Pro server. Root cause: unsafe JSON deserialization in ...