7.1

CVSS3.1

CVE-2024-57258 -

Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 8:16 p.m.

7.5

CVSS3.1

CVE-2025-25475 - dcmtk: NULL Pointer Dereference in DCMTK dcrleccd.cc Leading to DoS

A NULL pointer dereference in the component /libsrc/dcrleccd.cc of DCMTK v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DICOM file.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Nov. 4, 2025, 8:40 p.m.

4.2

CVSS3.1

CVE-2025-26058 -

Webkul QloApps v1.6.1 exposes authentication tokens in URLs during redirection. When users access the admin panel or other protected areas, the application appends sensitive authentication tokens directly to the URL.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: July 9, 2025, 2:54 p.m.

5.3

CVSS3.1

CVE-2025-25472 - dcmtk: Buffer Overflow in DCMTK Leading to DoS

A buffer overflow in DCMTK git master v3.6.9+ DEV allows attackers to cause a Denial of Service (DoS) via a crafted DCM file.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Nov. 4, 2025, 8:31 p.m.

7.8

CVSS3.1

CVE-2025-24928 - libxml2: Stack-based buffer overflow in xmlSnprintfElements of libxml2

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a stack-based buffer overflow in xmlSnprintfElements in valid.c. To exploit this, DTD validation must occur for an untrusted document or untrusted DTD. NOTE: this is similar to CVE-2017-9047.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Feb. 26, 2026, 7:08 p.m.

7.8

CVSS3.1

CVE-2024-56171 - libxml2: Use-After-Free in libxml2

libxml2 before 2.12.10 and 2.13.x before 2.13.6 has a use-after-free in xmlSchemaIDCFillNodeTables and xmlSchemaBubbleIDCNodeTables in xmlschemas.c. To exploit this, a crafted XML document must be validated against an XML schema with certain identity constraints, or a crafted XML schema must be use…

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:17 p.m.

7.5

CVSS3.1

CVE-2024-50609 -

An issue was discovered in Fluent Bit 3.1.9. When the OpenTelemetry input plugin is running and listening on an IP address and port, one can send a packet with Content-Length: 0 and it crashes the server. Improper handling of the case when Content-Length is 0 allows a user (with access to the endpo…

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:48 p.m.

8

CVSS3.1

CVE-2024-51505 -

An issue was discovered in Atos Eviden IDRA before 2.7.1. A highly trusted role (Config Admin) could leverage a race condition to escalate privileges.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.3

CVSS3.1

CVE-2025-22920 -

A heap buffer overflow vulnerability in FFmpeg before commit 4bf784c allows attackers to trigger a memory corruption via supplying a crafted media file in avformat when processing tile grid group streams. This can lead to a Denial of Service (DoS).

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2025-22921 -

FFmpeg git-master,N-113007-g8d24a28d06 was discovered to contain a segmentation violation via the component /libavcodec/jpeg2000dec.c.

πŸ“… Published: Feb. 18, 2025, midnight πŸ”„ Last Modified: Jan. 12, 2026, 1:08 p.m.
Total resulsts: 348588
Page 6651 of 34,859
Β« previous page Β» next page
Filters