21767 matches found
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: DML). Supported versions that are affected are 8.0.0-8.0.25. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 6.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H).
...
Chromium: CVE-2025-8292 Use after free in Media Stream
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Perl threads have a working directory race condition where file operations may target unintended paths
...
Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2
...
Libxml2: stack buffer overflow in xmllint interactive shell command handling
...
Libxml: heap use after free (uaf) leads to denial of service (dos)
...
AddressSanitizer: stack-buffer-overflow in jq_fuzz_execute (jv_string_vfmt)
...
Libxml: type confusion leads to denial of service (dos)
...
Chromium: CVE-2025-8011 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-8010 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft SharePoint Server Spoofing Vulnerability
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network...
Microsoft SharePoint Server Remote Code Execution Vulnerability
Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network. Microsoft is aware that an exploit for CVE-2025-53770 exists in the wild. Microsoft is preparing and fully testing a comprehensive update to address this...
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the stack-overflow handler in lj_state.c.
...
LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240626 have a stack-buffer-overflow in lj_strfmt_wfnum in lj_strfmt_num.c.
...
Microsoft Purview Elevation of Privilege Vulnerability
Permissive list of allowed inputs in Microsoft Purview allows an authorized attacker to elevate privileges over a network...
Azure Machine Learning Elevation of Privilege Vulnerability
Improper authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network...
Azure DevOps Server Elevation of Privilege Vulnerability
Authentication bypass by assumed-immutable data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network...
Azure Machine Learning Elevation of Privilege Vulnerability
Missing authorization in Azure Machine Learning allows an authorized attacker to elevate privileges over a network...
Azure Machine Learning Elevation of Privilege Vulnerability
Weak authentication in Azure Machine Learning allows an authorized attacker to elevate privileges over a network...
urllib3 redirects are not disabled when retries are disabled on PoolManager instantiation
...
HTMLParser quadratic complexity when processing malformed inputs
...
Apache HTTP Server: HTTP/2 DoS by Memory Increase
...
Apache HTTP Server: mod_ssl TLS upgrade attack
...
Apache HTTP Server: mod_proxy_http2 denial of service
...
Gnutls: null pointer dereference in _gnutls_figure_common_ciphersuite()
...
Libssh: incorrect return code handling in ssh_kdf() in libssh
...
Libssh: double free vulnerability in libssh key export functions
...
mtr through 0.95, in certain privileged contexts, mishandles execution of a program specified by the MTR_PACKET environment variable. NOTE: mtr on macOS may often have Sudo rules, as an indirect consequence of Homebrew not installing setuid binaries.
...
Apache HTTP Server: mod_ssl error log variable escaping
...
Apache HTTP Server: SSRF with mod_headers setting Content-Type header
...
Apache HTTP Server: HTTP response splitting
...
Libssh: invalid return code for chacha20 poly1305 with openssl backend
...
Apache HTTP Server: mod_ssl access control bypass with session resumption
...
Libssh: out-of-bounds read in sftp_handle()
...
Chromium: CVE-2025-7657 Use after free in WebRTC
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2025-6558 Incorrect validation of untrusted input in ANGLE and GPU
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information. Google is aware that an exploit for CVE-2025-6558 exists in the wild...
Chromium: CVE-2025-7656 Integer overflow in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Helm Chart Dependency Updating With Malicious Chart.yaml Content And Symlink Can Lead To Code Execution
...
Gdk‑pixbuf: heap‑buffer‑overflow in gdk‑pixbuf
...
Redis DoS Vulnerability due to bad connection error handling
...
Gnutls: vulnerability in gnutls sct extension parsing
...
Gnutls: vulnerability in gnutls certtool template parsing
...
Gnutls: vulnerability in gnutls othername san export
...
net: libwx: handle page_pool_dev_alloc_pages error
...
jfs: Prevent copying of nlink with value 0 from disk inode
...
net: vlan: don't propagate flags on open
...
PCI: vmd: Make vmd_dev::cfg_lock a raw_spinlock_t type
...
media: venus: hfi_parser: refactor hfi packet parsing logic
...
mptcp: fix NULL pointer in can_accept_new_subflow
...
x86/mce: use is_copy_from_user() to determine copy-from-user context
...