CVE-2020-25649

The CVE-2020-25649 entry concerns a flaw in FasterXML Jackson Databind where entity expansion was not properly secured, enabling XML External Entity (XXE) attacks. This is a data-integrity risk. Connected advisories consistently associate the issue with Jackson Databind and XXE, and several sourc...

CVE-2018-10545

Technical details (affected products, versions, exploit information, and fixes) are not provided in the supplied documents. Please monitor for updates.

CVE-2013-3163

Microsoft Internet Explorer 8–10 contains a memory corruption vulnerability (CVE-2013-3163) that allows remote code execution or a denial of service when a user visits a crafted web site. Affected component: IE’s memory handling in versions 8–10; root cause described as memory corruption via craf...

CVE-2023-32412

CVE-2023-32412 involves a use-after-free in a component likely within Apple platform software. Affected: watchOS 9.5, tvOS 16.5, macOS Ventura 13.4, macOS Big Sur 11.7.7, macOS Monterey 12.6.6, iOS 15.7.6/iPadOS 15.7.6 and iOS 16.5/iPadOS 16.5. Root cause: use-after-free memory issue addressed by...

CVE-2022-26668

CVE-2022-26668 is an ASUS Control Center API broken access-control vulnerability. Connected docs indicate affected product ASUS Control Center, with vulnerable version referenced by CNNVD as v1.4.2.5. The flaw allows an unauthenticated remote attacker to call privileged API functions, enabling pa...

CVE-2021-30900

CVE-2021-30900 affects Apple’s GPU Drivers in iOS/iPadOS (Smartphone OS); root cause is an out-of-bounds write leading to memory corruption. Impact: potential arbitrary code execution with kernel privileges, exploitable locally. Apple fixes were released in iOS 14.8.1 / iPadOS 14.8.1 and iOS 15.1...

CVE-2020-24588

The CVE-2020-24588 entry relates to the 802.11 Wi‑Fi fragmentation/ A‑MSDU handling issue where the plaintext QoS header flag isn’t authenticated, enabling an attacker to inject packets by sending non‑SSP A‑MSDU frames (FragAttacks). Connected Astra Linux advisories describe this as a variant of ...

CVE-2019-3855

CVE-2019-3855 is a libssh2 integer overflow in the transport read path that may cause an out-of-bounds write when processing server packets. The issue appears in libssh2 prior to 1.8.1 and could enable code exposure or other impact if a user connects to a malicious SSH server. Connected advisorie...

CVE-2023-4807

CVE-2023-4807 : OpenSSL POLY1305 MAC state corruption on Windows x64 with AVX512-IFMA. Affected: OpenSSL library used by server apps (e.g., TLS with CHACHA20-POLY1305). Root cause: POLY1305 MAC implementation does not save/restore non-volatile XMM registers on Windows 64 when MACing data beyond 6...

CVE-2023-2828

CVE-2023-2828 concerns the BIND 9 DNS server’s named component. The vulnerability stems from the cache-cleaning logic: when the resolver is queried for specific RRsets in a certain order, the configured max-cache-size can be exceeded, potentially causing memory exhaustion. Affected are multiple B...

CVE-2024-2511

CVE-2024-2511 describes a denial-of-service risk in TLSv1.3 servers caused by non-default TLS configurations. Specifically, using the non-default SSL_OP_NO_TICKET option (unless early_data with default anti-replay is configured) can cause the TLS session cache to enter an incorrect state and grow...

CVE-2019-14835

The CVE-2019-14835 entry describes a buffer overflow in Linux kernel vhost functionality (virtqueue buffers translated to IOVs) during VM live migration. A privileged guest user could pass descriptors with invalid length while migration is underway, potentially causing a host privilege escalation...

CVE-2016-9841

CVE-2016-9841 is a vulnerability in zlib 1.2.8 related to improper pointer arithmetic in inffast.c that could have context-dependent impact. Connected advisories confirm public details and show remediation by upgrading zlib to a newer version (e.g., 1.2.11) across affected products and distributi...

CVE-2023-4039

CVE-2023-4039 describes a GCC stack-protector issue on AArch64: failure of -fstack-protector to detect buffer overflows in C99-style dynamically-sized locals/alloca, unlike static locals. The default overflow handling would terminate the process, but an attacker might influence control flow if an...

CVE-2019-15902

CVE-2019-15902 describes a backporting error that reintroduced Spectre-v1 in ptrace_get_debugreg() due to swapped lines during cherry-picking. Affected Linux kernels include 4.4.x (up to 4.4.190), 4.9.x (up to 4.9.190), 4.14.x (up to 4.14.141), 4.19.x (up to 4.19.69), and 5.2.x (up to 5.2.11). Th...

CVE-2025-0762

CVE-2025-0762 concerns Google Chrome/Chromium DevTools: a use-after-free in DevTools for builds prior to 132.0.6834.159, enabling potential heap corruption from a crafted Chrome Extension. Affected component is Chrome/Chromium DevTools; the underlying cause is a use-after-free defect (exact inter...

CVE-2022-21605

CVE-2022-21605 concerns the Oracle MySQL Server, specifically the Server: Data Dictionary component. Affected are MySQL Server versions 8.0.28 and earlier . The vulnerability enables a high-privilege attacker with network access (via multiple protocols) to cause the server to hang or crash, resul...

CVE-2022-32744

CVE-2022-32744 concerns Samba’s Kerberos KDC, where forged kpasswd requests can be encrypted with any key, allowing password changes for other users and potentially full domain takeover. Affected software is Samba (KDC/Auth components). The root cause is improper validation of kpasswd requests, e...

CVE-2021-22569

CVE-2021-22569 concerns protobuf-java: an issue allowing interleaving of UnknownFieldSet fields that can cause the parser to linger due to many short-lived objects, potentially enabling DoS-like pauses. Connected sources show this vulnerability in multiple ecosystems (e.g., Debian protobuf packag...

CVE-2021-31206

CVE-2021-31206 is a Microsoft Exchange Server remote code execution vulnerability from the ProxyShell family. The connected documents confirm an exposed Exchange server could be compromised by exploiting ProxyShell vulnerabilities (CVE-2021-34473, CVE-2021-34523, CVE-2021-31207) to gain initial a...

CVE-2019-14283

CVE-2019-14283 affects the Linux kernel up to version 5.2.2, where floppy drive handling in set_geometry() in drivers/block/floppy.c fails to validate sect and head, enabling an integer overflow and out-of-bounds read. This can be triggered by an unprivileged local user when a floppy is present (...

CVE-2021-46908

CVE-2021-46908 is a Linux kernel issue where the bpf permission flag for mixed signed bounds arithmetic was incorrect, enabling a vulnerability path that was mitigated by bypass_spec_v1 handling instead of allow_ptr_leaks. Connected advisories (e.g., SUSE-SU-2024:1465-1 / SUSE-SU-2024:1489-1) des...

CVE-2022-21664

CVE-2022-21664 concerns WordPress across multiple advisories. The issue arises from improper sanitization in a WordPress class, which could enable unintended SQL queries. The vulnerability is mitigated by WordPress patch 5.8.3, with older affected versions fixed via security releases back to 4.1....

CVE-2020-27840

CVE-2020-27840 affects Samba. The flaw is a heap corruption vulnerability caused by spaces in a domain-name DN string, which can cause an out-of-bounds write and crash the process. Impact is primarily availability. Public details show Samba package variants (e.g., Samba 4.12.5-7) and notes that u...

CVE-2019-12519

CVE-2019-12519 in Squid (up to 4.7) originates from ESI handling: ESIExpression::Evaluate uses a fixed stack buffer and does not check for overflow when adding a new member, causing a stack/heap overflow under certain expressions and potentially impacting confidentiality, integrity, and availabil...

CVE-2017-11103

CVE-2017-11103 affects Heimdal (Kerberos); vulnerability arises from improper handling of the KDC-REP service name in krb5_extract_ticket, enabling remote service impersonation when the unencrypted service name is used instead of the encrypted enc_part. Apple’s security content (HT208112/HT208221...

CVE-1999-0001

CVE-1999-0001 concerns a DoS in BSD-derived TCP/IP stacks: ip_input.c can crash or hang when remote attackers send crafted packets. The description across connected sources reiterates that remote packet crafting triggers a denial of service, with no publicly stated exploit details or mitigation i...

CVE-2025-22150

Undici (HTTP/1.1 client) is affected by CVE-2025-22150 in versions prior to 5.28.5, 6.21.1, and 7.2.3 due to using Math.random() to generate multipart/form-data boundaries. This can enable an attacker-controlled endpoint to tamper with requests if specific conditions are met, potentially affectin...

CVE-2022-31737

CVE-2022-31737 describes an out-of-bounds write in WebGL that could cause memory corruption and a potentially exploitable crash. Affected products include Thunderbird < 91.10, Firefox < 101, and Firefox ESR

CVE-2021-33037

CVE-2021-33037 affects Apache Tomcat: versions 10.0.0-M1–10.0.6, 9.0.0.M1–9.0.46, and 8.5.0–8.5.66 may mishandle the HTTP transfer-encoding header with reverse proxies, enabling request smuggling. Root cause: improper header handling allowing spoofed content encoding sequencing. Impact stated in ...

CVE-2019-11932

CVE-2019-11932 is a double-free vulnerability in the android-gif-drawable library (DDGifSlurp in decoding.c) affecting versions before 1.2.18, used by WhatsApp for Android prior to 2.19.244. When parsing a specially crafted GIF image, an attacker can trigger remote code execution or cause denial ...

CVE-2025-1974

CVE-2025-1974 affects the Ingress-NGINX controller in Kubernetes, enabling unauthenticated code execution when a pod-network–reachable attacker can reach the admission/controller path. Public exploits exist (Ingress-NGINX Admission Controller RCE and related PoCs), with published exploit details ...

CVE-2025-0590

CVE-2025-0590 affects the TECNO/Transsion Carlcare mobile app. The root cause is improper permission settings that may cause information leakage (CVE-2025-0590; CVSS 3.1: 7.5 HIGH, AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Exploitation details are not provided in the documents; remediation/fixes are ...

CVE-2023-26083

CVE-2023-26083 is a Mali GPU Kernel Driver information-disclosure vulnerability affecting Midgard, Bifrost, Valhall, and Avalon kernels (versions listed in source). An unprivileged user can cause kernel metadata exposure via a tlstream/Timeline facility, enabling a 16-byte attacker-controlled dat...

CVE-2021-33034

CVE-2021-33034 is a use-after-free in Linux kernel before 5.12.4 in net/bluetooth/hci_event.c when destroying an hci_chan, enabling arbitrary writes. Affected: Linux kernel before 5.12.4 (Bluetooth HCI driver). Mitigation: upgrade to 5.12.4 or later (ChangeLog-5.12.4).

CVE-2016-8740

CVE-2016-8740 affects Apache HTTP Server mod_http2 when Protocols includes h2/h2c. A memory-exhaustion DoS arises from improper restriction of request-header length in crafted CONTINUATION frames in versions 2.4.17–2.4.23. Connected sources confirm the root cause is header-length handling without...

CVE-2016-7250

CVE-2016-7250 affects Microsoft SQL Server 2014 SP1/ SP2 and 2016. The vulnerability arises from an improper cast of an unspecified pointer in the SQL RDBMS Engine, enabling remote authenticated users to escalate privileges via unknown vectors. The issue is part of MS16-136 family of fixes; the r...

CVE-2023-36478

CVE-2023-36478 (Jetty) affects Jetty 9.x/10.x/11.x: an integer overflow in MetaDataBuilder.checkSize can cause HPACK header lengths to overflow, potentially enabling a remote denial-of-service via malformed HTTP/2 header values. The flaw occurs when length is large and Huffman encoding is used, c...

CVE-2021-3517

CVE-2021-3517 is a libxml2 vulnerability affecting versions before 2.9.11. A flaw in the xml entity encoding functionality could allow processing of a crafted XML file to trigger an out‑of‑bounds read, with availability impact and potential confidentiality/integrity impact if memory information i...

CVE-2024-7347

NGINX/Open Source and Plus are vulnerable when built with ngx_http_mp4_module and the mp4 directive is used; a specially crafted MP4 file can over-read worker memory, potentially terminating the process. Affected versions vary by distribution; several advisories indicate patches are available. Fo...

CVE-2022-0194

Netatalk (vulnerable component: ad_addcomment) is affected by CVE-2022-0194. The flaw stems from improper validation of user-supplied data length before copying into a fixed-size stack buffer, enabling an unauthenticated attacker to execute arbitrary code with root privileges on affected installa...

CVE-2022-29914

CVE-2022-29914 describes a memory-safety/logic issue in Firefox/Thunderbird where reusing existing popups could cover the fullscreen notification UI, enabling browser spoofing attacks. Affected products include Thunderbird < 91.9, Firefox ESR < 91.9, and Firefox

CVE-2023-38559

CVE-2023-38559 is a Ghostscript vulnerability: a buffer overflow/ out-of-bounds condition in base/gdevdevn.c:1973 (devn_pcx_write_rle()) could allow a local attacker to cause a denial of service by processing a crafted PDF for a DEVN device with gs. The connected advisories confirm the issue and ...

CVE-2023-32400

CVE-2023-32400 involves a privacy/entitlements issue where entitlements and privacy permissions granted to an app may be used by a malicious app. The description notes this may enable a malicious actor to exploit granted permissions, and that Apple addressed the issue with improved checks. Affect...

CVE-2022-30209

Technical details (affected products, exploit vector, root cause, and remediation) are not provided in the supplied documents. Monitor for updates from official sources.

CVE-2025-20333

CVE-2025-20333 affects Cisco Secure Firewall ASA/FTD VPN web server. The issue stems from improper validation of HTTP(S) input in VPN requests, allowing an authenticated remote attacker with VPN credentials to execute arbitrary code as root and potentially fully compromise the device. A related v...

CVE-2023-40167

CVE-2023-40167 (Jetty) affects Jetty Java-based web server/servlet engine. Prior to Jetty 9.4.52, 10.0.16, 11.0.16, and 12.0.1, Jetty accepts a "+" character before the Content-Length in HTTP/1 header fields, which is non-RFC compliant. This could enable request smuggling in scenarios where a dow...

CVE-2022-26384

Summary: CVE-2022-26384 is a sandbox bypass in Firefox/Thunderbird caused by allowing popups in an iframe sandbox without allow-scripts, enabling crafted links to execute JavaScript in violation of the sandbox. Connected advisories confirm affected products (Firefox < 98, Firefox ESR < 91.7...

CVE-2022-26669

ASUS Control Center is affected by CVE-2022-26669: an authenticated remote attacker with general user privilege can inject SQL commands into specific API parameters to obtain database schema or access data. The vulnerability is documented in NVD/CNVD/CNNVD entries and related lists; exploitation ...

CVE-2022-30746

Summary: CVE-2022-30746 affects Samsung SmartThings prior to 1.7.85.12. A missing caller check in the JavaScript interface API can allow a remote attacker to access sensitive information. The vulnerability is described across multiple sources (NVD, Red Hat, CNVD/CNNVD references) as a missing cal...