NVIDIA nvdisasm REL section header parsing out-of-bounds write vulnerability NVIDIA nvdisasm 12.9.88 存在 REL 节头解析越界写入漏洞，可致任意代码执行。... 2025-9-24 00:1:0 | 阅读: 7 | 收藏 | 0day Fans - talosintelligence.com 141955 nvdisasm dtatsis cuda valgrind

NVIDIA nvdisasm REL section header parsing heap-based buffer overflow vulnerability NVIDIA nvdisasm 12.8.90版本中存在堆基缓冲区溢出漏洞，攻击者可通过特制ELF文件触发该漏洞并实现任意代码执行。... 2025-9-24 00:1:0 | 阅读: 7 | 收藏 | 0day Fans - talosintelligence.com 152542 nvdisasm assumed dtatsis trizzle

NVIDIA cuobjdump DWARF debug abbreviations parsing arbitrary code execution vulnerability NVIDIA cuobjdump 12.8.55 存在任意代码执行漏洞，源于DWARF解析中的堆栈溢出问题。攻击者可通过特制fatbin文件触发漏洞。CVSSv3评分为7.8，CWE为CWE-121。... 2025-9-24 00:1:0 | 阅读: 7 | 收藏 | 0day Fans - talosintelligence.com leb128 cuobjdump dw cuda decoded

Adobe Acrobat Reader Page Property Use-After-Free Vulnerability Adobe Acrobat Reader 2025.001.20531版本中存在一个use-after-free漏洞，可能导致内存损坏和任意代码执行。攻击者可通过诱骗用户打开恶意PDF文件触发此漏洞。... 2025-9-22 23:59:12 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com acrord32 escript mozilla hashbytes

The Biosig Project libbiosig Nex parsing heap-based buffer overflow vulnerability The Biosig Project libbiosig versions 3.9.0 and Master Branch (35a819fa) contain a heap-based buffer overflow vulnerability in the Nex file parsing functionality, allowing arbitrary code execution via a specially crafted .nex file.... 2025-8-24 23:59:40 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com sopen biosig hc h2len h1len

The Biosig Project libbiosig ABF parsing integer overflow to heap-based buffer overflow vulnerability The Biosig Project libbiosig 3.9.0和Master Branch版本存在整数溢出漏洞，处理ABF文件时可能被恶意文件触发，导致任意代码执行。CVSSv3评分为9.8。... 2025-8-24 23:59:40 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com abf sopen biosig n1 overflow

The Biosig Project libbiosig MFER Tag 3 null write stack-based buffer overflow vulnerability The Biosig Project libbiosig 3.9.0 and Master Branch contain a stack-based buffer overflow vulnerability in MFER file parsing, allowing arbitrary code execution via a crafted file.... 2025-8-24 23:59:40 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com biosig mfer redzone libbiosig sopen

Tenda AC6 V5.0 HTTP authentication bypass vulnerability Tenda AC6 V5.0路由器存在HTTP认证绕过漏洞，攻击者可通过特制HTTP请求触发该漏洞，实现未授权访问并执行任意代码。... 2025-8-19 23:59:27 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com ac6 urlprefix webdir

Tenda AC6 V5.0 Tenda App Router Authentication cleartext transmission vulnerability Tenda AC6 V5.0路由器的手机应用管理端口9000存在明文传输漏洞，攻击者可嗅探网络流量获取管理员权限并上传固件。... 2025-8-19 23:59:27 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com ac6 tenda d5 ac1200

Tenda AC6 V5.0 Firmware Signature Validation firmware update vulnerability Tenda AC6 V5.0路由器存在固件签名验证漏洞,攻击者可利用恶意文件实现任意代码执行,导致设备被完全控制。... 2025-8-19 23:59:27 | 阅读: 8 | 收藏 | 0day Fans - talosintelligence.com crc inp fw firmware gened

OpenPrinting ippusbxd media-size-supported stack based buffer overflow vulnerability OpenPrinting ippusbxd 1.34 存在栈溢出漏洞，攻击者可通过恶意打印机连接触发缓冲区溢出并执行任意代码。该服务以root权限运行，默认易受攻击。建议迁移到ipp-usb以缓解风险。... 2025-8-18 23:59:50 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com printer ippusbxd ipp overflow pthread

Foxit Reader Signature Uninitialized Pointer Vulnerability Foxit Reader 2025.1.0.27937 存在内存破坏漏洞，源于未初始化指针。恶意 PDF 文档或网站可触发此漏洞，导致内存 corruption 和任意代码执行。... 2025-8-13 00:0:1 | 阅读: 8 | 收藏 | 0day Fans - talosintelligence.com e0e0e0e0 vsnprintf cfxjse getvalue

Dell ControlVault3 cvhDecapsulateCmd improper input validation vulnerability Dell ControlVault3和ControlVault3 Plus存在反序列化漏洞（CVE-2025-276106），影响版本低于5.15.10.14和6.2.26.36。攻击者可通过构造恶意响应触发漏洞，导致任意代码执行并控制固件。CVSSv3评分为8.1，CWE为CWE-502。... 2025-8-8 23:59:24 | 阅读: 10 | 收藏 | 0day Fans - talosintelligence.com firmware aligned dell

Dell ControlVault3 cv_upgrade_sensor_firmware out-of-bounds write vulnerability Dell ControlVault3 5.14.3.0版本中存在越界写入漏洞，攻击者可通过恶意API调用触发该漏洞。该漏洞影响Broadcom BCM5820X芯片及部分固件驱动版本，CVSSv3评分为8.7，可能导致固件崩溃或代码执行风险。... 2025-8-8 23:59:24 | 阅读: 10 | 收藏 | 0day Fans - talosintelligence.com firmware cv dell memory

Dell ControlVault3 cv_close arbitrary free vulnerability Dell ControlVault3 5.14.3.0 存在 cv_close 功能任意释放漏洞。攻击者可伪造会话触发该漏洞，导致任意内存释放，可能引发堆溢出或代码执行。CVSSv3 评分为 8.2。... 2025-8-8 23:59:24 | 阅读: 12 | 收藏 | 0day Fans - talosintelligence.com cv dell firmware sess

PDF-XChange Editor EMF File EMR_EXTCREATEFONTINDIRECTW Facename Out-Of-Bounds Read Vulnerability PDF-XChange Editor 10.6.0.396版本中存在一个EMF文件处理的越界读取漏洞（CWE-125），可能导致敏感信息泄露。该漏洞由Cisco Talos团队发现，CVSSv3评分为6.5。厂商已于2025年7月22日发布补丁修复该问题。... 2025-8-5 00:0:58 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com 00007ffb 000001ad getinstance pxv

PDF-XChange Editor EMF File EMR_POLYDRAW16 PT_BEZIERTO Out-Of-Bounds Read Vulnerability PDF-XChange Editor 10.5.2.395版本中存在一个越界读取漏洞，攻击者可利用特制的EMF文件触发该漏洞，导致敏感信息泄露。该漏洞与处理EMR_POLYDRAW16记录中的abTypes字段有关，未进行边界检查。CVSSv3评分为6.5。... 2025-8-5 00:0:58 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com 00007ffc 000001c7 pxv getinstance

Eclipse ThreadX FileX RAM disk driver buffer overflow vulnerability Eclipse ThreadX FileX的RAM磁盘驱动存在缓冲区溢出漏洞，攻击者可通过特定网络包触发该漏洞并执行代码。该漏洞影响版本为git提交1b85eb2，CVSSv3评分为8.5。修复建议确保配置参数总扇区数乘以扇区大小小于RAM磁盘内存缓冲区大小。... 2025-7-29 23:58:57 | 阅读: 0 | 收藏 | 0day Fans - talosintelligence.com fx nx memory netxduo filex

MedDream PACS Premium radiationDoseReport.php reflected cross-site scripting (XSS) vulnerability MedDream PACS Premium 7.3.5.860 存在反射型 XSS 漏洞，攻击者可通过恶意 URL 注入 JavaScript 代码。该漏洞影响未授权访问用户，CVSSv3 评分为 6.1，已修复。... 2025-7-27 23:59:44 | 阅读: 1 | 收藏 | 0day Fans - talosintelligence.com pacs meddream php premium

MedDream PACS Premium cecho.php SSRF vulnerability MedDream PACS Premium 7.3.5.860 存在 SSRF 漏洞，攻击者可通过构造特定 HTTP 请求触发该漏洞，在无需认证的情况下探测内部网络中的主机和服务。... 2025-7-27 23:59:44 | 阅读: 5 | 收藏 | 0day Fans - talosintelligence.com php pacs meddream attacker association