CVE-2013-1902

CVE-2013-1902 concerns PostgreSQL versions 8.3.x before 8.3.23, 8.4.x before 8.4.17, 9.0.x before 9.0.13, 9.1.x before 9.1.9, and 9.2.x before 9.2.4, which generate insecure temporary files with predictable filenames. The description notes an unspecified impact and attack vectors related to graph...

CVE-2021-21705

CVE-2021-21705 describes an SSRF bypass in PHP’s URL validation via filter_var(..., FILTER_VALIDATE_URL). Affected are PHP versions: 7.3.x below 7.3.29, 7.4.x below 7.4.21, and 8.0.x below 8.0.8. The issue allows a URL with an invalid password field to be accepted as valid, potentially causing in...

CVE-2020-10735

CVE-2020-10735 affects Python’s integer parsing with non-binary bases, where int("text") on very long digit strings can cause a CPU DoS, impacting availability. The flaw is present in Python’s PyLong_FromString path and manifests in quadratic-time scenarios when parsing large decimal-like strings...

CVE-2021-4183

Wireshark: CVE-2021-4183 is a denial-of-service issue caused by a crash in the pcapng file parser in Wireshark 3.6.0. Public documentation in connected advisories (Gentoo GLSA 202210-04, openSUSE/openSUSE-SU-2022:0375-1, SUSE/SLES updates, etc.) confirms the vulnerability condition is the pcapng ...

CVE-2018-4344

CVE-2018-4344 is a memory corruption issue often referred to as LightSpeed. The official entry notes a memory corruption in Apple OS components that was fixed with memory handling improvements, affecting iOS versions older than iOS 12, macOS Mojave 10.14, tvOS 12, and watchOS 5. Several connected...

CVE-2022-20807

Cisco Expressway Series and Cisco TelePresence Video Conferencing Server (VCS) have multiple CVEs (including CVE-2022-20807) impacting the API and web-based management interfaces. The vulnerabilities allow an authenticated, remote attacker to write files or disclose sensitive information on an af...

CVE-2023-24998

CVE-2023-24998 arises from Apache Commons FileUpload not limiting the number of request parts, enabling a DoS via a malicious upload or series of uploads. The described issue notes that the related file-count limit (FileUploadBase#setFileCountMax) is not enabled by default and must be configured ...

CVE-2019-20916

The CVE-2019-20916 issue affects the Python pip package prior to 19.2. It enables Directory Traversal when a URL is provided in an install command due to a Content-Disposition header containing ../ in a filename, demonstrated by overwriting /root/.ssh/authorized_keys. The vulnerability is in _int...

CVE-2019-3466

CVE-2019-3466 concerns the pg_ctlcluster script in the PostgreSQL-related package postgresql-common. In versions prior to 210, the script did not drop privileges when creating socket/statistics temporary directories, enabling a local privilege escalation. Public disclosures reference Ubuntu/Debia...

CVE-2025-0442

CVE-2025-0442 involves Google Chrome’s Payments UI: an Inappropriate implementation vulnerability in Chrome prior to 132.0.6834.83 could allow UI spoofing via a crafted HTML page when a user performs specific UI gestures. Connected sources confirm the issue in Chromium/Chrome with this exact CVE ...

CVE-2025-24859

CVE-2025-24859 affects Apache Roller

CVE-2023-21528

CVE-2023-21528 is a Microsoft SQL Server Remote Code Execution vulnerability. In SQL Server 2008 R2 SP3 GDR, updates described in KB5021112 fix CVE-2023-21528 (builds including SQLServer2008R2-KB5021112-x64.exe, version 10.50.6785.2). In SQL Server 2019, fixes are included in KB5021125 (build: SQ...

CVE-2024-12228

CVE-2024-12228 affects PHPGurukul Complaint Management System 1.0, specifically the /admin/user-search.php endpoint. The vulnerability arises from improper handling of the search parameter, allowing SQL injection through manipulation of the argument, with remote exploitation reported and public d...

CVE-2021-25215

CVE-2021-25215 affects BIND 9 upstream and downstream builds. The vulnerability is an assertion failure in the named process when handling DNAME-related queries, which can cause named to terminate. Affected versions include BIND 9.0.0–9.11.29, 9.12.0–9.16.13, and specific S1/“Supported Preview” b...

CVE-2015-3183

CVE-2015-3183 affects the Apache HTTP Server (httpd) via a bug in parsing chunked transfer encoding headers, enabling HTTP request smuggling when handling large chunk sizes or invalid chunk extensions (related to modules/http/http_filters.c). The issue is fixed in downstream advisories and patche...

CVE-2020-36518

CVE-2020-36518 affects jackson-databind prior to 2.13.0, enabling a Java StackOverflow and DoS via excessive nesting depth. In affected advisories, remediation is to upgrade jackson-databind to 2.13.0+ (examples show 2.13.x or newer such as 2.13.4.2 in Crowd/CWD references). Practical impact is d...

CVE-2023-3446

CVE-2023-3446 affects OpenSSL DH parameter checks (DH_check, DH_check_ex, EVP_PKEY_param_check). Affected checks may slow down or stall when modulus values are large, potentially causing Denial of Service if parameters are from untrusted sources. The issue is tied to how DH parameter validation i...

CVE-2023-3079

Summary (CVE-2023-3079) : A type confusion in V8 in Google Chrome prior to 114.0.5735.110 can allow remote code execution via a crafted HTML page, with heap corruption as the underlying issue. The vulnerability affects Chrome’s Chromium-based rendering stack (V8 engine) and is rated High severity...

CVE-2022-21186

The CVE-2022-21186 issue affects @acrontum/filesystem-template versions prior to 0.0.2. The root cause is lack of sanitization of the href field in the fetchRepo API on external input, enabling Arbitrary Command Injection. Reported impact is high severity: potential remote code execution with net...

CVE-2022-31160

CVE-2022-31160 affects jQuery UI versions prior to 1.13.2. The issue occurs when initializing a checkboxradio widget on an input inside a label; the label contents can be treated as the input label, and refreshing with .checkboxradio("refresh") on such a widget may decode encoded HTML entities in...

CVE-2022-31030

CVE-2022-31030 affects containerd’s CRI ExecSync path, where containered processes can cause unbounded memory growth in the containerd daemon, risking host memory exhaustion and denial of service. The connected documents confirm the root cause is within containerd’s CRI implementation and state f...

CVE-2021-21157

CVE-2021-21157 : Use-after-free in the Web Sockets component of Chromium/ Google Chrome on Linux prior to 88.0.4324.182. The underlying issue is a use-after-free that could allow a remote attacker to potentially execute arbitrary code via a crafted HTML page, with impact described as heap corrupt...

CVE-2019-6446

CVE-2019-6446 affects NumPy (pre-1.16.3) where the pickle module is used unsafely via numpy.load, allowing remote code execution with a crafted serialized object. The issue is noted as disputed by third parties who argue the behavior can be legitimate in loading trusted Python object arrays. Mult...

CVE-2025-1782

CVE-2025-1782 affects HylaFAX Enterprise Web Interface and AvantFAX. The vulnerability arises from an unsanitized language form element that can be abused to include an arbitrary file in PHP code, enabling an authenticated attacker to perform actions as the web server user. The available document...

CVE-2024-12147

Netgear R6900 vulnerability CVE-2024-12147 affects firmware 1.0.1.26_1.0.20 in the HTTP Header Handler’s upgrade_check.cgi. The root cause is improper validation of the Content-Length parameter in upgrade_check.cgi, which leads to a buffer overflow. This is a remote, unauthenticated issue, with e...

CVE-2020-25683

CVE-2020-25683 affects dnsmasq up to version 2.83. Root cause: heap-based buffer overflow in DNSSEC processing due to missing length checks in rfc1035.c:extract_name() and related get_rdata()/sort_rrset paths. Exploitation: remote attacker can craft valid DNS replies to cause a heap overflow, cra...

CVE-2019-12522

CVE-2019-12522 (Squid) affects Squid up to version 4.7. When Squid runs as root, its child processes are spawned as a lesser user (default: nobody). The code path uses leave_suid, which leaves the Saved UID as 0, enabling an attacker who compromises a child process to escalate privileges back to ...

CVE-2018-7445

CVE-2018-7445 : MikroTik RouterOS SMB service has a buffer overflow when processing NetBIOS session requests. It allows unauthenticated remote code execution on all devices/architectures running RouterOS before versions 6.41.3 or 6.42rc27. Public references indicate PoC/exploits exist (e.g., Expl...

CVE-2025-4664

CVE-2025-4664 describes an information-disclosure vulnerability in Google Chrome’s Loader component (Chromium) that allows a remote attacker to leak cross-origin data via a crafted HTML page. Affected software is Google Chrome (Chromium-based) prior to version 136.0.7103.113. The underlying root ...

CVE-2022-23072

CVE-2022-23072 : In Recipes (versions 1.0.5–1.2.5), a Stored XSS flaw exists in the Add to Cart flow. An attacker can inject a malicious payload via the Name parameter on the food list page, triggering the XSS when adding to the shopping cart. This could enable the attacker to capture the victim’...

CVE-2021-22555

CVE-2021-22555 is a Linux kernel heap out-of-bounds write vulnerability in net/netfilter/x_tables.c, dating to 2.6.19-rc1. The issue allows a local attacker to gain privileges or cause a DoS via heap memory corruption in the username space. Public sources in the connected docs confirm the vulnera...

CVE-2020-25686

CVE-2020-25686 affects dnsmasq prior to version 2.83. The flaw: when receiving a query, dnsmasq does not check for an existing pending request for the same name and forwards a new one, allowing up to 150 outstanding queries and enabling an off-path attacker to substantially reduce the work needed...

CVE-2022-23302

CVE-2022-23302 affects Log4j 1.x JMSSink. TheDeserialization flaw allows remote code execution when an attacker can write to the Log4j configuration or when the configuration references an LDAP service the attacker controls. JMSSink can be triggered via a TopicConnectionFactoryBindingName to caus...

CVE-2018-6970

Summary of CVE-2018-6970 (VMware Horizon): A out-of-bounds read in the Message Framework library affects VMware Horizon components. Affected products/versions include Horizon 6 (before 6.2.7), Horizon 7 (before 7.5.1), and Horizon Client (4.x before 4.8.1). The flaw may allow a less-privileged us...

CVE-2024-12130

CVE-2024-12130 is a Rockwell Automation Arena (Arena Simulation) vulnerability described as an out-of-bounds read during parsing of DOE files, enabling arbitrary code execution when a user opens a malicious DOE file or visits a crafted resource. Documents consistently reference Arena/ Arena Simul...

CVE-2020-10531

ICU for C/C++ up to version 66.1 is affected by CVE-2020-10531: an integer overflow in UnicodeString::doAppend() in common/unistr.cpp can cause a heap-based buffer overflow. Public disclosures and vendor advisories (e.g., ALAS2-2020-1418/ALSA-2020:1317, CESA/DSA advisories) reference this vulnera...

CVE-2019-10072

CVE-2019-10072 affects Apache Tomcat in the HTTP/2 handling. The documented issue states that the fix for CVE-2019-0199 was incomplete, allowing HTTP/2 connection window exhaustion on write (stream 0). Affected versions: Tomcat 9.0.0.M1–9.0.19 and 8.5.0–8.5.40. Consequence: server-side threads ca...

CVE-2023-45853

CVE-2023-45853 affects MiniZip in zlib up to version 1.3, with an integer overflow that leads to a heap-based buffer overflow in zipOpenNewFileInZip4_64 when processing long filename, comment, or extra field. Pyminizip (up to 0.2.6) is also vulnerable as it bundles this zlib/MiniZip code. Connect...

CVE-2012-0031

CVE-2012-0031 affects Apache HTTP Server 2.2.21 and earlier, specifically scoreboard.c. The vulnerability allows local users to cause a denial of service (daemon crash during shutdown) or potentially other unspecified impact by modifying a type field in a shared scoreboard Memory segment, which l...

CVE-2025-30232

CVE-2025-30232 is confirmed to affect Exim4 (MTA) with a use-after-free in versions 4.96–4.98.1 that could allow a local attacker to escalate privileges. The Debian advisory notes the issue is fixed in exim4 package for stable (bookworm) as version 4.96-15+deb12u7, and recommends upgrading. The p...

CVE-2024-23953

CVE-2024-23953 affects Apache Hive (LLAP); uses Arrays.equals() in LlapSignerImpl to compare signatures, introducing a timing discrepancy that can enable signature forgery by an authorized user. The issue stems from non-constant-time comparison, where mismatched bytes may reveal information throu...

CVE-2023-28205

CVE-2023-28205 is a use-after-free vulnerability in WebKitGTK/WebKitGTK4 that can be triggered by processing malicious web content, leading to arbitrary code execution. The initial CVE entry notes a memory-management fix in Safari, iOS, iPadOS and macOS, with active exploitation reports. Connecte...

CVE-2023-21715

CVE-2023-21715 is a Microsoft Publisher security feature bypass vulnerability affecting Microsoft 365 Apps for Enterprise. Exploitation allows a specially crafted document to bypass macro defenses and run code that would normally be blocked by policy; the attack is described as local with authent...

CVE-2022-36450

CVE-2022-36450 affects Obsidian 0.14.x and 0.15.x prior to 0.15.5. The issue stems from using the obsidian://hook-get-address protocol with a call to window.open without validating the URL, enabling potential remote code execution. Exploitation status is not detailed in the provided documents. Th...

CVE-2023-28206

CVE-2023-28206 is an IOSurfaceAccelerator out-of-bounds write vulnerability in Apple’s iOS/macOS stack. The connected analysis documents an in-the-wild exploit chain targeting Safari IPC to escalate to GPU-process code execution, including a sequence of heap grooming and IPC misuse that yields ar...

CVE-2020-8619

CVE-2020-8619 affects ISC BIND9: versions 9.11.14–9.11.19, 9.14.9–9.14.12, and 9.16.0–9.16.3 are vulnerable. The root cause is an asterisk (*) in an empty non-terminal location in the DNS graph, which can trigger an assertion in rbtdb.c and cause denial of service. Exploitation would require zone...

CVE-2020-11080

In nghttp2, CVE-2020-11080 is a denial-of-service vulnerability caused by an overly large HTTP/2 SETTINGS frame payload in versions before 1.41.0. A PoC repeatedly sends a 14,400-byte SETTINGS frame (2400 settings entries), spiking CPU. The issue is mitigated by upgrading to nghttp2 1.41.0 or lat...

CVE-2023-32353

CVE-2023-32353 affects Apple iTunes for Windows prior to version 12.12.9. The issue is described as a logic fault addressed by improved checks, with the fix implemented in iTunes 12.12.9 for Windows. The resulting impact is the potential for elevation of privileges. Affected software: Apple iTune...

CVE-2022-34485

CVE-2022-34485 concerns memory-corruption-related vulnerabilities in Mozilla Firefox. The data shows Firefox versions earlier than 102 are affected, attributed to issues uncovered by the Mozilla Fuzzing Team, with the potential to execute arbitrary code due to memory corruption. The primary affec...

CVE-2023-32388

CVE-2023-32388 affects Apple platforms (watchOS 9.5; macOS Ventura 13.4; macOS Big Sur 11.7.7; macOS Monterey 12.6.6; iOS 15.7.6 and iPadOS 15.7.6; iOS 16.5 and iPadOS 16.5). The issue is a privacy vulnerability where private data redaction in log entries could be bypassed, enabling an app to byp...