|
821
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
pktgen: Avoid out-of-bounds access in get_imix_entries
Passing a sufficient amount of imix entries leads to invalid access to the…
|
CWE-129
Improper Validation of Array Index
|
CVE-2025-21680
|
2025-02-5 00:28 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
822
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
eth: bnxt: always recalculate features after XDP clearing, fix null-deref
Recalculate features when XDP is detached.
Before:
#…
|
CWE-476
NULL Pointer Dereference
|
CVE-2025-21682
|
2025-02-5 00:25 |
2025-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
823
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20639
|
2025-02-5 00:24 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
824
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20641
|
2025-02-5 00:22 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
825
|
4.3 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, with no additional exec…
|
CWE-125
Out-of-bounds Read
|
CVE-2025-20640
|
2025-02-5 00:22 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
826
|
6.6 |
MEDIUM
Physics
|
google
|
android
|
In DA, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege, if an attacker has physical access to the device, with no additional ex…
|
CWE-787
Out-of-bounds Write
|
CVE-2025-20642
|
2025-02-5 00:20 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
827
|
3.9 |
LOW
Physics
|
google
|
android
|
In DA, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure, if an attacker has physical access to the device, if a malicious actor ha…
|
CWE-125
Out-of-bounds Read
|
CVE-2025-20643
|
2025-02-5 00:19 |
2025-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
828
|
- |
|
-
|
-
|
Improper Control of Generation of Code ('Code Injection') vulnerability in WPSpins Post/Page Copying Tool allows Remote Code Inclusion. This issue affects Post/Page Copying Tool: from n/a through 2.0…
|
CWE-94
Code Injection
|
CVE-2025-24677
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
829
|
- |
|
-
|
-
|
Incorrect Privilege Assignment vulnerability in wpase.com Admin and Site Enhancements (ASE) allows Privilege Escalation. This issue affects Admin and Site Enhancements (ASE): from n/a through 7.6.2.1.
|
CWE-266
Incorrect Privilege Assignment
|
CVE-2025-24648
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
830
|
- |
|
-
|
-
|
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP24 WP24 Domain Check allows Reflected XSS. This issue affects WP24 Domain Check: from n/a throu…
|
CWE-79
Cross-site Scripting
|
CVE-2025-24602
|
2025-02-5 00:15 |
2025-02-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
