Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by CWE-125
Total 8121 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2025-57697 1 Astrbot 1 Astrbot 2025-12-05 N/A 6.5 MEDIUM
AstrBot Project v3.5.22 has an arbitrary file read vulnerability in function _encode_image_bs64. Since the _encode_image_bs64 function defined in entities.py opens the image specified by the user in the request body and returns the image content as a base64-encoded string without checking the legitimacy of the image path, attackers can construct a series of malicious URLs to read any specified file, resulting in sensitive data leakage.
CVE-2025-58476 1 Samsung 1 Android 2025-12-05 N/A 4.2 MEDIUM
Out-of-bounds read vulnerability in bootloader prior to SMR Dec-2025 Release 1 allows physical attackers to access out-of-bounds memory.
CVE-2025-58479 1 Samsung 1 Android 2025-12-05 N/A 4.3 MEDIUM
Out-of-bounds read in libimagecodec.quram.so prior to SMR Dec-2025 Release 1 allows remote attackers to access out-of-bounds memory.
CVE-2017-13037 1 Tcpdump 1 Tcpdump 2025-12-05 7.5 HIGH 9.8 CRITICAL
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printts().
CVE-2017-13027 1 Tcpdump 1 Tcpdump 2025-12-05 7.5 HIGH 9.8 CRITICAL
The LLDP parser in tcpdump before 4.9.2 has a buffer over-read in print-lldp.c:lldp_mgmt_addr_tlv_print().
CVE-2012-1571 2 Christos Zoulas, Tim Robbins 2 File, Libmagic 2025-12-04 4.3 MEDIUM 6.5 MEDIUM
file before 5.11 and libmagic allow remote attackers to cause a denial of service (crash) via a crafted Composite Document File (CDF) file that triggers (1) an out-of-bounds read or (2) an invalid pointer dereference.
CVE-2017-13035 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The ISO IS-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:isis_print_id().
CVE-2017-13034 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
CVE-2017-13031 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The IPv6 fragmentation header parser in tcpdump before 4.9.2 has a buffer over-read in print-frag6.c:frag6_print().
CVE-2017-13028 2 Debian, Tcpdump 2 Debian Linux, Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The BOOTP parser in tcpdump before 4.9.2 has a buffer over-read in print-bootp.c:bootp_print().
CVE-2017-13025 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVE-2017-13024 2 Debian, Tcpdump 2 Debian Linux, Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The IPv6 mobility parser in tcpdump before 4.9.2 has a buffer over-read in print-mobility.c:mobility_opt_print().
CVE-2017-13022 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The IP parser in tcpdump before 4.9.2 has a buffer over-read in print-ip.c:ip_printroute().
CVE-2017-13021 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The ICMPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-icmp6.c:icmp6_print().
CVE-2017-13020 2 Debian, Tcpdump 2 Debian Linux, Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The VTP parser in tcpdump before 4.9.2 has a buffer over-read in print-vtp.c:vtp_print().
CVE-2017-13019 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The PGM parser in tcpdump before 4.9.2 has a buffer over-read in print-pgm.c:pgm_print().
CVE-2017-13017 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The DHCPv6 parser in tcpdump before 4.9.2 has a buffer over-read in print-dhcp6.c:dhcp6opt_print().
CVE-2017-13016 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The ISO ES-IS parser in tcpdump before 4.9.2 has a buffer over-read in print-isoclns.c:esis_print().
CVE-2017-13015 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The EAP parser in tcpdump before 4.9.2 has a buffer over-read in print-eap.c:eap_print().
CVE-2017-13014 1 Tcpdump 1 Tcpdump 2025-12-04 7.5 HIGH 9.8 CRITICAL
The White Board protocol parser in tcpdump before 4.9.2 has a buffer over-read in print-wb.c:wb_prep(), several functions.