CVE-2022-25647

CVE-2022-25647 affects com.google.code.gson:gson before 2.8.9, which is vulnerable to Deserialization of Untrusted Data via the writeReplace() method in internal classes, potentially enabling DoS. Public advisories (e.g., Debian DSA-5227-1) confirm the flaw and recommend upgrading to 2.8.9 or new...

CVE-2023-40132

CVE-2023-40132 affects Google Android through RingtoneManager.setActualDefaultRingtoneUri. The vulnerability arises from a missing permission check when accessing content providers, allowing a local escalation of privilege by bypassing read permissions. Impact is described as local privilege esca...

CVE-2023-38606

CVE-2023-38606 affects Apple’s kernel across iOS, iPadOS, macOS, tvOS and watchOS; the issue allows an app to modify a sensitive kernel state. The vulnerability was addressed with updated state management and patches, with fixes in macOS Monterey 12.6.8, iOS 15.7.8/iPadOS 15.7.8, iOS 16.6/iPadOS ...

CVE-2023-21768

CVE-2023-21768 affects the Windows Ancillary Function Driver for WinSock (afd.sys). The vulnerability stems from a flaw in AfdNotifyRemoveIoCompletion, enabling a local privilege escalation to SYSTEM by manipulating I/O ring structures. Documented impact shows LPE on Windows 11 22H2 up to build 2...

CVE-2020-25685

CVE-2020-25685 affects dnsmasq up to version 2.83. The issue arises from how forward.c:reply_query() matches replies to forwarded queries: it uses a weak hash of the query name, allowing an off-path attacker to forge replies by exploiting hash collisions. This vulnerability enables DNS cache pois...

CVE-2010-3129

CVE-2010-3129 affects uTorrent versions 2.0.3 and earlier, with an untrusted search path vulnerability that allows DLL hijacking via a Trojan horse DLL placed in the same folder as a .torrent or .btsearch file. The issue can enable arbitrary code execution for local users and possibly remote atta...

CVE-2009-2446

CVE-2009-2446 affects MySQL server: format string vulnerabilities in libmysqld dispatch_command (sql_parse.cc) in MySQL 4.0.0–5.0.83. Exploited by remote authenticated users to crash mysqld (DoS) via crafted database name in COM_CREATE_DB or COM_DROP_DB. Remediation: upgrade to patched MySQL vers...

CVE-2022-31630

CVE-2022-31630 is a PHP gd imageloadfont() vulnerability. Connected advisories confirm the issue occurs in PHP versions prior to 7.4.33 and specific 8.x series (e.g., 8.0.25, 8.1.12/8.2.12), where a specially crafted font file used with imagechar() can cause an out-of-bounds read, leading to cras...

CVE-2025-24400

CVE-2025-24400 affects the Jenkins Eiffel Broadcaster Plugin (versions 2.8.0–2.10.2). The vulnerability arises because the plugin uses the credential ID as the cache key during signing operations, allowing an attacker who can create a credential with the same ID in a different credentials store t...

CVE-2022-3171

CVE-2022-3171 describes a parsing issue in protobuf-java core and lite where inputs containing multiple non-repeated embedded messages with repeated or unknown fields can flip objects between mutable and immutable forms, causing long garbage-collection pauses and DoS. Affected versions are protob...

CVE-2022-0001

CVE-2022-0001 pertains to Intel CPUs and Branch History Injection (BHI). The issue arises from non-transparent sharing of branch predictor selectors between contexts, potentially allowing an authorized local attacker to disclose information via speculative execution side channels. Affected materi...

CVE-2021-3711

CVE-2021-3711 involves a bug in OpenSSL SM2 decryption: the buffer-size calculation during EVP_PKEY_decrypt() first call can under-allocate, enabling a later second call with a too-small buffer and causing a buffer overflow (up to 62 bytes). The issue affects OpenSSL 1.1.1 up to 1.1.1k and is fix...

CVE-2020-11996

CVE-2020-11996 affects Apache Tomcat versions 10.0.0-M1 to 10.0.0-M5, 9.0.0.M1 to 9.0.35, and 8.5.0 to 8.5.55, where a specially crafted sequence of HTTP/2 requests could trigger high CPU and make the server unresponsive. Multiple connected advisories confirm this DoS through HTTP/2 traffic. Publ...

CVE-2018-5741

CVE-2018-5741 concerns ISC BIND 9 and its update-policy feature for Dynamic DNS (DDNS). The issue stems from incorrect documentation of krb5-subdomain and ms-subdomain rule types in the Administrator Reference Manual, which could lead operators to believe their configured policies are more restri...

CVE-2016-2107

CVE-2016-2107 (OpenSSL) is a padding-oracle vulnerability in the AES-NI CBC MAC check. The issue arises in the AES-CBC padding validation where memory allocation during the padding check is mishandled, enabling potential leakage of plaintext under certain conditions. Affected OpenSSL versions inc...

CVE-2024-23672

Summary: CVE-2024-23672 is a Denial of Service vulnerability in Apache Tomcat affecting multiple branches (11.0.0-M1…16, 10.1.0-M1…18, 9.0.0-M1…85, 8.5.0…98) where WebSocket clients could keep connections open, leading to increased resource consumption. The connected documents confirm the root ca...

CVE-2020-2752

CVE-2020-2752 affects the Oracle MySQL Client (C API). Publicly documented affected versions are 5.6.47 and earlier, 5.7.27 and earlier, and 8.0.17 and earlier. The vulnerability can be triggered by a network-accessing attacker via multiple protocols with low privileges and may lead to a Hang or ...

CVE-2018-5740

CVE-2018-5740 is a flaw in the deny-answer-aliases feature of BIND that can cause an assertion failure in named, potentially restarting the bind process (denial of service). Affected BIND versions include 9.7.0–9.8.8, 9.9.0–9.9.13, 9.10.0–9.10.8, 9.11.0–9.11.4, 9.12.0–9.12.2, and 9.13.0–9.13.2. R...

CVE-2018-19320

CVE-2018-19320 concerns the GDrv low-level driver used by GIGABYTE APP Center and related tools (AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, OC GURU II v2.08). The vulnerability exposes ring0 memcpy-like functionality that could let a local attacker gain full control of t...

CVE-2011-0419

CVE-2011-0419 is a stack consumption/DoS vulnerability in the APR library’s fnmatch implementation (apr_fnmatch.c) and, for some platforms, in libc’s fnmatch.c. It affects APR < 1.4.3 and Apache HTTP Server

CVE-2022-28987

Vulnerability summary: Zoho ManageEngine ADSelfService Plus (pre-6202, e.g., 6121) is affected by CVE-2022-28987. A crafted POST to /ServletAPI/accounts/login enables username enumeration by revealing differences in responses for existing versus non-existing users, via the Forgot Password/login f...

CVE-2023-5678

CVE-2023-5678 describes a DoS risk from excessive time spent validating X9.42 DH keys/parameters. The issue affects OpenSSL DH-based operations such as DH_generate_key(), DH_check_pub_key(), DH_check_pub_key_ex(), EVP_PKEY_public_check(), and related checks invoked by DH-related functions. OpenSS...

CVE-2022-45141

Summary: CVE-2022-45141 affects Samba and relates to the Windows Kerberos RC4-HMAC Elevation of Privilege vulnerability. The issue is that vulnerable Samba Active Directory Domain Controllers can issue rc4-hmac Kerberos tickets even when servers support stronger encryption (e.g., aes256-cts-hmac-...

CVE-2021-44223

WordPress before 5.8 is vulnerable due to missing Update URI plugin header, enabling remote code execution via supply-chain attacks on installations using plugins with slugs that meet WordPress.org naming constraints but aren’t present in the directory. Impact is high (remote, no user interaction...

CVE-2020-5741

Plex Media Server on Windows prior to version 1.19.3 is affected by CVE-2020-5741: an authenticated attacker can trigger unsafe Python pickle deserialization (Dict file) during camera-upload related processing, leading to remote code execution as the OS user who runs Plex. Public references descr...

CVE-2018-14042

CVE-2018-14042 refers to Bootstrap prior to 4.1.2 where the data-container property used by tooltips can trigger cross-site scripting (XSS). The vulnerability arises in the tooltip component’s handling of the data-container attribute, enabling injection of arbitrary HTML/JS when the affected Boot...

CVE-2005-0219

CVE-2005-0219 : The connected sources describe multiple XSS vulnerabilities in Gallery 1.3.4-pl1, allowing remote attackers to inject arbitrary script/HTML via fields in add_comment.php (index), slideshow_low.php (set_albumName, slide_index, slide_full, slide_loop, slide_pause, slide_dir), and se...

CVE-2023-32233

CVE-2023-32233 concerns a use-after-free in Netfilter nf_tables in the Linux kernel (through 6.3.1) when processing batch requests. Unprivileged local users can exploit this to perform arbitrary reads/writes in kernel memory, enabling local privilege escalation to root. The root cause is mishandl...

CVE-2019-2938

CVE-2019-2938 affects MySQL Server (InnoDB) in Oracle MySQL. Affected versions include 5.7.27 and earlier and 8.0.17 and earlier; exploitation over network could cause a hang or crash (DoS) with high privileges. CVSSv3 base score 4.4. Patches are available; advisory ALSA-2020-1333 recommends upgr...

CVE-2019-14814

CVE-2019-14814 affects the Linux kernel Marvell WiFi driver (mwifiex) - a heap-based buffer overflow in the Marvell WiFi chip driver, present in all kernel versions up to but excluding 5.3. This can allow local users to crash the system or, potentially, execute arbitrary code. Public advisories (...

CVE-2021-25219

CVE-2021-25219 affects ISC BIND; a flaw in response processing allows abuse of the lame cache, degrading resolver performance and potentially causing DoS. Affected ranges include BIND 9.3.0–9.11.35, 9.12.0–9.16.21, 9.9.3-S1–9.11.35-S1, 9.16.8-S1–9.16.21-S1, and 9.17.0–9.17.18 (development/joint b...

CVE-2023-21930

CVE-2023-21930 affects Oracle Java SE and GraalVM Enterprise Edition (JSSE component) on Java 8u361, 11.0.18, 17.0.6, 20 and GraalVM 20.3.9/21.3.5/22.3.1. An unauthenticated attacker with network access over TLS can compromise data confidentiality and integrity; exploitation is possible via TLS h...

CVE-2022-26672

The CVE-2022-26672 entry concerns ASUS WebStorage where a hardcoded API token in the APP source enables an unauthenticated remote attacker to connect to the server and perform login attempts to general user accounts. A successful login allows access to, modification of, or deletion of user accoun...

CVE-2012-5568

CVE-2012-5568 affects Apache Tomcat 7.0.x and enables a remote-denial-of-service via Slowloris-style partial HTTP requests. The vulnerability allows an attacker to keep connections open and exhaust resources, with a CVSS v2 base score of 5.0 in the initial metric (note: other sources list base sc...

CVE-2025-0395

Summary (CVE-2025-0395) : The GNU C Library (glibc) versions 2.13 to 2.40 contain a buffer overflow in the assert() failure path where the failure message and size information are not allocated sufficiently, potentially overflowing the heap if the message size aligns to a page boundary. Connected...

CVE-2024-26586

CVE-2024-26586 (Linux kernel) : The issue is a stack corruption risk in mlxsw spectrum ACL TCAM handling when there are more than 16 ACLs in an ACL group. In Spectrum-2+ ASICs, firmware reports a larger ACL count than the PAGT register can hold, risking stack corruption during forwarding. The fix...

CVE-2022-29548

CVE-2022-29548 is a reflected Cross-Site Scripting (XSS) vulnerability in the WSO2 Management Console affecting API Manager and related products (e.g., API Manager 2.2.0, 2.5.0, 2.6.0, 3.0.0–3.2.0, 4.0.0; API Manager Analytics; API Microgateway; Data Analytics Server; Enterprise Integrator; IS as...

CVE-2017-14746

CVE-2017-14746 is a use-after-free vulnerability in the Samba SMB1 server component. The issue arises when Samba 4.x files or services process certain SMB1 requests, allowing a remote attacker to crash the server or execute arbitrary code. Public advisories consistently describe an SMB1 handling ...

CVE-2022-23307

CVE-2022-23307 concerns a deserialization vulnerability in the Chainsaw component of Apache Log4j 1.x (Chainsaw bundled with Log4j 1.2.x). The root cause is unsafe deserialization of untrusted data via Chainsaw, allowing potential code execution. Multiple Atlassian products initially bundled Chai...

CVE-2022-23730

CVE-2022-23730 is described across connected records as a public API error that allows bypassing API access control, with concrete mention of affecting LG WebOS (PT-2022-16235) and related entries (e.g., Red Hat/NVD refs). The sources do not provide specific vulnerable versions, exact root cause ...

CVE-2021-25214

CVE-2021-25214 affects BIND’s named when processing a malformed IXFR, causing named to terminate on the next refresh of the transferred zone. Concrete details across connected advisories show affected BIND ranges and the specific fixes: ALT Linux and others report updates that address CVEs 25214/...

CVE-2019-11049

CVE-2019-11049 affects PHP 7.3.x with versions below 7.3.13 and PHP 7.4.0 on Windows. The issue arises when supplying custom headers to mail() with the header in lowercase, which can cause double-free of memory locations. There are no exploitation details in the provided documents beyond this des...

CVE-2019-13030

The CVE-2019-13030 entry concerns the eQ-3 Homematic CCU3 AddOn “Mediola NEO Server for Homematic CCU3” vulnerable before version 2.4.5. The root cause is improper access control on addon configuration pages and a missing check in rc.d/97NeoServer, allowing an unauthenticated admin to start/stop ...

CVE-2014-4210

CVE-2014-4210 is an unspecified WebLogic SSRF vulnerability affecting Oracle WebLogic Server in Oracle Fusion Middleware 10.0.2.0 and 10.3.6.0. It allows remote attackers to affect confidentiality via Web Services/WebLogic SSRF vectors. Public details describe an SSRF that could bypass network re...

CVE-2024-26583

CVE-2024-26583 affects the Linux kernel TLS path. The issue is a race between async crypto notify completion and socket close, where the submitting thread could exit before the crypto handler finishes, risking touching data after it has been freed. The fix routes around this by reducing complex l...

CVE-2020-13943

CVE-2020-13943 affects Apache Tomcat across multiple lines: 8.5.x (8.5.0–8.5.57), 9.0.x (9.0.0.M1–9.0.37), and 10.0.x (10.0.0-M1–10.0.0-M7). The flaw occurs when an HTTP/2 client exceeds the maximum concurrent streams, causing a subsequent request on the same connection to carry headers from a pr...

CVE-2020-7066

CVE-2020-7066 (PHP) : get_headers() with a user-supplied URL can truncate at a NULL byte, causing target confusion and possible data leakage to a wrong server. Affected: PHP 7.2.x < 7.2.29, 7.3.x < 7.3.16, 7.4.x

CVE-2019-11041

CVE-2019-11041 affects PHP EXIF parsing (exif_read_data) and can read past the allocated buffer, enabling information disclosure or crash. Affected PHP versions are 7.1.x < 7.1.31, 7.2.x < 7.2.21, and 7.3.x

CVE-2018-11784

CVE-2018-11784 affects Apache Tomcat: the default servlet could be tricked into generating redirects to arbitrary URIs when handling requests like /foo, enabling open redirect. Affected branches include 9.0.x (9.0.0.M1–9.0.11), 8.5.x (8.5.0–8.5.33), and 7.0.x (7.0.23–7.0.90). Root cause is how th...

CVE-2017-5754

CVE-2017-5754 is the Meltdown vulnerability: a speculative-execution side-channel in kernels could allow a local attacker to read privileged memory. Apple documents show Meltdown affecting Kernel on iOS/macOS/watchOS with related entries (e.g., CVE-2017-5754) and list mitigation via security upda...