Aggregator

CVE-2025-1154 | xxyopen Novel up to 3.4.1 /api/front/search/books sort sql injection(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in xxyopen Novel up to 3.4.1. Affected by this issue is some unknown functionality of the file /api/front/search/books. The manipulation of the argument sort leads to sql injection. This vulnerability is handled as CVE-2025-1154. The attack may be launched remotely. Furthermore, there is an exploit available. Other parameters might be affected as well.
vuldb.com

CVE-2025-1153 | GNU Binutils 2.43/2.44 format.c bfd_set_format memory corruption(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability classified as problematic was found in GNU Binutils 2.43/2.44. Affected by this vulnerability is the function bfd_set_format of the file format.c. The manipulation leads to memory corruption. This vulnerability is known as CVE-2025-1153. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-1152 | GNU Binutils 2.43 ld xstrdup.c xstrdup memory leak(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability classified as problematic has been found in GNU Binutils 2.43. Affected is the function xstrdup of the file xstrdup.c of the component ld. The manipulation leads to memory leak. This vulnerability is traded as CVE-2025-1152. It is possible to launch the attack remotely. Furthermore, there is an exploit available. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master." It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."
vuldb.com

CVE-2025-1151 | GNU Binutils 2.43 ld xmemdup.c xmemdup memory leak(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability was found in GNU Binutils 2.43. It has been rated as problematic. This issue affects the function xmemdup of the file xmemdup.c of the component ld. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2025-1151. The attack may be initiated remotely. Furthermore, there is an exploit available. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master." It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."
vuldb.com

CVE-2025-1150 | GNU Binutils 2.43 ld libbfd.c bfd_malloc memory leak(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability was found in GNU Binutils 2.43. It has been declared as problematic. This vulnerability affects the function bfd_malloc of the file libbfd.c of the component ld. The manipulation leads to memory leak. This vulnerability was named CVE-2025-1150. The attack can be initiated remotely. Furthermore, there is an exploit available. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master." It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."
vuldb.com

CVE-2025-1149 | GNU Binutils 2.43 ld libiberty/xmalloc.c xstrdup memory leak(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability was found in GNU Binutils 2.43. It has been classified as problematic. This affects the function xstrdup of the file libiberty/xmalloc.c of the component ld. The manipulation leads to memory leak. This vulnerability is uniquely identified as CVE-2025-1149. It is possible to initiate the attack remotely. Furthermore, there is an exploit available. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master." It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."
vuldb.com

CVE-2025-1148 | GNU Binutils 2.43 ld ld/ldelfgen.c link_order_scan memory leak(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability was found in GNU Binutils 2.43 and classified as problematic. Affected by this issue is the function link_order_scan of the file ld/ldelfgen.c of the component ld. The manipulation leads to memory leak. This vulnerability is handled as CVE-2025-1148. The attack may be launched remotely. Furthermore, there is an exploit available. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master." It is recommended to apply a patch to fix this issue. The code maintainer explains: "I'm not going to commit some of the leak fixes I've been working on to the 2.44 branch due to concern that would destabilise ld. All of the reported leaks in this bugzilla have been fixed on binutils master."
vuldb.com

CVE-2025-1147 | GNU Binutils 2.43 nm binutils/nm.c internal_strlen const buffer overflow(link is external)

VulDB Recent Entries
2 months 2 weeks ago
A vulnerability has been found in GNU Binutils 2.43 and classified as problematic. Affected by this vulnerability is the function __sanitizer::internal_strlen of the file binutils/nm.c of the component nm. The manipulation of the argument const leads to buffer overflow. This vulnerability is known as CVE-2025-1147. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

PoC Exploit Released for AnyDesk Vulnerability Exploited to Gain Admin Access Via Wallpapers(link is external)

Cyber Security News
2 months 2 weeks ago

A recently disclosed vulnerability in AnyDesk, a popular remote desktop software, identified as CVE-2024-12754, enables local attackers to exploit the handling of Windows background images to gain unauthorized access to sensitive system files.  This could potentially escalate their privileges to administrative levels, posing a significant threat to system security. The vulnerability has been categorized under […]

The post PoC Exploit Released for AnyDesk Vulnerability Exploited to Gain Admin Access Via Wallpapers appeared first on Cyber Security News.

Guru Baran

Managed ad