|
1721
|
- |
|
-
|
-
|
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to improper neutralization of input via the devices API, an attacker can inject malicious JavaScript code …
|
-
|
CVE-2024-52882
|
2025-02-11 02:15 |
2025-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1722
|
- |
|
-
|
-
|
An issue was discovered in AudioCodes One Voice Operations Center (OVOC) before 8.4.582. Due to the use of a hard-coded key, an attacker is able to decrypt sensitive data such as passwords extracted …
|
-
|
CVE-2024-52881
|
2025-02-11 02:15 |
2025-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1723
|
- |
|
-
|
-
|
Tally Prime Edit Log v2.1 was discovered to contain a DLL hijacking vulnerability via the component TextShaping.dll. This vulnerability allows attackers to execute arbitrary code via a crafted DLL.
|
-
|
CVE-2024-48091
|
2025-02-11 02:15 |
2025-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1724
|
- |
|
-
|
-
|
Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby. Starting in version 0.3.2 and prior to versions 0.3.8, 0.4.19, and 0.5.6, there is a possibility for denial …
|
CWE-405
CWE-400
CWE-409
CWE-770
CWE-789
CWE-1287
Asymmetric Resource Consumption (Amplification)
Uncontrolled Resource Consumption
Improper Handling of Highly Compressed Data (Data Amplification)
Allocation of Resources Without Limits or Throttling
Memory Allocation with Excessive Size Value
Improper Validation of Specified Type of Input
|
CVE-2025-25186
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1725
|
- |
|
-
|
-
|
OpenProject is open-source, web-based project management software. In versions prior to 15.2.1, the application fails to properly sanitize user input before displaying it in the Group Management sect…
|
CWE-79
Cross-site Scripting
|
CVE-2025-24892
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1726
|
- |
|
-
|
-
|
PAM-PKCS#11 is a Linux-PAM login module that allows a X.509 certificate based user login. In versions 0.6.12 and prior, the pam_pkcs11 module segfaults when a user presses ctrl-c/ctrl-d when they are…
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-24031
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1727
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
mm: zswap: properly synchronize freeing resources during CPU hotunplug
In zswap_compress() and zswap_decompress(), the per-CPU ac…
|
-
|
CVE-2025-21693
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1728
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
cachestat: fix page cache statistics permission checking
When the 'cachestat()' system call was added in commit cf264e1329fb
("ca…
|
-
|
CVE-2025-21691
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1729
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
net: sched: fix ets qdisc OOB Indexing
Haowei Yan <g1042620637@gmail.com> found that ets_class_from_arg() can
index an Out-Of-Bou…
|
-
|
CVE-2025-21692
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
1730
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: storvsc: Ratelimit warning logs to prevent VM denial of service
If there's a persistent error in the hypervisor, the SCSI w…
|
-
|
CVE-2025-21690
|
2025-02-11 01:15 |
2025-02-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
