Search CVE reports
1 – 10 of 24623 results
CVE-2025-43703
Medium priorityAn issue was discovered in Ankitects Anki through 25.02. A crafted shared deck can result in attacker-controlled access to the internal API (even though the attacker has no knowledge of an API key) through approaches such as...
1 affected package
anki
| Package | 24.04 LTS |
|---|---|
| anki | Needs evaluation |
CVE-2025-3730
Medium priorityNot in release
A vulnerability, which was classified as problematic, was found in PyTorch 2.6.0. Affected is the function torch.nn.functional.ctc_loss of the file aten/src/ATen/native/LossCTC.cpp. The manipulation leads to denial of service. An...
1 affected package
pytorch
| Package | 24.04 LTS |
|---|---|
| pytorch | Not in release |
CVE-2025-3620
Medium priorityUse after free in USB in Google Chrome prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
1 affected package
chromium-browser
| Package | 24.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-3619
Medium priorityHeap buffer overflow in Codecs in Google Chrome on Windows prior to 135.0.7049.95 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: Critical)
1 affected package
chromium-browser
| Package | 24.04 LTS |
|---|---|
| chromium-browser | Not affected |
CVE-2025-32415
Medium priorityIn libxml2 before 2.13.8 and 2.14.x before 2.14.2, xmlSchemaIDCFillNodeTables in xmlschemas.c has a heap-based buffer under-read. To exploit this, a crafted XML document must be validated against an XML schema with certain...
1 affected package
libxml2
| Package | 24.04 LTS |
|---|---|
| libxml2 | Needs evaluation |
CVE-2025-30722
Medium priorityVulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows...
11 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...
| Package | 24.04 LTS |
|---|---|
| mariadb | Needs evaluation |
| mariadb-10.0 | Not in release |
| mariadb-10.1 | Not in release |
| mariadb-10.3 | Not in release |
| mariadb-10.6 | Not in release |
| mysql-5.5 | Not in release |
| mysql-5.7 | Not in release |
| mysql-8.0 | Needs evaluation |
| mysql-8.4 | Not in release |
| percona-server-5.6 | Not in release |
| percona-xtradb-cluster-5.6 | Not in release |
CVE-2025-30721
Medium priorityVulnerability in the MySQL Server product of Oracle MySQL (component: Server: UDF). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Difficult to exploit vulnerability allows high privileged...
11 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...
| Package | 24.04 LTS |
|---|---|
| mariadb | Needs evaluation |
| mariadb-10.0 | Not in release |
| mariadb-10.1 | Not in release |
| mariadb-10.3 | Not in release |
| mariadb-10.6 | Not in release |
| mysql-5.5 | Not in release |
| mysql-5.7 | Not in release |
| mysql-8.0 | Needs evaluation |
| mysql-8.4 | Not in release |
| percona-server-5.6 | Not in release |
| percona-xtradb-cluster-5.6 | Not in release |
CVE-2025-30715
Medium priorityVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Components Services). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high...
11 affected packages
mariadb, mariadb-10.0, mariadb-10.1, mariadb-10.3, mariadb-10.6...
| Package | 24.04 LTS |
|---|---|
| mariadb | Needs evaluation |
| mariadb-10.0 | Not in release |
| mariadb-10.1 | Not in release |
| mariadb-10.3 | Not in release |
| mariadb-10.6 | Not in release |
| mysql-5.5 | Not in release |
| mysql-5.7 | Not in release |
| mysql-8.0 | Needs evaluation |
| mysql-8.4 | Not in release |
| percona-server-5.6 | Not in release |
| percona-xtradb-cluster-5.6 | Not in release |
CVE-2025-30714
Medium priorityVulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/Python). Supported versions that are affected are 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network...
1 affected package
mysql-connector-python
| Package | 24.04 LTS |
|---|---|
| mysql-connector-python | Needs evaluation |
CVE-2025-30706
Medium priorityNot in release
Vulnerability in the MySQL Connectors product of Oracle MySQL (component: Connector/J). Supported versions that are affected are 9.0.0-9.2.0. Difficult to exploit vulnerability allows low privileged attacker with network access...
1 affected package
mysql-connector-java
| Package | 24.04 LTS |
|---|---|
| mysql-connector-java | Not in release |