Aggregator

A vulnerability classified as critical was found in PDF-XChange Editor 10.5.2.395. This vulnerability affects unknown code of the component GIF File Parser. The manipulation leads to heap-based buffer overflow. This vulnerability was named CVE-2025-6660. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in PDF-XChange Editor 10.5.2.395. This affects an unknown part of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-6658. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been rated as problematic. Affected by this issue is some unknown functionality of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-6657. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-6656. The attack can be launched remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been classified as problematic. Affected is an unknown function of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2025-6655. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395 and classified as critical. This issue affects some unknown processing of the component PRC File Parser. The manipulation leads to out-of-bounds write. The identification of this vulnerability is CVE-2025-6654. The attack may be initiated remotely. There is no exploit available.

A vulnerability has been found in PDF-XChange Editor 10.5.2.395 and classified as problematic. This vulnerability affects unknown code of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-6653. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as problematic, was found in PDF-XChange Editor 10.5.2.395. This affects an unknown part of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-6652. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in PDF-XChange Editor 10.5.2.395. Affected by this issue is some unknown functionality of the component JP2 File Parser. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2025-6651. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic was found in PDF-XChange Editor 10.5.2.395. Affected by this vulnerability is an unknown functionality of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-6650. The attack can be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in PDF-XChange Editor 10.5.2.395. Affected is an unknown function of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2025-6649. It is possible to launch the attack remotely. There is no exploit available.

A vulnerability was found in HPE OneView for VMware vCenter up to 11.6. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to improper privilege management. The identification of this vulnerability is CVE-2025-37101. The attack may be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

部分机场开始严查充电宝的3C认证标志，无标志或标志不清的可能被拒绝登机。此前罗马仕和安克创新因电芯问题召回部分移动电源。旅客需检查充电宝是否符合要求，避免在机场被迫丢弃或寄存。

一个开放的黑客社区，旨在帮助新手成长为专家。提供问答学习平台，鼓励交流分享。用户可访问Discord加入讨论，与在线成员互动。

A vulnerability, which was classified as critical, has been found in Khaled Mardam-Bey mIRC. This issue affects some unknown processing of the component Nickname Handler. The manipulation leads to memory corruption. The identification of this vulnerability is CVE-2002-0231. The attack may be initiated remotely. Furthermore, there is an exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been declared as problematic. This vulnerability affects unknown code of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-6648. The attack can be initiated remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been classified as critical. This affects an unknown part of the component U3D File Parser. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-6647. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395 and classified as problematic. Affected by this issue is some unknown functionality of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-6643. The attack may be launched remotely. There is no exploit available.

A vulnerability has been found in PDF-XChange Editor 10.5.2.395 and classified as critical. Affected by this vulnerability is an unknown functionality of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability is known as CVE-2025-6642. The attack can be launched remotely. There is no exploit available.

Threat actors have learned an old business trick: find what works, and repeat it. Across countless cyberattacks, Bitdefender has observed adversaries consistently applying the same steps—the same techniques, the same security bypass patterns—across different targets. What’s effective in one environment is often just as effective in another, and attackers know it. This isn’t a coincidence. Once an attacker figures out how to evade a specific endpoint protection solution, they replicate the environment in a lab … More →

The post Breaking the cycle of attack playbook reuse appeared first on Help Net Security.