Vuldb Updates

A vulnerability, which was classified as problematic, has been found in PeaZip up to 10.4.0. This issue affects some unknown processing of the component Archived Files Handler. The manipulation leads to inclusion of web functionality from an untrusted source. This vulnerability is documented as CVE-2025-33026. The attack can be initiated remotely. There is not any exploit available.

A vulnerability marked as problematic has been reported in IZArc up to 4.5. The affected element is an unknown function of the component Archive File Handler. Performing manipulation results in inclusion of web functionality from an untrusted source. This vulnerability is known as CVE-2025-46652. Remote exploitation of the attack is possible. No exploit is available.

A vulnerability labeled as critical has been found in D-Link DIR600L 116WWb01. This impacts the function formSetWAN_Wizard52. Such manipulation of the argument curTime leads to buffer overflow. This vulnerability is uniquely identified as CVE-2025-60553. The attack can be launched remotely. No exploit exists.

A vulnerability classified as critical was found in D-Link DIR600L 116WWb0. Affected is the function formLanSetupRouterSettings. Executing manipulation of the argument curTime can lead to buffer overflow. This vulnerability is tracked as CVE-2025-60548. The attack can be launched remotely. No exploit exists.

A vulnerability was found in PerfreeBlog 4.0.11. It has been classified as critical. This issue affects the function installTheme. Performing manipulation results in unrestricted upload. This vulnerability is reported as CVE-2025-60731. The attack is possible to be carried out remotely. No exploit exists.

A vulnerability was found in PerfreeBlog 4.0.11. It has been declared as critical. Impacted is the function installPlugin. Executing manipulation can lead to unrestricted upload. This vulnerability appears as CVE-2025-60735. The attack may be performed from remote. There is no available exploit.

A vulnerability was found in PerfreeBlog 4.0.11 and classified as critical. This vulnerability affects the function validThemeFilePath. Such manipulation leads to path traversal. This vulnerability is documented as CVE-2025-60729. The attack can be executed remotely. There is not any exploit available.

A vulnerability identified as problematic has been detected in SAP NetWeaver Application Server for ABAP and ABAP Platform. This issue affects some unknown processing of the component URL Handler. Performing manipulation results in information exposure through error message. This vulnerability is known as CVE-2025-0053. Remote exploitation of the attack is possible. No exploit is available. Applying a patch is the recommended action to fix this issue.

A vulnerability labeled as problematic has been found in SAP Business Workflow and Flexible Workflow. Affected by this vulnerability is an unknown functionality. Such manipulation leads to authorization bypass. This vulnerability is traded as CVE-2025-0058. The attack may be launched remotely. There is no exploit available. A patch should be applied to remediate this issue.

A vulnerability marked as problematic has been reported in SAP BusinessObjects Business Intelligence Platform. Affected by this issue is some unknown functionality. Performing manipulation results in exposure of sensitive system information to an unauthorized control sphere. This vulnerability is known as CVE-2025-0061. Remote exploitation of the attack is possible. No exploit is available. To fix this issue, it is recommended to deploy a patch.

A vulnerability described as problematic has been identified in SAP BusinessObjects Business Intelligence Platform. This affects an unknown part. Executing manipulation can lead to cross site scripting. This vulnerability is handled as CVE-2025-0060. The attack can be executed remotely. There is not any exploit available. It is advisable to implement a patch to correct this issue.

A vulnerability marked as problematic has been reported in Linux Kernel up to 5.10.126/5.15.50/5.18.7. Affected by this vulnerability is the function smp_processor_id. The manipulation leads to insufficiently random values. This vulnerability is traded as CVE-2022-49698. Access to the local network is required for this attack to succeed. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability marked as critical has been reported in anthropics claude-code up to 1.0.19. This affects an unknown part. The manipulation leads to os command injection. This vulnerability is traded as CVE-2025-54795. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.

A vulnerability categorized as critical has been discovered in anthropics claude-code up to 1.0.3. Affected by this vulnerability is an unknown functionality. Such manipulation leads to os command injection. This vulnerability is uniquely identified as CVE-2025-55284. The attack can be launched remotely. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability was found in Flock Safety Gunshot Detection up to 1.2 and classified as problematic. Impacted is an unknown function. Such manipulation leads to use of hard-coded password. This vulnerability is documented as CVE-2025-47818. The attack can be executed directly on the physical device. There is not any exploit available. It is suggested to upgrade the affected component.

A vulnerability was found in Flock Safety Gunshot Detection up to 1.2. It has been classified as critical. The affected element is an unknown function. Performing manipulation results in on-chip debug and test interface with improper access control. This vulnerability is reported as CVE-2025-47819. The attack may be carried out on the physical device. No exploit exists. Upgrading the affected component is recommended.

A vulnerability was found in Flock Safety Gunshot Detection up to 1.2. It has been declared as problematic. The impacted element is an unknown function. Executing manipulation can lead to cleartext storage of sensitive information. This vulnerability appears as CVE-2025-47820. The physical device can be targeted for the attack. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability was found in SAP NetWeaver AS ABAP and ABAP Platform. It has been classified as critical. The affected element is an unknown function of the component RFC Function Module. Performing manipulation results in sql injection. This vulnerability is cataloged as CVE-2025-0063. It is possible to initiate the attack remotely. There is no exploit available. Applying a patch is the recommended action to fix this issue.

A vulnerability was found in Linux Kernel up to 5.10.123/5.15.48/5.18.5. It has been rated as critical. The impacted element is the function error_state_read. The manipulation of the argument error_state_read leads to memory corruption. This vulnerability is uniquely identified as CVE-2022-49723. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 5.4.199/5.10.123/5.15.48/5.18.5. It has been declared as problematic. This impacts the function hv_init_clocksource. The manipulation results in improper initialization. This vulnerability is known as CVE-2022-49726. Access to the local network is required for this attack. No exploit is available. It is recommended to upgrade the affected component.