CVE-2016-1034

The CVE-2016-1034 issue affects Adobe Creative Cloud Desktop (Windows/Mac) with the JavaScript API for Creative Cloud Libraries. The Sync Process in this API, prior to version 3.6.0.244 (and affected 3.5.x up to 3.5.1.209 on some entries), can be exploited to read or write arbitrary files on the ...

CVE-2025-27777

CVE-2025-27777 affects Applio (voice conversion tool). Versions ≤ 3.2.7 contain a server‑side request forgery (SSRF) in model_download.py (line 195 in 3.2.7) that can be used to issue requests on behalf of the Applio server. The issue is described as a blind SSRF, with potential to probe internal...

CVE-2015-2808

CVE-2015-2808 concerns RC4 usage in TLS/SSL within OpenJDK/OpenJDK components. The Invariance Weakness (Bar Mitzvah) means RC4 key material can leak partial plaintext from the first bytes of a TLS/SSL stream, enabling plaintext-recovery under certain traffic patterns. Public advisories for OpenJD...

CVE-2013-4590

CVE-2013-4590 affects Apache Tomcat prior to 6.0.39, 7.x prior to 7.0.50, and 8.x prior to 8.0.0-RC10. The issue is an XML External Entity (XXE) vulnerability that lets an untrusted web application with a context.xml, web.xml, *.jspx, *.tagx, or *.tld document containing an external entity declar...

CVE-2024-5535

CBL-Mariner advisory CVE-2024-5535 affects package hvloader for versions older than 1.0.1-6. An upgraded hvloader (1.0.1-6 or newer) resolves the issue. The advisory notes that a newer version is available to address the vulnerability.

CVE-2023-41105

The CVE-2023-41105 issue affects Python 3.11–3.11.4: if a path containing a null byte (\0) is passed to os.path.normpath(), the path is truncated at the first null byte. The description notes cases where filenames would have been rejected for security reasons in Python 3.10.x or earlier are no lo...

CVE-2020-25684

CVE-2020-25684, 25685, 25686 (dnsmasq) : The advisory indicates dnsmasq before version 2.83 is vulnerable in three related ways involving forwarded/replied queries and query matching. CVE-2020-25684 (insufficient validation) occurs when dnsmasq processes a forwarded reply: it checks reply_query()...

CVE-2019-17001

CVE-2019-17001 describes a CSP bypass in Firefox where an object tag can bypass the page's CSP to execute JavaScript in the protected document. The issue affected Firefox 69 and was not present in earlier versions; it affects Firefox

CVE-2013-4559

lighttpd prior to 1.4.33 is vulnerable because it does not check the return values of setuid, setgid, or setgroups, which can cause the server to continue running as root on restart and allow privilege escalation (illustrated by repeated clone calls where setuid fails). The issue is tracked acros...

CVE-2023-32417

This CVE (CVE-2023-32417) affects Apple Watch on watchOS prior to 9.5 and is resolved in watchOS 9.5. Description and Apple security content confirm that a user with physical access to a locked Apple Watch could view photos or contacts via accessibility features. The root issue is described as re...

CVE-2021-33621

The CVE-2021-33621 entry concerns the Ruby CGI gem: HTTP response splitting in cgi-gem versions before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5. The underlying issue is in how untrusted input can affect an HTTP response or CGI::Cookie creation, enabling response-splitting exploits. Aff...

CVE-2014-4148

CVE-2014-4148 is a remote code execution vulnerability in Windows kernel-mode driver win32k.sys caused by improper handling of TrueType fonts. It affects multiple Windows versions (server 2003 SP2, Vista, 2008, 7, 8/8.1, Server 2012) and is referenced publicly as MS14-058. Public exploitation exi...

CVE-2023-21674

CVE-2023-21674 affects Windows Advanced Local Procedure Call (ALPC). The documented root cause is an Elevation of Privilege in ALPC that could enable browser sandbox escape and gain SYSTEM privileges. Public exploits exist (Kaspersky notes exploitation in the wild; a GitHub PoC is referenced), in...

CVE-2022-5678

Technical details for CVE-2022-5678 are not publicly available in the provided documents. Monitor for updates as new information may be added.

CVE-2020-24367

BlueStacks 4 (up to version 4.230) on Windows is affected by incorrect file permissions that enable a local attacker to escalate privileges by modifying a file that is later executed by a higher-privileged user. This vulnerability is documented across multiple sources (NVD, Red Hat, CNVD, etc.). ...

CVE-2015-2545

CVE-2015-2545 affects Microsoft Office (2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1) via a crafted EPS image that triggers memory corruption during EPS parsing, enabling remote code execution. FireEye details describe an EPS-encoded use-after-free in Office’s EPS handling (dict copy/forall flow) le...

CVE-2015-1769

CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...

CVE-2025-27784

Applio CVE-2025-27784 affects Applio voice conversion tool (versions 3.2.8-bugfix and prior). The issue is an arbitrary file read in train.py's export_pth function, allowing reading arbitrary server files. It can be chained with blind server-side request forgery (SSRF) to access files on internal...

CVE-2024-56326

CVE-2024-56326 affects Jinja2 prior to 3.1.5, where an oversight in the sandboxed environment allows an attacker who can control template content to execute arbitrary Python code. The vulnerability arises from how calls to str.format can be indirectly invoked via filters, bypassing sandbox protec...

CVE-2023-25136

OpenSSH sshd 9.1 contains a pre-authentication double-free in the handling of options.kex_algorithms, fixed in 9.2. Public reports note a remote, unauthenticated attacker could potentially jump to arbitrary addresses in sshd’s address space, with one third-party saying remote code execution is th...

CVE-2019-10160

CVE-2019-10160 relates to a security regression in Python where parsing user-supplied URLs could cause leakage of host-related data (cookies, authentication data) by abusing URL components. The issue affects multiple Python releases (2.7, 3.5, 3.6, 3.7 and pre-3.8.0a4–3.8.0b1) and is tied to URL ...

CVE-2020-8467

CVE-2020-8467 affects Trend Micro Apex One (2019) and OfficeScan XG via a vulnerability in the migration tool component that enables remote code execution. The attack requires user authentication to be attempted. NVD scoring indicates high impact (CVSSv3.1 base 8.8; HIGH). CISA KEV catalogs this ...

CVE-2021-33503

CVE-2021-33503 affects urllib3 prior to 1.26.5, where the authority component regex can catastrophically backtrack on URLs containing many @ characters, leading to denial of service via parameters or redirects. Several connected sources note a patched version is available (e.g., python-urllib3 up...

CVE-2021-25122

CVE-2021-25122 affects Apache Tomcat across multiple lines: 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, and 8.5.0 to 8.5.61. The issue allows duplicating request headers and a limited amount of request body from one request to another, enabling cross-user visibility of results (information disclosur...

CVE-2016-4657

CVE-2016-4657 refers to a memory corruption vulnerability in Apple WebKit used by iOS, prior to 9.3.5. The issue could allow a remote attacker to execute arbitrary code or cause a denial of service when a user visits a crafted website. Affected product is WebKit in iOS (and related WebKit-based c...

CVE-2015-2387

CVE-2015-2387 discusses a local privilege-escalation in the ATMFD.DLL component of the Windows Adobe Type Manager Font Driver. Concrete details from connected sources show multiple OTF/TTF vulnerabilities in ATMFD.DLL (and related font subsystems) that allowed memory corruption via crafted font d...

CVE-2023-2976

The CVE-2023-2976 issue affects Google Guava’s FileBackedOutputStream in versions 1.0–31.1, where files created in the default Java temporary directory on Unix and Android ICS can be accessed by other users/apps. The NVD notes the vulnerability could expose data with high impact to confidentialit...

CVE-2022-4304

CVE-2022-4304 describes a timing-based side‑channel in OpenSSL’s RSA decryption implementation that could allow recovering plaintext over the network via a Bleichenbacher‑style attack. It affects all RSA padding modes (PKCS#1 v1.5, RSA‑OAEP, and RSASVE). The connected Astra Linux bulletin reprodu...

CVE-2022-31693

CVE-2022-31693 affects VMware Tools for Windows (versions 12.x.y before 12.1.5, 11.x.y, and 10.x.y). A local attacker with user privileges in the Windows guest can trigger a PANIC in the VM3DMP driver, causing a denial-of-service condition in the Windows guest OS. The vulnerability is due to the ...

CVE-2022-41796

Sony Content Transfer (Windows) installer CVE-2022-41796 is a DLL search path vulnerability in the installer affecting version 1.3 and earlier. The root cause is insecure loading of DLLs via a Trojan horse DLL placed in an unspecified directory, enabling privilege escalation on a local system. Re...

CVE-2020-8468

CVE-2020-8468 affects Trend Micro Apex One (2019), OfficeScan XG and Worry‑Free Business Security agents. Described as a content validation escape vulnerability that could allow an attacker to manipulate agent client components; an attack requires user authentication. The connected documents prov...

CVE-2019-18187

CVE-2019-18187 affects Trend Micro OfficeScan versions 11.0 and XG (12.0). The issue is a directory traversal in ZIP handling that allows extracting files to a specific OfficeScan server folder, potentially enabling remote code execution. Exploitation requires an authenticated context (web servic...

CVE-2015-2426

CVE-2015-2426 is a Windows OpenType Font Driver vulnerability (ATMFD.DLL) that causes a pool/heap overflow when processing OpenType fonts, allowing remote code execution. The issue arises from a flawed handling of font data (notably the Class1Count field in the GPOS/CFF paths) where an invalid ze...

CVE-2022-22536

CVE-2022-22536 affects SAP NetWeaver components (ABAP/Java stacks), ABAP Platform, SAP Content Server 7.53, and SAP Web Dispatcher. The issue is HTTP request smuggling/concatenation caused by how the SAP ICM front end parses requests, enabling an unauthenticated attacker to prepend arbitrary data...

CVE-2024-50339

Vulnerability summary (CVE-2024-50339): GLPI, versions 9.5.0 up to 10.0.17, is vulnerable to an unauthenticated session-stealing scenario where an attacker can retrieve all session IDs and use them to hijack valid sessions. A patch was issued in version 10.0.17. Several security analyses (includi...

CVE-2017-6327

CVE-2017-6327 affects Symantec Messaging Gateway prior to 10.6.3-267, with unauthenticated remote code execution through the web interface. Reports describe a pre-auth flaw (RestoreAction/web login handling) enabling arbitrary command execution with root privileges on affected appliances, exposed...

CVE-2015-1642

CVE-2015-1642 affects multiple Microsoft Office products (Office 2007 SP3, 2010 SP2, 2013 SP1) via memory corruption when parsing crafted Office files, allowing remote code execution. Microsoft issued MS15-081 with a suite of updates (e.g., 2687409 for Office 2007/2010/2013 components and related...

CVE-2019-0676

CVE-2019-0676 is an Internet Explorer information-disclosure vulnerability caused by improper handling of memory objects, enabling an attacker to test for the presence of files on disk. The affected component is IE’s memory handling (JScript/Win32k context noted in analyses), with exploitation ob...

CVE-2019-1559

OpenSSL vulnerability CVE-2019-1559 describes a padding-oracle weakness where, if an application encounters a fatal protocol error and then calls SSL_shutdown() twice (to send close_notify and to receive one), the server may respond differently to a 0-byte record with invalid padding versus inval...

CVE-2023-34416

CVE-2023-34416 involves memory-safety bugs in Mozilla Firefox and Thunderbird. The vulnerability affects Firefox 113 and Firefox ESR 102.11, with possible memory corruption that could be exploited to execute arbitrary code; affected list includes Firefox < 114, ESR < 102.12, and Thunderbird

CVE-2020-26893

CVE-2020-26893 affects ClamXAV 3.x prior to 3.1.1. A vulnerability arises from inadequate authentication of the client in the ClamXAV 3 helper tool, enabling a correctly signed ClamXAV 2 instance running with a malicious injected dylib to communicate with the helper and perform privileged operati...

CVE-2024-49734

CVE-2024-49734 affects Android’s ConnectivityService.java, enabling a Wi‑Fi AP to infer the site a device connected to via VPN through a side channel, causing remote information disclosure with no extra privileges and no user interaction. The issue is categorized as Information Disclosure with hi...

CVE-2022-31626

CVE-2022-31626 affects PHP with mysqlnd/pdo_mysql: buffer overflow when an adversary supplies a long password during host connection, potentially enabling remote code execution. Affected: PHP 7.4.x < 7.4.30, 8.0.x < 8.0.20, 8.1.x

CVE-2022-43552

The CVE-2022-43552 vulnerability affects curl

CVE-2019-7286

CVE-2019-7286 is a memory corruption bug in iOS CFPrefsDaemon that could enable privilege escalation. Project Zero and related analyses show it as one of five iPhone exploit chains used in targeted in-the-wild campaigns, with chain components exploiting iOS WebKit/kernel paths. Apple released a f...

CVE-2015-5123

CVE-2015-5123 describes a use-after-free in the BitmapData class of the ActionScript 3 (AS3) implementation in Adobe Flash Player . The vulnerability allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) by crafting Flash content that overrides a value...

CVE-2007-4995

CVE-2007-4995 describes an off-by-one error in the DTLS implementation of OpenSSL 0.9.8 prior to 0.9.8f that could allow a remote attacker to execute arbitrary code via unspecified vectors. Multiple connected advisories confirm this DTLS flaw and the need to upgrade OpenSSL to a fixed release (0....

CVE-2026-44249

Netty CVE-2026-44249 details a subnet filter bypass in netty-handler due to an incorrect masking operation in IpSubnetFilterRule.compareTo(). Affected are Netty versions prior to 4.1.135.Final and 4.2.15.Final. An attacker could bypass IPv6 subnet restrictions, allowing valid public IPs to bypass...

CVE-2023-24538

CVE-2023-24538 concerns Go’s html/template backtick handling within JavaScript template literals. The vulnerability arises when a template contains a Go template action inside a JS template literal (e.g., var a = {{.}}); such content can be used to terminate the literal and inject arbitrary JavaS...

CVE-2022-37969

CVE-2022-37969 is a local privilege escalation in Windows CLFS (clfs.sys). The provided connected exploit discussion describes an out-of-bounds/memory-spraying chain that corrupts CLFS kernel structures (notably pContainer in a CLFS container) via crafted .blf files and memory spraying, enabling ...