Nipc-Cxd

#10706of 53,633
25.7Total CVSS
Vulnerabilities · 5
Low
1
Medium
4
PT-2025-34566
5.5
2025-08-24
Vim · Vim · CVE-2025-9390
Name of the Vulnerable Software and Affected Versions: vim versions prior to 9.1.1616 Description: A security flaw exists in vim due to a buffer overflow in the `main` function of the `xxd.c` file within the `xxd` component. The vulnerability is locally exploitable. An exploit for this issue has been publicly released. Recommendations: Upgrade to version 9.1.1616.
PT-2025-33451
5.9
2025-08-15
Tcpprep · Tcpprep · CVE-2025-9019
Name of the Vulnerable Software and Affected Versions: tcpreplay version 4.5.1 Description: A heap-based buffer overflow exists in the `mask cidr6` function within the `cidr.c` file of the `tcpprep` component. The issue can be triggered remotely and is considered to have high attack complexity, making exploitation difficult. The exploit has been publicly disclosed. Recommendations: Update to version 4.5.2 or later.
PT-2025-32527
5.5
2025-08-11
Jasper · Jasper · CVE-2025-8835
Name of the Vulnerable Software and Affected Versions: JasPer versions up to 4.2.5 Description: A vulnerability exists in JasPer due to a null pointer dereference in the `jas image chclrspc` function within the Image Color Space Conversion Handler component (file `src/libjasper/base/jas image.c`). This manipulation can be exploited on the local host. The exploit for this issue has been publicly disclosed. Recommendations: Apply the patch with identifier bb7d62bd0a2a8e0e1fdb4d603f3305f955158c52 to resolve this issue.
PT-2025-32528
3.3
2025-08-11
Jasper · Jasper · CVE-2025-8836
**Name of the Vulnerable Software and Affected Versions:** JasPer versions up to 4.2.5 **Description:** A vulnerability exists in JasPer up to version 4.2.5, specifically within the JPEG2000 Encoder component. The issue resides in the `jpc floorlog2` function located in the `src/libjasper/jpc/jpc enc.c` file. Manipulation of this function can lead to a reachable assertion. The attack requires local access. The exploit for this issue has been publicly disclosed and may be utilized. **Recommendations:** JasPer versions prior to 4.2.5: Apply the patch identified as 79185d32d7a444abae441935b20ae4676b3513d4 to resolve this issue.
PT-2025-32430
5.5
2025-08-09
Unknown · Gnu Libopts · CVE-2025-8746
**Name of the Vulnerable Software and Affected Versions** GNU libopts versions up to 27.6 **Description** A memory corruption issue exists in the ` strstr sse2` function within GNU libopts. This flaw can be exploited by a local attacker. The vulnerability affects products that are no longer supported by the maintainer. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.