22103 matches found
Microsoft Excel Remote Code Execution Vulnerability
Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Microsoft SharePoint Server Elevation of Privilege Vulnerability
Improper privilege management in Microsoft Office SharePoint allows an authorized attacker to elevate privileges locally...
Web Threat Defense (WTD.sys) Denial of Service Vulnerability
Out-of-bounds read in Web Threat Defense WTD.sys allows an unauthorized attacker to deny service over a network...
Microsoft Azure File Sync Elevation of Privilege Vulnerability
Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...
Microsoft Brokering File System Elevation of Privilege Vulnerability
Use after free in Microsoft Brokering File System allows an authorized attacker to elevate privileges locally...
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Out-of-bounds read in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...
Microsoft Excel Remote Code Execution Vulnerability
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to disclose information over a network...
Chromium: CVE-2025-4372 Use after free in WebAudio
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Microsoft msagsfeedback.azurewebsites.net Information Disclosure Vulnerability
Improper access control in Azure allows an unauthorized attacker to disclose information over a network...
Microsoft Dataverse Remote Code Execution Vulnerability
Deserialization of untrusted data in Microsoft Dataverse allows an authorized attacker to execute code over a network...
Azure DevOps Elevation of Privilege Vulnerability
Authentication bypass by assumed-immutable data in Azure DevOps allows an unauthorized attacker to elevate privileges over a network...
Azure Storage Resource Provider Spoofing Vulnerability
Server-side request forgery ssrf in Azure Storage Resource Provider allows an authorized attacker to perform spoofing over a network...
Microsoft Power Apps Information Disclosure Vulnerability
Server-Side Request Forgery SSRF in Microsoft Power Apps allows an unauthorized attacker to disclose information over a network...
Azure Automation Elevation of Privilege Vulnerability
Improper authorization in Azure Automation allows an authorized attacker to elevate privileges over a network...
Qemu-kvm: net: assertion failure in update_sctp_checksum()
...
An issue in the CPIO command of Busybox v1.33.2 allows attackers to execute a directory traversal.
...
Libsoup: information disclosure may leads libsoup client sends authorization header to a different host when being redirected by a server
...
Libsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c
...
Libsoup: segmentation fault when parsing malformed data uri
...
Qemu-kvm: virtio-snd: heap buffer overflow in virtio_snd_pcm_in_cb()
...
Qemu-kvm: virtio-pci: improper release of configure vector leads to guest triggerable crash
...
Libsoup: heap buffer over-read in `skip_insignificant_space` when sniffing content
...
Libsoup: heap buffer overflow in sniff_unknown()
...
Libsoup: integer overflow in append_param_quoted
...
jfs: fix slab-out-of-bounds read in ea_get()
...
thermal: int340x: Add NULL check for adev
...
remoteproc: core: Clear table_sz when rproc_shutdown
...
HID: intel-ish-hid: Fix use-after-free issue in ishtp_hid_remove()
...
cdx: Fix possible UAF error in driver_override_show()
...
team: prevent adding a device which is already a team device lower
...
containerd has an integer overflow in User ID handling
...
rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read
...
ext4: fix OOB read when checking dotdot dir
...
caif_virtio: fix wrong pointer check in cfv_probe()
...
netfilter: nft_tunnel: fix geneve_opt type confusion addition
...
net: atm: fix use after free in lec_send()
...
proc: fix UAF in proc_get_inode()
...
xsk: fix an integer overflow in xp_create_and_assign_umem()
...
sched: address a potential NULL pointer dereference in the GRED scheduler.
...
arcnet: Add NULL check in com20020pci_probe()
...
gpio: rcar: Use raw_spinlock to protect register access
...
drm/vkms: Fix use after free and double free on init error
...
RDMA/hns: Fix soft lockup during bt pages loop
...
iscsi_ibft: Fix UBSAN shift-out-of-bounds warning in ibft_attr_show_nic()
...
x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes
...
Bluetooth: L2CAP: Fix slab-use-after-free Read in l2cap_send_cmd
...
dm-flakey: Fix memory corruption in optional corrupt_bio_byte feature
...
cifs: Fix integer overflow while processing acdirmax mount option
...
cifs: Fix integer overflow while processing closetimeo mount option
...