Aggregator

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been rated as problematic. Affected by this issue is some unknown functionality of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is handled as CVE-2025-6657. The attack may be launched remotely. There is no exploit available.

A vulnerability classified as problematic has been found in PDF-XChange Editor 10.5.2.395. This affects an unknown part of the component PRC File Parser. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-6658. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395 and classified as critical. Affected by this issue is some unknown functionality of the component PRC File Parser. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2025-6659. The attack may be launched remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been classified as critical. This affects an unknown part of the component U3D File Parser. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-6647. It is possible to initiate the attack remotely. There is no exploit available.

A vulnerability was found in PDF-XChange Editor 10.5.2.395. It has been declared as problematic. This vulnerability affects unknown code of the component U3D File Parser. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2025-6648. The attack can be initiated remotely. There is no exploit available.

A vulnerability, which was classified as critical, has been found in PDF-XChange Editor 10.5.2.395. Affected by this issue is some unknown functionality of the component JP2 File Parser. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2025-6651. The attack may be launched remotely. There is no exploit available.

A Kansas City man has pleaded guilty to hacking multiple organizations to advertise his cybersecurity services, the U.S. Department of Justice announced on Wednesday. [...]

Scattered Spider recently pivoted from targeting worldwide retailers to U.S. based insurance firms, with no signs of slowing down. Learn about Scattered Spider TTPs and how to defend your organization against MFA bypass, help desk scams, and more. [...]

Orange Meets, our open-source video calling web application, now supports end-to-end encryption using the MLS protocol with continuous group key agreement.